A penetration tester is drafting a statement of work for an external network assessment. The client has allocated a large, contiguous block of 1,024 public IP addresses for testing. To manage the workload, the tester plans to divide the block into four smaller, equal-sized segments for the assessment team. Which method should the tester use to define these segments in the engagement documents?
CIDR (Classless Inter-Domain Routing) notation is the standard method for representing IP address blocks of varying sizes. In this scenario, the large /22 block (1,024 addresses) can be efficiently divided into four /24 segments for documentation and tasking. A firewall access-control list defines traffic rules, not the testing scope. A wildcard domain defines scope by hostname, not by a specific IP block. A list of individual addresses is highly impractical for 1,024 IPs and does not represent the ranges cleanly.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Classless Inter-Domain Routing (CIDR)?
Open an interactive chat with Bash
How does CIDR help in managing network assessments?
Open an interactive chat with Bash
What is the difference between CIDR and a traditional subnet mask?