Tech question of the day (Security+): Examine the figure. What two insecure configurations can you identify? (Disregard any ALG implications…)
(see answer below and video response)
First of all, you will note that the SPI firewall has been disabled. This is not usually recommended, and by default this is set to “enabled”. Second, the L2TP VPN option has been enabled. But the lack of IPSec can be a vulnerability to an L2TP VPN if it is not otherwise secured.
Do you enjoy learning by watching? Then check out the CompTIA Security+ (SY0-401) Complete Video Course by fellow instructor Michael J Shannon.