Module 10 CCNASEC
Authored by Holykings0626 Holykings0626
others
Used 1+ times
AI Actions
Add similar questions
Adjust reading levels
Convert to real-world scenario
Translate activity
More...
Content View
Student View
12 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Which statement accurately describes Cisco IOS zone-based policy firewall operation?
The pass action works in only one direction
A router interface can belong to multiple zones
Router management interfaces must be manually assigned to the self zone
Service policies are applied in interface configuration mode
2.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
How does ZPF handle traffic between an interface that is a zone member and another interface that does not belong to any zone?
inspect
allow
drop
pass
3.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Which statement describes a factor to be considered when configuring a zone-based policy firewall?
The classic firewall ip inspect command can coexist with ZPF as long as it is used on interfaces that are in the same security zones
The router always filters the traffic between interfaces in the same zone
A zone must be configured with the zone security global command before it can be used in the zone-member security command
An interface can belong to multiple zones
4.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Which statement describes one of the rules that govern interface behavior in the context of implementing a zone-based policy firewall configuration?
An administrator can assign interfaces to zones, regardless of whether the zone has been configured
By default, traffic is allowed to flow between a zone member interface and any interface that is not a zone member
An administrator can assign an interface to multiple security zones
By default, traffic is allowed to flow among interfaces that are members of the same zone
5.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Designing a ZPF requires several steps. Which step involves defining boundaries where traffic is subjected to policy restrictions as it crosses to another region of the network?
determine the zones
design the physical infrastructure
identify subsets within zones and merge traffic requirements
establish policies between zones
6.
MULTIPLE SELECT QUESTION
30 sec • 1 pt
When a Cisco IOS zone-based policy firewall is being configured, which two actions can be applied to a traffic class? (Choose two.)
forward
copy
drop
inspect
hold
7.
MULTIPLE SELECT QUESTION
30 sec • 1 pt
Which three statements describe zone-based policy firewall rules that govern interface behavior and the traffic moving between zone member interfaces? (Choose three.)
To permit traffic to and from a zone member interface, a policy allowing or inspecting traffic must be configured between that zone and any other zone
If traffic is to flow between all interfaces in a router, each interface must be a member of a zone
Pass, inspect, and drop options can only be applied between two zones
Traffic is implicitly prevented from flowing by default among interfaces that are members of the same zone
Interfaces can be assigned to a zone before the zone is created
Access all questions and much more by creating a free account
Create resources
Host any resource
Get auto-graded reports
Continue with Google
Continue with Email
Continue with Classlink
Continue with Clever
or continue with
Microsoft
%20(1).png)
Apple
Others
Already have an account?
