exam questions

Exam Essentials All Questions

View all questions & answers for the Essentials exam

Exam Essentials topic 1 question 15 discussion

Actual exam question from WatchGuard's Essentials
Question #: 15
Topic #: 1
[All Essentials Questions]

Which of these threats can the Firebox prevent with the default packet handling settings? (Select four.)

  • A. Access to inappropriate websites
  • B. Denial of service attacks
  • C. Flood attacks
  • D. Malware in downloaded files
  • E. Port scans
  • F. Viruses in email messages
  • G. IP spoofing
Show Suggested Answer Hide Answer
Suggested Answer: BCEG 🗳️
B: The default configuration of the XTM device is to block DDoS attacks.
C: In a flood attack, attackers send a very high volume of traffic to a system so it cannot examine and allow permitted network traffic. For example, an ICMP flood attack occurs when a system receives too many ICMP ping commands and must use all of its resources to send reply commands. The XTM device can protect against these types of flood attacks: IPSec, IKE, ICMP. SYN, and UDP.
E: When the Block Port Space Probes (port scans) and Block Address Space Probes check boxes are selected, all incoming traffic on all interfaces is examined by the XTM device.
CG: Default packet handling can reject a packet that could be a security risk, including packets that could be part of a spoofing attack or SYN flood attack
Reference:
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/intrusionprevention/default_pkt_handling_opt_about_c.html%3FTocPath
%3DDefault%2520Threat%2520Protection%7CAbout%2520Default%2520Packet%2520Handling%2520Options%7C_____0

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Figeko
1 month, 1 week ago
Selected Answer: BCEG
are the only solution
upvoted 2 times
...
Satornjkk
3 years ago
B,C,E,G Another need to configure as policy and subscription services.
upvoted 1 times
Satornjkk
3 years ago
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/intrusionprevention/dist_denial_service_attacks_c.html
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago