• ホーム
  • ブログ
  • [2023年07月]更新のEssentials試験問題と有効なEssentials問題集PDF [Q23-Q47]

[2023年07月]更新のEssentials試験問題と有効なEssentials問題集PDF [Q23-Q47]

Share

[2023年07月]更新のEssentials試験問題と有効なEssentials問題集PDF

Essentialsブレーン問題集学習ガイドにはヒントとコツで試験合格を目指そう

質問 # 23
In a Mobile VPN configuration, why would you choose default route VPN over split tunnel VPN? (Select one.)

  • A. Default route VPN uses less processing power
  • B. Default route VPN automatically allows dynamic NAT
  • C. Default route VPN uses less bandwidth
  • D. Default route VPN allows your Firebox to examine all remote user traffic

正解:D

解説:
http://www.watchguard.com/help/docs/wsm/xtm_11/en-us/content/en-us/mvpn/pptp/mvpn_pptp_internet-access_c.html
The most secure option is to require that all remote user Internet traffic is routed through the VPN tunnel to the XTM device. Then, the traffic is sent back out to the Internet. With this configuration (known as default-route VPN), the XTM device is able to examine all traffic and provide increased security, although it uses more processing power and bandwidth.


質問 # 24
Match the monitoring tool to the correct task.
Which tool can ping the source of a denied packet? (Select one)

  • A. Traffic Monitor
  • B. Log Server
  • C. FireBox System Manager - Blocked Sites list
  • D. FireWatch
  • E. Firebox System Manager - Subscription services
  • F. Firebox System Manager - Authentication list

正解:A

解説:
Explanation/Reference:
For a quick look at the log messages generated by the Firebox, use Traffic Monitor. With Traffic Monitor, you can apply color to different types of messages, and ping or traceroute to the IP addresses of computers included in the log messages.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, pages 15, 34, 59, 181


質問 # 25
What is the best method to downgrade the version of Fireware OS on your Firebox without losing all device configuration settings? (Select one.)

  • A. Restore a saved backup image that was created for the device before the last Fireware OS upgrade.
  • B. Change the OS compatibility setting in Policy Manager to downgrade the device. Then use Policy Manager to save the configuration to the device.
  • C. Use the Upgrade OS feature in Fireware Web UI to install the sysa_dl file for an order version of Fireware OS.
  • D. Use the downgrade feature on Policy Manager to select a previous of Fireware OS.

正解:A


質問 # 26
When your device is in a default state, to which interface do you connect your management computer so you can use the Quick Setup Wizard or Web Setup Wizard to configure the device? (Select one.)

  • A. Console interface
  • B. Any interface
  • C. Interface 0
  • D. Interface 1

正解:D

解説:
To start the Web Setup Wizard, connect your computer to interface number 1 of your XTMdevice with an Ethernet cable. This is the trusted interface.
Reference:http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/installation/qsw_web_about_c.html


質問 # 27
Match each WatchGuard Subscription Service with its function.
Prevents accidental or unauthorized transmission of confidential information outside your network.
(Choose one).

  • A. Data Loss Prevention DLP
  • B. Gateway / Antivirus
  • C. Reputation Enable Defense RED
  • D. Intrusion Prevention Server IPS
  • E. APT Blocker

正解:A

解説:
Explanation/Reference:
Data Loss Prevention (DLP) watches for accidental and intentional breaches of private/sensitive data through an organizational policy. Provides a library of over 200 rules to protect organization data and has the ability to parse over 30 different file formats including Microsoft Office formats and PDFs.
Reference: http://www.tomsitpro.com/articles/network-security-solutions-guide, 2-866-6.html


質問 # 28
Which of these threats can the Firebox prevent with the default packet handling settings? (Select four.)

