Download SONICWALL NETWORK SECURITY ADMINISTRATOR 2026 REVISION NOTES AND STRUCTURED NETWORK SECURI and more Exams Network Technologies and TCP/IP in PDF only on Docsity!
SONICWALL NETWORK SECURITY
ADMINISTRATOR 2026 REVISION NOTES AND
STRUCTURED NETWORK SECURITY OVERVIEW
GUIDE
โ What are the preempt admin options? Answer: Drop into non- config Log out โ What are the two best practices that should be implemented before updating the firmware? Answer: Create a backup Download a settings file locally โ What are some of the Key Features of Sonicwall next Gen Firewalls? Answer: Network Segmentation Flexible Deployment Application intelligence and control โ What are some of the Key features of SONICOS 7 architecture? Answer: Simplified Integration Advanced Protection against Encrypted threats Easy Zero Touch Deployment
TLS 1.
โ Which user authentication method uses AAA? Answer: RADIUS โ What is the default RADIUS port? Answer: 1812 โ Which user authentication method is best for a large number of users? Answer: RADIUS โ Which user authentication method is scalable? Answer: LDAP โ What is the default port number of LDAP over TLS? Answer: 636 โ What is the default port number of LDAP (unencrypted) Answer: 389 โ Which Authentication Method is recommended for a small number of users? Answer: Local Users โ Which user authentication method is best for a small amount of users? Answer: Local Database โ What are the default zones? Answer: WAN
โ What does Allow VPN path to take precedence do in routing? Answer: When a VPN tunnel is active, the static route destinations that match the VPN are disabled. When the VPN is disabled the static route will be enabled. โ T/F: Static Routes by default take precedence over VPN traffic. Answer: True โ What is split horizon for RIP? Answer: Suppresses the inclusion of routes sent in updates to routers from which they were learned to prevent routing loops. โ What is poisoned reverse for RIP? Answer: optional mode of split horizon Instead of suppressing the inclusion of learned routes, the routes are sent with a metric of infinity or 16 indicating that they are unreachable. โ T/F: TOS packets apply to packets as they exit the firewall. Answer: False โ T/F: Advanced Routing is enabled by default. Answer: True
โ Which Protocols are supported by advanced routing? Answer: RIP and OSPFv2 and v โ Which variables are used to configure static routes to forward traffic? Answer: Interfaces Services โ What is the Priority order of System Logs Answer: Emergency Alert Critical Error Warning Notice Inform Debug โ What are the 3 export options for system logs Answer: EMAIL TEXT CSV โ Which option is used to configure the event log attributes globally using flexible match conditions? Answer: Go to Configure Log
โ T/F: Setting the event priority level lower than the logging level, will cause those event to be filtered out from event logs. Answer: True โ All the information about incoming and outgoing data packets in real time Answer: APPFLOW MONITOR โ All the configuration changes made by an administrator Answer: Auditing Logs โ All network and user activity in real time Answer: System Logs โ Information about incoming and outgoing data packets in real time Answer: App Flow Monitor โ Active inbound and outbound connections Answer: Connections โ What does the System Dashboard show? Answer: General System Status System usage network Interfaces Services High availability
โ T/F: The multi-core monitor displays dynamically updated statistics on the utilization of the individual cores of the sonicwall security appliance. Answer: True โ T/F: The real time monitoring features rely on flow collection mechanisms to collect and display data Answer: True โ T/F: The firewall can perform a rolling analysis of the event logs to show the most frequently accessed web sites and the bandwidth use by ip address or service. Answer: True โ T/F: The Connection Count monitor periodically updates the outgoing and incoming connection rates for each interface. Answer: False โ Utilization of individual cores on the firewall Answer: Multicore monitor โ Frequently used applications Answer: Application Bandwidth Monitor โ Bandwith Traffic and respective packet rate Answer: Interface Usage
