有効なEssentialsテスト解答WatchGuard Essentials試験PDF問題を試そう
WatchGuard Essentials認定リアル2023年最新の模擬試験合格させます
WatchGuard Essentials Examは、グローバルに認められているベンダー固有の認定資格です。ネットワークセキュリティソリューションの主要プロバイダーであるWatchGuard Technologiesによって提供されています。この試験は、WatchGuard Fireboxアプライアンスのインストール、設定、管理に必要なスキルと知識を検証するために設計されています。それは、候補者が製品の機能と能力を十分に理解し、一般的な問題を効果的にトラブルシューティングできることを保証します。
この試験は、候補者がコアネットワークセキュリティの概念とWatchGuardファイアウォールを使用する能力に関する理解をテストするように設計されています。認定はWatchGuardによって認識され、専門家の履歴書に貴重な追加であり、WatchGuard製品の習熟度を示しています。この試験は、複数選択の質問で構成されており、通常はオンラインで撮影されます。完了すると、候補者は達成証明書を受け取り、潜在的な雇用主またはクライアントに専門知識を実証するために使用できます。 WatchGuard Essentials(FireWare Essentials)認定試験は、ネットワークセキュリティの専門知識とWatchGuardファイアウォールを使用する能力を実証する優れた方法です。
質問 # 27
Which of these actions adds a host to the temporary or permanent blocked sites list? (Select three.)
- A. Enable theAUTO-block sites that attempt to connectoption in a deny policy.
- B. In Policy Manager, selectSetup> Default Threat Protection > Blocked Sitesand clickAdd.
- C. On the Firebox System Manager >Blocked Sitestab, selectAdd.
- D. Add the site to theBlocked Sites Exceptionslist.
正解:A、B、C
解説:
A: You can configure a deny policy to automatically block sites that originate traffic that does not comply with the policy rulese
1.From Policy Manager, double-click the PCAnywhere policy.
2.Click the Properties tab. Select the Auto-block sites that attempt to connect checkbox.
Reference:https://www.watchguard.com/training/fireware/80/defense8.htm
C: The blocked sites list shows all the sites currently blocked as a result of the rules defined in Policy Manager. From this tab, you can add sites to the temporary blocked sites list, or remove temporary blocked sites.
Reference:http://www.watchguard.com/training/fireware/82/monitoa6.htm
D: You can usePolicy Manager to permanently add sites to the Blocked Sites list.
1.select Setup > Default Threat Protection > Blocked Sites.
2.Click Add.
The Add Site dialog box appears.
Reference:http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-
US/intrusionprevention/blocked_sites_permanent_c.html
質問 # 28
You can configure your Firebox to automatically redirect users to the Authentication Portal page.
- A. False
- B. True
正解:A
質問 # 29
When you examine the log messages In Traffic Monitor, you see that some network packets are denied with an unhandled packet log message. What does this log massage mean? (Select one.)
- A. The packet is denied because the site is on the Blocked Sites List.
- B. The packet is denied because it does not match any firewall policies.
- C. The packet is denied because it matched a policy.
- D. The packet is denied because it matched an IPS signature.
正解:D
質問 # 30
Which diagnostic tasks can you run from the Traffic Monitor tab of Firebox System Manager? (Select four.)
- A. Reputation lookup
- B. DNSlookup
- C. MAC address lookup
- D. Traceroute
- E. TCP dump
- F. Ping
正解:B、D、E、F
解説:
From Firebox System Manager, you can run diagnostic tasks to review information in all the log messages from your Firebox or XTM device. This can help you debug problems on your network.
1.On the Traffic Monitor tab, right-click a message and select Diagnostic Tasks. Or, select Tools > Diagnostic Tasks.
2.From the Task drop-down list, select the task to run. Ping IPv4 Ping IPv6 traceroute DNS Lookup TCP Dump
Reference:http://watchguard.com/help/docs/wsm/xtm_11/en-us/content/enus/fsm/log_message_learn_more_wsm.html
質問 # 31
Match each WatchGuard Subscription Service with its function.
Cloud based service that controls access to website based on a site's previous behavior. (Choose one).
