Richard is reviewing this information from an IPS log:
MAINB_IPS: 22Jun2019 09:02:50 reject 10.1.111.7
Alert: HTTP Suspicious Webdav OPTIONS Method Request; Host: Server
Severity: medium; Performance Impact: 3;
Category: infor-leak; Packet capture; disable
Proto:TCP; dst 192.168.11.1; src: 10.1.111.7
Which of the following can be associated with this log information? (Select TWO)
The incorrect answers:
A. The attacker sent a non-authenticated BGP packet to trigger the IPS
The alert for this IPS log does not indicate any non-authenticated packets
or BGP packets.
B. The source of the attack is 192.168.11.1
The last line of the log identifies the protocol and IP addresses. The “src”
address is the source of the packet and is identified as 10.1.111.7.
C. The event was logged but no packets were dropped
The first line of the log shows the name of the IPS that identified the
issue, the date and time, and disposition. In this log entry, the packet was
rejected from IP address 10.1.111.7.
D. The source of the attack is 10.1.111.7
E. The attacker sent an unusual HTTP packet to trigger the IPS
The second line of the IPS log shows the type of alert, and this record indicates that a suspicious HTTP packet was sent. The last line of the IPS log shows the protocol, destination, and source IP address information. The source IP address is 10.1.111.7.