单选题What is meant by the term "firewall sandwich"?()A multiple layers of firewallingB a method of operating firewalls from multiple vendorsC firewall connections in either an active or standby stateD an architecture in which all traffic between firewalls g

题目
单选题
What is meant by the term "firewall sandwich"?()
A

multiple layers of firewalling

B

a method of operating firewalls from multiple vendors

C

firewall connections in either an active or standby state

D

an architecture in which all traffic between firewalls goes through application-specific servers

E

an architecture in which all traffic between firewalls goes through application-specific gateways

相似考题

1.Your company has computers in multiple locations that use IPv4 and IPv6. Each location is protected by a firewall that performs symmetric NAT. You need to allow peer-to-peer communication between all locations.What should you do?()A. Configure dynamic NAT on the firewall.B. Configure the firewall to allow the use of Teredo.C. Configure a link local IPv6 address for the internal interface of the firewall.D. Configure a global IPv6 address for the external interface of the firewall.

2.Basically, a(71)is a standalone process or a set of integrated processes that runs on a router or server to control the flow of(72)application traffic(73)through it. Typically, firewalls are(74)on the entry point to a public network such as the Internet. They could be considered traffic cops. The firewall' s(75)is to ensure that all communication between an organization's network and the Internet conform. to the organization's security policies.A.routerB.clientC.firewallD.switch

3.Refer to the exhibit. When deploying an MSFC and an FWSM, which statement is correct?()A. Proper placement depends on the VLAN assignment.B. Place it outside the firewall.C. Place it inside the firewall to make design and management easier.D. Place it inside the firewall with multiple context modes connecting to all configured contexts.

4.Basically, a firewall is a(145)process or a set of integrated processes that runs on a router or(146)to control the flow of networked application traffic(147)through it. Typically, firewalls are placed on the entry point to a(148)network such as the Internet. They could be considered traffic cops. The firewall's(149)is to ensure that all communication between an organization's network and the Internet conform. to the organization's policies.A.dependentB.isolatedC.relatedD.standalone

更多“单选题What is meant by the term "firewall sandwich"?()A multiple layers of firewallingB a method of operating firewalls from multiple vendorsC firewall connections in either an active or standby stateD an architecture in which all traffic between firewalls g”相关问题

  • 第1题:

    Which unique characteristics of the Data Center Aggregation layer must be considered by an Enterprise Campus designer?()

    • A、 Layer 3 routing between the Access and Aggregation layers facilities the ability to span VLANsacross multiple access switches, which is a requirement for many server virtualization andclustering technologies.
    • B、 “East-west” server-to-server traffic can travel between aggregation modules by way of the core,but backup and replication traffic typically remains within an aggregation module.
    • C、 Load balancing, firewall service, and other network service are commonly integrated by the useof service modules that are inserted in the aggregation switched.
    • D、 Virtualization tools allow a cost effective approach for redundancy in the network design byusing two or four VDCs from the same physical switch.

    正确答案:D

  • 第2题:

    What is meant by the term "firewall sandwich"?()

    • A、multiple layers of firewalling
    • B、a method of operating firewalls from multiple vendors
    • C、firewall connections in either an active or standby state
    • D、an architecture in which all traffic between firewalls goes through application-specific servers
    • E、an architecture in which all traffic between firewalls goes through application-specific gateways

    正确答案:A

  • 第3题:

    Your network contains one Active Directory domain. You have a member server that runs Windows Server 2008.You need to immediately disable all incoming connections to the server. What should you do?()

    • A、From the Services snap-in,disable the IP Helper.
    • B、From the Services snap-in,disable the Netlogon service.
    • C、From Windows Firewall,enable the Block all connections option on the Public Profile.
    • D、From Windows Firewall enable the Block all connections option on the Domain Profile.

    正确答案:D

  • 第4题:

    Which of the following is the BEST reason to implement a firewall on a server?()

    • A、To watch for bandwidth issues
    • B、To protect the server from all traffic
    • C、To block certain traffic by ports
    • D、To monitor certain malicious traffic

    正确答案:C

  • 第5题:

    You have a server that runs Windows Server 2008. You need to prevent the server from establishing communication sessions to other computers by using TCP port 25. What should you do()

    • A、 From Windows Firewall, add an exception
    • B、 From windows Firewall enable the block all incoming connections option
    • C、 From the Windows Firewall with Advanced Security snap-in, create an inbound rule
    • D、 From the Windows Firewall with Advanced Security snap-in, create an outbound rule.