  • A. Access to inappropriate websites
  • B. Port scans
  • C. Viruses in email messages
  • D. Flood attacks
  • E. Malware in downloaded files
  • F. Denial of service attacks
  • G. IP spoofing

正解:B、D、F、G

解説:
Explanation/Reference:
B: The default configuration of the XTM device is to block DDoS attacks.
C: In a flood attack, attackers send a very high volume of traffic to a system so it cannot examine and allow permitted network traffic. For example, an ICMP flood attack occurs when a system receives too many ICMP ping commands and must use all of its resources to send reply commands. The XTM device can protect against these types of flood attacks: IPSec, IKE, ICMP. SYN, and UDP.
E: When the Block Port Space Probes (port scans) and Block Address Space Probes check boxes are selected, all incoming traffic on all interfaces is examined by the XTM device.
CG: Default packet handling can reject a packet that could be a security risk, including packets that could be part of a spoofing attack or SYN flood attack Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/intrusionprevention/ default_pkt_handling_opt_about_c.html%3FTocPath%3DDefault%2520Threat%2520Protection%7CAbout%
2520Default%2520Packet%2520Handling%2520Options%7C_____0


質問 # 29
After you enable spamBlocker, your users experience no reduction in the amount of spam they receive.
What could explain this? (Select three.)

  • A. spamBlocker Virus Outbreak Detection is not enabled.
  • B. A spamBlocker exception is configured to allow traffic from sender *.
  • C. Connections cannot be resolved to the spamBlocker servers because DNS is not configured on the Firebox.
  • D. The Maximum File Size to Scan option is set too high.
  • E. The spamBlocker action for Confirmed Spam is set to Allow.

正解:B、C、E

解説:
Explanation/Reference:
A: Spamblocker requires DNS to be configured on your XTM device
B: If you use spamBlocker with the POP3 proxy, you have only two actions to choose from: Add Subject Tag and Allow. Allow lets spam email messages go through the Firebox without a tag.
D: The Firebox might sometimes identify a message as spam when it is not spam. If you know the address of the sender, you can configure the Firebox with an exception that tells it not to examine messages from that source address or domain.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 138


質問 # 30
Which policies can use the Intrusion Prevention Service to block network attacks? (Select one?)

  • A. All policies
  • B. Only packet filter policies
  • C. Only HTTP and HTTPS Proxy policies
  • D. Only proxy policies
  • E. Only inbound policies

正解:B


質問 # 31
How can you include log messages from more than one Firebox in a single report generated by Dimension? (Select two.)

  • A. Create a report schedule that includes all the devices you want to include in the report.
  • B. Export report data as a single PDF file for all the devices you want to include in the report.
  • C. Create a device group and view the reports for that group.
  • D. You cannot see report data in Dimension for more than one device.

正解:A、C


質問 # 32
Which WatchGuard Subscription Service must be enabled in a proxy policy before you can use APT Blocker? (Select one.)

  • A. IPS
  • B. Application Control
  • C. Gateway Antivirus
  • D. RED
  • E. WebBlocker

正解:C


質問 # 33
How is a proxy policy different from a packet filter policy? (Select two.)

  • A. Only a proxy policy can prevent specific threats without blocking the entire connection.
  • B. Only a proxy works at the application, network, and transport layers to examine all connection data.
  • C. Only a proxy policy examines information in the IP header.
  • D. Only a proxy policy uses the IP source,destination, and port to control network traffic.

正解:A、B

解説:
C: Proxies can prevent potential threats from reaching your network without blocking the entire connection.
D: A proxy operates at the application layer, as well as the network and transport layers of a TCP/IP packet, while a packet filter operates onlyat the network and transport protocol layers.
Incorrect:
Not A: A packet filter examines each packet's IP header to control the network traffic into and out of your network.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 95


質問 # 34
Match each WatchGuard Subscription Service with its function.
Cloud based service that controls access to website based on a site's previous behavior. (Choose one).

  • A. Intrusion Prevention Server IPS
  • B. Application Control
  • C. Reputation Enable Defense RED
  • D. Data Loss Prevention DLP
  • E. WebBlocker
  • F. QuarantineServer

正解:C

解説:
Reputation Enable Device (RED) is a cloud-based reputation service that controls user's ability to get main access to web malicious sites. Works in concert with the WebBlocker module.
Reference:http://www.tomsitpro.com/articles/network-security-solutions-guide, 2-866-6.html


質問 # 35
You need to create an HTTP-proxy policy to a specific domain for software updates (example.com). The update site has multiple subdomains and dynamic IP addresses on a content delivery network. Which of these options is the best way to define the destination in your HTTP-proxy policy? (Select one.)

