Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Firewalls and Network Security > quiz 6 > Flashcards

quiz 6 Flashcards

1
Q

Select True or False. Logging on intrazone-default and interzone-default Security policy rules is enabled by default.
Select one:

a. True

b. False

A

False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

NGFW QoS policies can be configured to apply:
Select one:

a. either preferential treatment or bandwidth-limiting traffic rules

b. third party authentication

c. forwarding for anti-virus screening

d. data encryption

A

either preferential treatment or bandwidth-limiting traffic rules

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

When defining Security policy rules, why should you consider only the c2s flow direction, and define policy rules that allow or deny traffic from the source zone to the destination zone, that is, in the c2s direction?
Select one:

a. The return c2s flow does not require a separate rule because communications are automatically allowed.

b. For traffic that does not match any custom defined rules, all communications are conducted in a separate traffic buffer

c. Default rules are predefined to allow all interzone traffic (between zones) and deny all intrazone traffic (within a zone).

d. The return s2c flow does not require a separate rule because the return traffic automatically is allowed

A

The return s2c flow does not require a separate rule because the return traffic automatically is allowed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the following are NOT traffic attributes or criteria that can be defined in a Security policy rule?
Select one:

a. URL Catgegory

b. Source / Destination zones

c. Traffic that does not pass through the firewall data plane

d. Source user

A

Traffic that does not pass through the firewall data plane

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Select True or False. Security policy rules on the Next Generation firewall specify a source and a destination interface.
Select one:

a. True

b. False

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Traffic going to a public IP address is being translated by a Next Generation firewall to an internal server private IP address. Which IP address should the security policy use as the destination IP in order to allow traffic to the server?
Select one:

a. The server private IP

b. The firewall Management port IP

c. The firewall gateway IP

d. The server public IP

A

The server public IP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which action in a Security policy rule results in traffic being silently rejected?
Select one:

a. Reset Server

b. Deny

c. Reset Client

d. Drop

A

Reset Server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which NGFW security policy rule applies to all matching traffic within the specified source zones?
Select one:

a. Intrazone

b. Universal

c. Interzone

d. Default

A

Universal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which type of Security policy rule is the default rule type?
Select one:

a. Intrazone

b. Universal

c. Interzone

d. Default

A

Interzone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Firewalls and Network Security (18 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions