FUNDAMENTALS OF COMPUTER

COMPUTER THREATS SECURITY

WHAT IS A FIREWALL IN NETWORK SECURITY

Please wait while the activity loads.
If this activity does not load, try refreshing your browser. Also, this page requires javascript. Please visit using a browser with javascript enabled.

If loading fails, click here to try again

Question [CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]

Which statement about Cisco ASA global ACL is true?

A	It is applied on a single interface.
B	It is applied globally on all interfaces in inbound and outbound direction.
C	There is a default implicit deny-all global access rule at the end of the global ACL.
D	Global access rules are used before interface access rules.

Explanation:

Detailed explanation-1: -Global ACL is something which can be used as a rule which might be used to Allow Or Deny traffic if it is not evaluated by the Interface ACL.

Detailed explanation-2: -Every access list ends with an implicit “deny all” rule. In the case that traffic does not match any of the configured rules, it is handled by the implicit deny, and the traffic is dropped. This rule cannot be deleted or modified.

Detailed explanation-3: -The Implicit Deny is a function the switch automatically adds as the last action in all ACLs. It denies (drops) any IPv4 traffic from any source to any destination that has not found a match with earlier entries in the ACL.

Detailed explanation-4: -By default, the ASA denies all packets on the originating interface unless you specifically permit access.

There is 1 question to complete.