Download SONICWALL SNSA Questions and Answers (Satisfaction Guaranteed) and more Exams Computer Science in PDF only on Docsity!
SONICWALL SNSA Questions and Answers
(Satisfaction Guaranteed)
A customer has an established base of GVC VPN users with a WAN GroupVPN policy configured. The customer wants to begin an implementation for SSL VPN users. The existing group of GVC VPN users must be converted to SSL VPN users because the SonicWALL security appliance does not support both types of VPN users. - FALSE
SSL VPN eliminates the need for remote access authentication. - FALSE
Which of the following correctly describes how a bandwidth management rule works?
-Can be configured for all VPN traffic
-Only applies to outbound traffic from the firewall to the WAN or any other destination
-Can be configured only for individual VPN Security Associations
-Only applies to inbound traffic from the WAN to the firewall - Can be configured for all VPN traffic
What are the benefits provided by a VPN (select all that apply)?
-Securely connects distributed networks together
-Prevents denial-of-service attacks on remote connections
-Enables a remote connection to the LAN via the Internet
-Assures remote clients have up-to-date anti-virus software
-Provides data confidentiality and sender authentication - -Securely connects distributed networks together
-Enables a remote connection to the LAN via the Internet
-Provides data confidentiality and sender authentication
What benefits are provided by a VPN (select all that apply)?
-Reporting
-Increased capacity
-Scalability
-Encryption
-Security - -Scalability
-Encryption
-Security
Which of the following is the most basic firewall technology?
-Packet filtering
-Single firewall
-Deep packet inspection
-Application proxies - -Packet filtering
The default firewall access rule allows all communication from the LAN to the Internet.
-True
-False - -True
What are two advantages of a multiple firewall?
-Protects restricted special resources
-Who should be allowed to access your services? - -Will users be allowed to login at any time, from any location, to any machine?
Content Filtering Services applies to which of the following traffic protocols? (Select all that apply.)
-HTTPS
-FTP
-HTTP
-Email attachments - -HTTP
-HTTPS
If the appliance loses connection to the SonicWALL site rating library: (Select all that apply.)
-CFS blocks all web traffic (based on configuration)
-CFS continues to operate using the last ratings seen
-CFS allows all web traffic (based on configuration)
-CFS must use its internal logic to identify which traffic to block - -CFS blocks all web traffic (based on configuration)
-CFS allows all web traffic (based on configuration)
With SonicWALL CFS, network administrators have a flexible tool to provide comprehensive filtering based on which of the following? (Select all that apply.)
-Allowed domain designations
-Time of day
-SMTP
-Keywords
-LDAP Groups
-Forbidden domain designations
-FTP - -Allowed domain designations
-Time of day
-Keywords
-Forbidden domain designations
The default CFS policy when assigned "Via Users and Zones Screens" should be the most restrictive.
-True
-False - True
The SonicWALL Log can be exported in the following formats: (Choose all that apply)
-Log View
-Comma-separated value (CSV)
-Tab Delimited
-Plain text - -Comma-separated value (CSV)
-Plain text
Which SonicWALL security services use the Deep Packet Inspection engine? (Select all that apply)
-IPS
-Anti-Spyware
-GVC
-True
-False - -True
The SonicWALL security appliance maintains an Event log for tracking potential security threats.
-True
-False - -True
Which Security Services of the SonicWALL security appliance use the SonicWALL Deep Packet Inspection engine?
-IPS, GAV, Anti-Spyware, and Viewpoint
-IPS, Anti-Spyware, Content Filtering
-IPS, GAV, and Anti-Spyware
-Global VPN Client - -IPS, GAV, and Anti-Spyware
In order for SonicWALL's Deep Packet Inspection engine to provide protection, where must GAV, IPS, and/or Gateway Anti-Spyware be configured?
-Firewall rules
-Enforced in the Zones and enabled in security services
-Address objects
-Zones
-NAT policies and firewall rules - -Zones
Which of the following LB/Failover methods would be selected if an administrator wanted to specify how much outbound traffic is sent through the primary and secondary WAN interfaces?