    正确答案:D

  • 第6题:

    Your network contains one Active Directory domainl. You have a member server that runs Windows Server 2008. You need to immediately disable all incoming connections to the server. What should you do?()

    • A、From the Services snap-in disable the IP Helpder
    • B、Fom the Services snap-in disable the Net Logon Service
    • C、From Windows Firewall, enable the Block all connections option on the Public Profile
    • D、From the Windows Firewall, enable the Block all connections option on the Domain Profile

    正确答案:D

  • 第7题:

    Your company has computers in multiple locations that use IPv4 and IPv6. Each location is protected by a firewall that performs symmetric NAT. You need to allow peer-to-peer communication between all locations. What should you do?()

    • A、Configure dynamic NAT on the firewall.
    • B、Configure the firewall to allow the use of Teredo.
    • C、Configure a link local IPv6 address for the internal interface of the firewall.
    • D、Configure a global IPv6 address for the external interface of the firewall.

    正确答案:B

  • 第8题:

    单选题
    You are designing a strategy to allow users to gain VPN access to the internal network. What should you do?()
    A

    Allow all inbound VPN traffic to pass through the internal firewall and the perimeter firewall.

    B

    Allow all inbound VPN traffic to pass through the perimeter firewall only.  

    C

    Allow all VPN traffic from the source IP address of 131.107.1.14 to pass through the internal firewall.

    D

    Allow all VPN traffic from the source IP address of 191.168.1.0/24 to pass through the perimeter firewall.


    正确答案: D
    解析: 暂无解析

  • 第9题:

    单选题
    You have a server that runs Windows Server 2008. You need to prevent the server from establishing communication sessions to other computers by using TCP port 25. What should you do()
    A

     From Windows Firewall, add an exception

    B

     From windows Firewall enable the block all incoming connections option

    C

     From the Windows Firewall with Advanced Security snap-in, create an inbound rule

    D

     From the Windows Firewall with Advanced Security snap-in, create an outbound rule.


    正确答案: C
    解析: 暂无解析

  • 第10题:

    单选题
    Your company has computers in multiple locations that use IPv4 and IPv6. Each location is protected by a firewall that performs symmetric NAT. You need to allow peer-to-peer communication between all locations. What should you do?()
    A

    Configure dynamic NAT on the firewall.

    B

    Configure the firewall to allow the use of Teredo.

    C

    Configure a link local IPv6 address for the internal interface of the firewall.

    D

    Configure a global IPv6 address for the external interface of the firewall.


    正确答案: B
    解析: 暂无解析

  • 第11题:

    单选题
    Your company has computers in multiple locations that use IPv4 and IPv6. Each location is protected by a firewall that performs symmetric NAT. You need to allow peer-to-peer communication between all locations. What should you do? ()
    A

    Configure dynamic NAT on the firewall

    B

    Configure the firewall to allow the use of Teredo

    C

    Configure a link local IPv6 address for the internal interface of the firewall

    D

    Configure a global IPv6 address for the external interface of the firewall


    正确答案: B
    解析: 暂无解析

  • 第12题:

    单选题
    Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2).A firewall separates the internal network from the Internet.  The firewall blocks all outbound traffic except for HTTP and SMTP traffic.You install a DNS server. The DNS server is configured to use the default root hints. You need to ensure that the DNS server can resolve the host names on the Internet.  Which port should you open on the firewall?()
    A

    53

    B

    135

    C

    500

    D

    3389


    正确答案: D
    解析: 暂无解析

  • 第13题:

    It’s a configuration that experts are calling a "firewall sandwich," with the second firewall providinga second level of load balancing after traffic down. What is meant by the term "firewall sandwich"?()

    • A、 single layer of firewalling
    • B、 multiple layers of firewalling
    • C、 firewall connections in either an active or standby state
    • D、 an architecture in which all traffic between firewalls goes through application-specific servers

    正确答案:B

  • 第14题:

    Which two statements are true about firewall filter configurations?()

    • A、Multiple action modifiers can be included in the same term.
    • B、Only a single action modifier can be included in the same term.
    • C、The default term within a firewall filter uses the discard action.
    • D、The default term within a firewall filter uses the reject action.

