STUDY QUESTIONS3

Question 1

Sniffer level 1

Answer 1

ip header

Question 2

Sniffer level 2

Answer 2

ip header and payload (ip)

Question 3

Sniffer level 3

Answer 3

ip header and payload (ip) +Ethernet Header

Question 4

Sniffer level 4

Answer 4

ip header + port names

Question 5

Sniffer level 5

Answer 5

ip header + port names + ip payload

Question 6

Sniffer level 6

Answer 6

all

Question 7

AUTHENTICATION (BASES) - What types are available?

Answer 7

IP-BASED or SESSION-BASED

Question 8

CENTRAL-NAT - How to enable?

Answer 8

Via CLI (only) if profile mode used

Question 9

CENTRAL-NAT - If enabled, SNAT is implicit (True or false)

Answer 9

TRUE

Question 10

CENTRAL-NAT (Reason for NOT able to enable it)?

Answer 10

IP Pools are used (and referenced)

Question 11

What is AUTO-NEGOTIATE in IPSEC?

Answer 11

Brings the tunnel up regardless of traffic (new or after SA expired)

Question 12

what is AUTOKEY KEEP ALIVE in IPSEC?

Answer 12

Avoid IPSEC tunnel to disconnect due to traffic absence

Question 13

What is WEB APP FIREWALL? —- WAF

Answer 13

App to detect and block web app attacks

Question 14

What does WAF uses to block?

Answer 14

signatures

Question 15

What is the requirement to enable WAF?

Answer 15

Enable proxy inspection mode

Question 16

How to enable WAF?

Answer 16

Via feature visibility after enabling proxy inspection mode

Question 17

How is WAF applied or used?

Answer 17

Configured as a profile and applied to a policy

Question 18

True or False, WAF does NOT require DEEP-INSPECTION?

Answer 18

It’s FALSE

Question 19

FABRIC - Root’s unique actions?

Answer 19

ShutDown / reboot / ban