-Active/Passive
-Ratio based
-Round Robin
-Spill-Over based - -Ratio based
How does the SonicWALL maintain persistence with outbound load balancing?
-SSL Session ID
-Source IP and Destination IP
-Source and Destination Port
-Session Cookies - -Source IP and Destination IP
One requirement of WAN ISP Failover and Load balancing is?
-Twin-ax cables
-Standard OS
-A second ISP connection
-Cross-Over cable - -A second ISP connection
When WAN failover occurs, the firewall re-establishes all sessions using the new WAN interface with no traffic interruption thanks to the stored and tracked session states.
-True
-False - -False
Which of the following configurations takes precedence?
-Private NAT rules on DMZ
-Outbound WAN Load Balancing
-Global Public NAT rules
-Outbound Policy Based Route - -Outbound WAN Load Balancing
Which of the following LB/Failover methods allows an administrator to specify a threshold at which traffic is also sent out of the secondary WAN Interface?
-Spill-Over based
-Percentage based
-Round Robin
-Active/Passive - -Spill-Over based
Check Network Settings is a diagnostic tool which automatically checks the network connectivity and service availability of several pre-defined functional areas of SonicOS, returns the results, and attempts to describe the causes if any exceptions are detected.
-True
-False - -True
The default factory behavior of a SonicOS appliance is to allow all traffic from the LAN and block all traffic from the WAN.
-True
-False - -True
Before you upgrade firmware, you should save some backups and documentation, so that you are prepared to recover easily if something goes wrong.
-True
-False - -True
Which of the following is NOT a valid System boot option:
-Uploaded Firmware
-New Firmware
-Current Firmware
-Current Firmware with Factory Defaults - -New Firmware
For any model, when having problems with synchronization with the licensing information, you can try a method which involves a button on the _____ page which resets the firewall's licensing.
-diag.html
-climgr.html
-adminlocal.html
-debug.html - -diag.html
The default IP Address for a SonicOS appliance booted in SafeMode is:
-For Gen 5 192.168.168.1, for Gen 6 192.168.1.
-For Gen 5 192.168.168.168, for Gen 6 192.168.1.
-For Gen 5 192.168.168.1, for Gen 6 192.168.1.
-For Gen 5 192.168.1.254, for Gen 6 192.168.168.
True
False - True
Setting the Log Monitor to display Emergency level logs will result in the highest priority; most verbose logs.
True
False - False
Booting the system with Firmware Diagnostic Enabled is a good practice.
True
False - False
T/F: The default guest profile cannot be deleted - TRUE
What is the default timeout setting for administrator inactivity? - 5 minutes
Which panel of the SonicOS management interface is used to define password restrictions? - Manage > Appliance > Base Settings > Login Security
What options are available to preempt an administrator logged into a firewall? (Choose all that apply) - Drop into Non-config mode
Log out
T/F: The real time data that is depicted on the Dashboard is compiled and summarized from the AppFlow panel. - TRUE
Which of the following are displayed on the System Status monitor? (Select all that apply) - Network interfaces
Latest Alerts
System Information
What type of information is displayed on the Threat Protection monitor? (Select all that apply) - Viruses blocked
Intrusions prevented
Spyware Blocked
T/F: The Firewall Snapshot section displays the percentage of encrypted traffic flowing through the firewall. - TRUE
Where are the AppFlow reports generated in the SonicOS management interface? - Investigate > Reports > AppFlow Reports
Which packet replay method is used to send individual packets with respective header fields and payload details to the firewall engine for analysis? - Single Packet
Event Logs - Depict all network and user activity in real-time
Connection Logs - Display active inbound and outbound connections
AppFlow Logs - Provide information about incoming and outgoing data packets in real-time
WAN Acceleration Logs - Provide details about the WXA performance
2. LAN
3. DMZ
4. WLAN
What are the 4 available IP modes under interface settings? - 1. Static IP mode
- Transparent IP mode (Splice L3 subnet)
- IP Unnumbered
- Native Bridge mode
Static IP mode - Must set the IP address and subnet mask manually