    正确答案:A,C

  • 第15题:

    What is a virtual firewall?()

    • A、another name for a firewall deployed in routed mode
    • B、another name for a firewall deployed in transparent mode
    • C、a separation of multiple firewall security contexts on a single firewall
    • D、a firewall that, when deployed in routed mode, can support up to 1000 VLANs per context
    • E、a firewall that has multiple contexts, all of which share the same policies (such as NAT and ACLs)

    正确答案:C

  • 第16题:

    While performing a site survey to document the existing environment before implementing a new HACMP cluster, it was discovered that a port filtering firewall was being used to protect the production system. The plan is to continue using the firewall and add a second firewall to avoid a single point of failure. Each node in the two-node cluster will have all of its network adapters connected to the firewalls, and all connections to the nodes will pass through these firewalls.  What must be considered about HACMP in a firewall environment?()  

    • A、 Firewalls are not supported in a HACMP environment.
    • B、 HACMP uses only TCP/IP so firewalls are not relevant.
    • C、 Specific ports must be open for HACMP communications.
    • D、 Dynamic routing must be used to properly route packets in a firewall-protected environment.

    正确答案:C

  • 第17题:

    Your network contains one Active Directory domain. You have a member server that runs Windows Server 2008 R2.You need to immediately disable all incoming connections to the server. What should you do?()

    • A、From the Services snap-in, disable the IP Helper.
    • B、From the Services snap-in, disable the Netlogon service.
    • C、From Windows Firewall, enable the Block all connections option on the Public Profile.
    • D、From Windows Firewall, enable the Block all connections option on the Domain Profile.

    正确答案:D

  • 第18题:

    You are designing a strategy to allow users to gain VPN access to the internal network.  What should you do?()

    • A、 Allow all inbound VPN traffic to pass through the internal firewall and the perimeter firewall.
    • B、 Allow all inbound VPN traffic to pass through the perimeter firewall only.
    • C、 Allow all VPN traffic from the source IP address of 131.107.1.14 to pass through the internal firewall.
    • D、 Allow all VPN traffic from the source IP address of 191.168.1.0/24 to pass through the perimeter firewall.

    正确答案:B

  • 第19题:

    单选题
    It’s a configuration that experts are calling a "firewall sandwich," with the second firewall providinga second level of load balancing after traffic down. What is meant by the term "firewall sandwich"?()
    A

     single layer of firewalling

    B

     multiple layers of firewalling

    C

     firewall connections in either an active or standby state

    D

     an architecture in which all traffic between firewalls goes through application-specific servers


    正确答案: A
    解析: 暂无解析

  • 第20题:

    单选题
    While performing a site survey to document the existing environment before implementing a new HACMP cluster, it was discovered that a port filtering firewall was being used to protect the production system. The plan is to continue using the firewall and add a second firewall to avoid a single point of failure. Each node in the two-node cluster will have all of its network adapters connected to the firewalls, and all connections to the nodes will pass through these firewalls.  What must be considered about HACMP in a firewall environment?()
    A

     Firewalls are not supported in a HACMP environment.

    B

     HACMP uses only TCP/IP so firewalls are not relevant.

    C

     Specific ports must be open for HACMP communications.

    D

     Dynamic routing must be used to properly route packets in a firewall-protected environment.


    正确答案: A
    解析: 暂无解析

  • 第21题:

    单选题
    Which unique characteristics of the Data Center Aggregation layer must be considered by an Enterprise Campus designer?()
    A

     Layer 3 routing between the Access and Aggregation layers facilities the ability to span VLANsacross multiple access switches, which is a requirement for many server virtualization andclustering technologies.

    B

     “East-west” server-to-server traffic can travel between aggregation modules by way of the core,but backup and replication traffic typically remains within an aggregation module.

    C

     Load balancing, firewall service, and other network service are commonly integrated by the useof service modules that are inserted in the aggregation switched.

    D

     Virtualization tools allow a cost effective approach for redundancy in the network design byusing two or four VDCs from the same physical switch.


    正确答案: C
    解析: 暂无解析

  • 第22题:

    单选题
    You are designing a strategy to allow users to gain VPN access to the internal network.  What should you do?()
    A

     Allow all inbound VPN traffic to pass through the internal firewall and the perimeter firewall.

    B

     Allow all inbound VPN traffic to pass through the perimeter firewall only.

    C

     Allow all VPN traffic from the source IP address of 131.107.1.14 to pass through the internal firewall.

    D

     Allow all VPN traffic from the source IP address of 191.168.1.0/24 to pass through the perimeter firewall.


    正确答案: B
    解析: 暂无解析

  • 第23题:

    单选题
    What is a virtual firewall?()
    A

    another name for a firewall deployed in routed mode

    B

    another name for a firewall deployed in transparent mode

    C

    a separation of multiple firewall security contexts on a single firewall

    D

    a firewall that, when deployed in routed mode, can support up to 1000 VLANs per context

    E

    a firewall that has multiple contexts, all of which share the same policies (such as NAT and ACLs)


    正确答案: D
    解析: 暂无解析

相关内容