FUNDAMENTALS OF COMPUTER

COMPUTER THREATS SECURITY

WHAT IS A FIREWALL IN NETWORK SECURITY

Please wait while the activity loads.
If this activity does not load, try refreshing your browser. Also, this page requires javascript. Please visit using a browser with javascript enabled.

If loading fails, click here to try again

Question [CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]

Which policy could be used to improve performance by early blocking or fastpathing traffic based on Layer 3/Layer 4 conditions?

A	Identity policy
B	NAT policy
C	Prefilter policy
D	IPS policy

Explanation:

Detailed explanation-1: -A pre-filter policy contains rules that match simple values, like IP’s and ports. There is no deep packet inspection in a pre-filter policy. One of the reasons to use this is to quickly allow or deny traffic, without deeper inspection. For example, imagine that you don’t allow SMTP traffic on your network.

Detailed explanation-2: -The Prefilter Policy is handled in the LINA engine, whereas the Access Control Policy is handled in SNORT. The main difference of the two policies is the inspection depth.

Detailed explanation-3: -Cisco FTD Prefilter Policy is the first level of access control and gives the capability to allow or filter a specific traffic at L3/L4 without the need to be forwarded to CPU intensive access control policy. It is also known as “fastpath” because it quickly allows or denies traffic, without deep packet inspection.

Detailed explanation-4: -Firepower threat defence (FTD) fastpath is a feature that allows you to enable a “first phase” of access control, also called “prefiltering”, before the system performs more resource-intensive evaluations such as deep inspections.

There is 1 question to complete.