โ T/F: Replayed Packets are dropped before they can transmit through interfaces. Answer: True โ T/F: When creating a network probe policy, if the next hop gateway is not specified, the probe will assume that the targets are directly connected to the outbound interfaces network. Answer: True โ Which Dianostics tool tests for the default gateway settings, dns settings, as well as server connectivity for my sonicwall license manager and content filter? Answer: Check network Settings โ Which are included in the output of a network monitor? Answer: Interface Probe Type IP Version Probe Target โ Which type of intermediate traffic is monitored by the packet monitor? Answer: multicast traffic IP helper traffic reassembled traffic fragmented traffic remote mirrored traffic
IPsec traffic SSL decrypted traffic SSL decrypted traffic decrypted LDAP over TLS packets decrypted Single Sign On agent/client messages โ T/F: Sonicwall capture client is a unified client platform that delivers multiple endpoint protection capabilities. Answer: True โ Reduces the footprint and overhead cost of management Answer: cloud based management console โ Protects against both file based and fileless malware and delivers a 360 degree attach view with actionable intelligence. Answer: Continuous Behavioral monitoring โ Removes the threat completely and restores a target client to its original state before the malware activity had even started Answer: Rollback Capability โ What is the pecking order of the management scope? Answer: Global Account Tenant
โ T/F: Policy Inheritance refers to the ability of a policy at a child scope to be automatically inherited from the policy of the parent scope Answer: True โ What are the 6 firewall management challenges? Answer: Management complexity Misconfigured Policies Lack of visibility Hidden Risks Slow Response Talent Shortage โ T/F: Sonicwall Network Security Manager offers unified firewall management to orchestrate automate and monitor firewall security environments. Answer: True โ Assign varying levels of firewall manaegement access Answer: role based access control โ compare the configuration of a device or devices across groups Answer: config audit โ automate management tasks Answer: restful apis
โ replicate settings or configurations across tenants Answer: templates โ 7 day reporting Answer: NSM Essential โ 365 days reporting and anayltics Answer: NSM Advanced โ NSM Architecture allows you to scale up to BLANK devices under management. Answer: 10, โ Access to NSM can be limited by BLANKING source IP addresses. Answer: Whitelisting โ T/F: Golden SonicOSX template is not supported on NSM Answer: False โ How would you categorize the new features unified policy management and multi-device firmware upgrade? Answer: Usability enhancements โ T/F: NSM on Prem offers large scale centeralied management of sonicwall gen 7 devices only. Answer: False
โ What are the benefits of a route-based VPN over a policy based VPN? Answer: Scalable Easier to Maintain Flexible โ What is the default ip address of the sonicwall. Answer: 192.168.168. โ What types of VPNs are shown in the IP Sec VPN? Answer: Policy Type: Site to Site Tunnel Interface โ T/F: SonicOS 7's modern and intunitive interface features intelligent device dashboards with actionable alerts, redesigned topologies, and simplified policy creation and management. Answer: True โ What is the alpha-numeric character range of the Firewall Name? Answer: 8-63 characters โ What is the alpha-numeric character range of the Administrator Login Name? Answer: 32 Charecters
โ What is the default log out admin after inactivity duration? Answer: 5 Mins โ What are the default management ports? Answer: 80 and 443 โ What are the default access rules created when using the web server wizard? Answer: WAN > LAN - Allow 'Any' to 'Beta1 Public' for service group 'Beta1 Services'. Similar rules will be created from all lower security zones to the LAN zone. โ What are the default NAT rules created when using the web server wizard? Answer: Outbound Policy: Rewrite packets from Beta Private and translate to Beta1 Public Create Loopback Policy: allow access from all internal zones to the server at public IP address 100.100.100. โ T/F: You can back up Firmware automatically in a recurring mode to your local server. Answer: False โ Which 5 Packet status types are indicated by the packet monitor? Answer: Consumed
configured. When the last WAN interface has been reached, traffic flow starts again with the primary WAN. Answer: Round Robin