- A. WebBlocker
- B. Application Control
- C. QuarantineServer
- D. Data Loss Prevention DLP
- E. Reputation Enable Defense RED
- F. Intrusion Prevention Server IPS
正解:E
解説:
Reputation Enable Device (RED) is a cloud-based reputation service that controls user's ability to get main access to web malicious sites. Works in concert with the WebBlocker module.
Reference:http://www.tomsitpro.com/articles/network-security-solutions-guide, 2-866-6.html
質問 # 32
Users on the trusted network cannot browse Internet websites. Based on the configuration shown in this image, what could be the problem with this policy configuration? (Select one.)
- A. The HTTP-proxy policy is configured for the wrong port.
- B. The default Outgoingpolicy has been removed and there is no policy to allow DNS traffic.
- C. The HTTP-proxy allows Any-Trusted and Any-Optional to Any-External.
- D. The HTTP-proxy policy has higher precedence than the HTTPS-proxy policy.
正解:A
質問 # 33
You need to create an HTTP-proxy policy to a specific domain for software updates (example.com). The update site has multiple subdomains and dynamic IP addresses on a content delivery network. Which of these options is the best way to define the destination in your HTTP-proxy policy? (Select one.)
- A. Configure a host name forupdate.example.com.
- B. Add IP addresses that correspond to each software update server in the domain.
- C. Configure an FQDN for*.example.com.
- D. Create an alias for all subdomains and known IP addresses forexample.com.
正解:C
解説:
http://www.watchguard.com/help/docs/fireware/11/en-US/Content/en-US/policies/fqdn_about_c.html
質問 # 34
HOTSPOT
Match each type of NAT with the correct description:
正解:
解説:
Explanation:
NAT Loopback 1-to 1 NAT
Dynamic NAT
質問 # 35
From the Firebox System Manager >Authentication List tab, you can view all of the authenticated users connected to your Firebox and disconnect any of them.
- A. False
- B. True
正解:B
質問 # 36
Only 50 clients on the trusted network of your Firebox can connect to the Internet at the same time. What could cause this? (Select one.)
- A. The DHCP address pool on the trusted interface has only 50 IP addresses.
- B. TheLiveSecurity feature key is expired.
- C. The Outgoing policy allows a maximum of 50 client connections.
- D. The device feature key allows a maximum of 50 client connections.
正解:A
質問 # 37
Match each type of NAT with the correct description:
Conserves IP addresses and hides the internal topology of your network. (Choose one)
- A. 1-to1 NAT
- B. NAT Loopback
- C. Dynamic NAT
正解:C
解説:
Explanation/Reference:
Dynamic NAT is also known as IP masquerading. With dynamic NAT many computers can connect to the Internet from one public IP address. Dynamic NAT gives more security for internal hosts that use the Internet, because it hides the IP addresses of hosts on your network.
Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/nat/ nat_dynamic_use_c.html%3FTocPath%3DNetwork%2520Address%2520Translation%2520(NAT)%
7CAbout%2520Dynamic%2520NAT%7C_____0
質問 # 38
You can configure the SMTP-proxy policy to restrict email messages and email content based on which of these message characteristics? (Select four.)
- A. Email message size
- B. Maximum email recipients
- C. Sender Mail From address
- D. Check URLs in message with WebBlocker
- E. Attachment file name and content type
正解:A、B、C、E
解説:
A: Another way to protect your SMTP server is to restrict incoming traffic to only messages that use your company domain. In this example, we use the mywatchguard.com domain. You can use your own company domain.
1.From the SMTP-Incoming Categories list, select Address > Rcpt To.
2.In the Pattern text box, type*.mywatchguard.com. Click Add.This denies anyemail messages with a Rcpt To address that does not match the company domain.
3.Click OK to close the SMTP Proxy Action Configuration dialog box.
C: In this exercise we will reduce the maximum email size to 5 MB (5, 000 kilobytes).
1.From the SMTP ProxyAction dialog box under the Categories list, select General > General Settings.
2.Find the Limits section. In the Set the maximum email size value box, type 5000.
D: Example: He must configure the Firebox to allow Microsoft Access database files to go through the SMTP proxy. He must also configure the Firebox to deny Apple iTunes MP4 files because of a recent vulnerability announced by Apple.
