D. Inline mode can drop malicious traffic.
In inline mode, the device is placed directly in the path of network traffic and can actively block or drop malicious traffic. In contrast, inline tap mode sends a copy of the traffic to another device for analysis without affecting the actual traffic flow.
The correct answer is D
Directly from the Official Cisco Press Cert Guide: "A threat defense in inline interface mode can block unintended traffic while it remains invisible to the network hosts. Inline mode allows a threat defense to block traffic based on the access control and intrusion rules you enable."
INLINE TAP
Copies the data to the SNORT Engine to be checked but then dropped while the actual data flow continues uninterrupted. Therefore, INLINE TAP does not send traffic to another device.
The Data is copied but not captured. You still would need to enable packet capture to capture packets (AKA Save PCAP).
INLINE:
Both inline and Inline Tap mode do not support SSL Decryption-resign... Although im a bit conflicted by this....
Truth is that Inline Mode can DROP malicious traffic but remember that Inline TAP mode CANNOT. Agan this is because tap mode sends a copy of the data to be inspected but not the actual data.
Best Answer is D.
A
1. With inline tap mode, the NGFW is only working with a copy of your data path traffic, as
opposed to being inline with the actual data path.
2. It still sees all your traffic and can detect suspect traffic, but it cannot block your actual data
path.
3. This lets you learn about how the NGFW responds in your particular environment, perhaps
building your knowledge and confidence in preparation for Inline mode.
4. False positives and hardware failures will not affect your network connectivity.
5. However, there is a risk of some malicious traffic making inside your protected network.
TAP does not packet capture. It simply duplicates traffic to a provided destination.
upvoted 1 times
...
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
14a1949
1 week, 2 days agogwb
5 months, 1 week agoCokamaniako
1 year, 2 months agojaciro11
1 year, 11 months agoaaInman
2 years agoxziomal9
2 years agoGrandslam
2 years, 4 months agoaadach
2 years, 8 months agoaadach
2 years, 8 months agoSarbi
2 years, 9 months agoSarbi
2 years, 9 months agoGrandslam
2 years, 4 months ago