Transparent IP mode (Splice L3 subnet) - The IP address for the interface is assigned using an Address Object that falls within the WAN primary IP subnet, effectively spanning the subnet from the WAN interface to the assigned interface
IP unnumbered mode - Borrows its address from another interface; this is configured when a WAN interface is configured in PPoE mode
Native Bridge Mode - the member interface will share the same zone and IP subnet as parent interface to which it is bridged
T/F: A default gateway address is optional on a LAN interface - TRUE
T/F: A default gateway IP address is required on a WAN interface if any destination is required to be reached via the WAN interface that is not part of the WAN subnet IP address space - TRUE
Where do you navigate to globally enable bandwidth management on the firewall? - Manage > Security Configuration > Firewall Settings > Bandwidth Management > Click "Advanced" Radio Button > Click "Accept"
Where do you navigate to configure the WAN interface Bandwidth? - Manage > System Setup > Network > Interfaces > Select "X1 WAN" > Select "Advanced Settings" tab > Select "Enable interface egress/ingress bandwidth limitation"
Where do you navigate to configure a bandwidth object? - Manage > Policies > Objects > Bandwidth Objects > Click "Add"
T/F: If a firewall is licensed for Capture ATP then the Capture ATP service is enabled by default. - FALSE
You must navigate to Manage > Security Services > Capture ATP > Click "Enable it"
Where do you navigate to enable and configure Capture ATP, GEO-IP, and Botnet Filter? - Manage > Security Configuration > Security Services > Capture ATP > Click "Enable it"
Where do you navigate to enable GEO-IP filter? - Manage > Security Configuration > Security Services > GEO-IP filter
Where do you navigate to enable Botnet filter? - Manage > Security Configuration > Security Services > Botnet filter
What are the list of available options under for a category under content filtering? - Allow
Block
BWM
Confirm
Passphrase
SonicOS does NOT use the X0 interface as the backup heartbeat monitor in an HA pair - FALSE
X0 is used as a backup heart beat monitor
What options are used to preempt an administrator logged into the firewall? - Log out
Drop into non-config mode
Which feature is used to create a predefined email notification with a defined subject? - Automation
What type of information is displayed on the Threat protection panel? - Spyware blocked
Intrusions prevented
Viruses blocked
What is the navigation path to create a bandwidth object in SonicOS 6.5? - Manage > Policies > Objects < Bandwidth Objects
What is the navigation path to configure Capture ATP settings? - Manage > Security Services
Which object type is used to create a CFS policy? - Content Filter Object
What object type represents the condition that must be met in an App Rule policy? - Match Object
The enable App Control check box is selected by default - FALSE
During the HA configuration, the Virtual MAC option should be enabled so that the switch does not have to re-learn the MAC of the secondary unit upon failover - TRUE
Enabling HTTPS management of the WAN interface is considered a best practice - FALSE
Choose the Quick configuration Guides that are available in the SonicOS interface. (Select all that apply from App Rule, Licensing, Setup, Bandwidth Management, VPN) - App Rule, Setup, VPN
As a general practice, all inbound connections should be logged. - True
Where is the real-time data on the Dashboard compiled and summarized from? - Logs
Enabling HTTPS management of the WAN interface is considered a best practice. - False
What is the navigation path to create a bandwidth object in SonicOS 6.5? - Manage>Policies>Objects>Bandwidth objects
What is the navigation path to configure Capture ATP settings? - Manage>Security Services
What type of CFS object allows you to take action on a specific category? - CFS Profile Object
Which object type represents the condition that must be met in an app rule policy? - Match Object
The Enable App Control check box is selected by default? - False
The HA Interfaces tab is used to define the mode for he primary firewall. What is the SonicOS navigation path for HA configuration? - Manage>High Availability>Base Setup
Choose the Quick configuration Guides that are available in the SonicOS interface. (Select all that apply from App Rule, Licensing, Setup, Bandwidth Management, VPN) - App Rule, Setup, VPN