1.From the SMTP-Incoming Categories list, select Attachments > Content Types.
2.In the Actions to take section,use the None Matched drop-down list to select Allow.
This allows all content types through Firebox to the SMTP server. After Successful Company is able to add in the specific content types they want to allow, they set this parameter to strip content typethat does not match their list of allowed content types.
From the SMTP-Incoming Categories list, select Attachments > Filenames.
4. The filename extension for Microsoft Access databases is ".mdb". In the list of filenames, find and select .mdb. Click Remove. Click Yes to confirm.
3. If no rules match, the Action to take option is set to allow the attachment. In this example, MS Access files are now allowed through the Firebox.
5. In the Pattern text box, type *.mp4. Click Add.
This rule configures the Firebox to deny all files with the Apple iTunes ".mp4" file extension bound for the SMTP server.
E: The Set the maximum email recipient checkbox is used to set the maximum number of email recipients to which a message can be sent in the adjacent text box thatappears, type or select the number of recipients.
The XTM device counts and allows the specified number of addresses through, and then drops the other addresses. For example, if you set the value to 50 and there is a message for 52 addresses, the first 50addresses get the email message. The last two addresses do not get a copy of the message.
Incorrect:
Not B: Webblocker is configured through a HTTP-policy, not through an SMTP policy.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10,pages 125, 126
Reference:http://watchguard.com/help/docs/wsm/xtm_11/en-us/content/enus/proxies/smtp/proxy_smtp_gen_settings_c.html
質問 # 39
Which WatchGuard tools can you use to review the log messages generated by your Firebox? (Select three).
- A. Fireware XTM Web UI > Traffic Monitor
- B. WatchGuard System Manager > Policy Manager
- C. Firebox System Manager > Status Report
- D. Dimension > Log manager
- E. Firebox System Manager > Traffic Monitor
正解:A、D、E
解説:
Explanation/Reference:
A: You can use Firebox System Manager (FSM) to see log messages from your XTM device as they occur.
1. Start Firebox System Manager.
2. Select the Traffic Monitor tab.
Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-US/fsm/ log_msgs_traffic_mon_wsm.html
D: You can use Firebox System Manager to see log messages in real-time on the Traffic Monitor tab. You can also examine log messages with Log Manager or WatchGuard Dimension.
B: After you connect to WatchGuard WebCenter, you can review the log messages sent from your XTM devices to your WatchGuard Log Server. Log Manager enables you to see log messages from your device for any period of time you specify, if log messages were generated in the selected time frame. To see log messages for an XTM device as they are generated, in real-time, you can use Firebox System Manager Traffic Monitor.
Reference: http://www.watchguard.com/help/docs/wsm/XTM_11/en-US/index.html#en-US/logging/ log_mgr_view_device_wsm.html
Incorrect:
Not C: The Status Report tab shows statistics about Firebox or XTM device traffic and performance. It does not display log messages.
To see the Status Report:
1. Start Firebox System Manager.
2. Select the Status Report tab.
質問 # 40
When you examine the log messages In Traffic Monitor, you see that some network packets are denied with an unhandled packet log message. What does this log massage mean? (Select one.)
- A. The packet is denied because the site is on the Blocked Sites List.
- B. The packet is denied because it does not match any firewall policies.
- C. The packet is denied because it matched an IPS signature.
- D. The packet is denied because it matched a policy.
正解:B
質問 # 41
Which of these options are private IPv4 addresses you can assign to a trusted interface, as described in RFC 1918, Address Allocation for Private Internets? (Select three.)
- A. 172.16.0.1/16
- B. 10.50.1.1/16
- C. 192.0.2.1/24
- D. 198.51.100.1/24
- E. 192.168.50.1/24
正解:A、B、E
質問 # 42
......
Essentials試験問題と有効なEssentials問題集PDF:https://www.passtest.jp/WatchGuard/Essentials-shiken.html
Essentialsブレーン問題集学習ガイドにはヒントとコツで試験合格を目指そう:https://drive.google.com/open?id=1EEHUN1sZYteZkAPvf6x3L9z7SDJGTlyK