  • A. Configure a host name for update.example.com.
  • B. Create an alias for all subdomains and known IP addresses for example.com.
  • C. Configure an FQDN for *.example.com.
  • D. Add IP addresses that correspond to each software update server in the domain.

正解:C


質問 # 36
If you disable the Outgoing policy, which policies must you add to allow trusted users to connect to commonly used websites? (Select three.)

  • A. DNS port 53
  • B. FTP port 21
  • C. HTTP port 80
  • D. NAT policy
  • E. HTTPS port 443

正解:A、C、E

解説:
Explanation/Reference:
TCP-UDP packet filter
If you decide to remove the Outgoing policy, you must add a policy for any type of traffic you want to allow through the Firebox. If you remove the Outgoing policy and then decide you want to allow all TCP and UDP connections through the Firebox again, you must add the TCP-UDP packet filter to provide the same function.
This is because the Outgoing policy does not appear in the list of standard policies available from Policy Manager.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 97


質問 # 37
Clients on the trusted network need to connect to a server behind a router on the optional network. Based on this image, what static route must be added to the Firebox for traffic from clients on the trusted network to reach a server at 10.0.20.100? (Select one.)

  • A. Route to 10.0.20.0/24, Gateway 10.0.2.1
  • B. Route to 10.0.20.0/24, Gateway 10.0.2.254
  • C. Route to 10.0.10.0/24, Gateway 10.0.10.1
  • D. Route to 10.0.20.0, Gateway 10.0.2.254

正解:B

解説:
We must add a trusted static route to the 10.0.20.0/24 network through the 10.0.2.254 gateway.


質問 # 38
How can you prevent connections to the Fireware Web UI from computers on optional interface Eth2?
(Select one.)

  • A. Remove Any-Optional from the To list of the WatchGuard policy
  • B. Remove Any-Optional from the From list of the WatchGuard policy.
  • C. Remove Any-Optional from the From list of the WatchGuard Web UI policy
  • D. Remove Any-Optional from the To list of the WatchGuard Web UI policy.
  • E. Remove Eth2 from the Any-Optional alias.

正解:C


質問 # 39
When your users connect to the Authentication Portal page to authenticate, they see a security warning message in their browses, which they must accept before they can authenticate. How can you make sure they do not see this security warning message in their browsers? (Select one.)

  • A. Replace the Firebox certificate with the trusted certificate from your web server.
  • B. Instruct them to disable security warning message in their preferred browsers.
  • C. Import a custom self-signed certificate or a third-party certificate to your Firebox and import the same certificate to all client computers or web browsers.
  • D. Add the user accounts for your users who use the Authentication Portal to a list of trusted users on your Firebox.

正解:C


質問 # 40
In the network configuration in this image, which aliases is Eth2 a member of? (Select three.)

  • A. Any
  • B. Any-External
  • C. Any-Trusted
  • D. Optional-1
  • E. Any-optional

正解:A、D、E


質問 # 41
Match each type of NAT with the correct description:
Changes and routes all incoming and outgoing packets sent from one range of addresses to a different range of addresses. (Choose one)

  • A. 1-to1 NAT
  • B. Dynamic NAT
  • C. NAT Loopback

正解:A

解説:
Explanation/Reference:
When you enable 1-to-1 NAT, the Firebox changes and routes all incoming and outgoing packets sent from one range of addresses to a different range of addresses.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 74


質問 # 42
You can configure your Firebox to automatically redirect users to the Authentication Portal page.

  • A. False
  • B. True

正解:B


質問 # 43
Which of these options are private IPv4 addresses you can assign to a trusted interface, as described in RFC 1918, Address Allocation for Private Internets? (Select three.)

  • A. 192.168.50.1/24
  • B. 172.16.0.1/16
  • C. 10.50.1.1/16
  • D. 192.0.2.1/24
  • E. 198.51.100.1/24

正解:A、B、C


質問 # 44
HOTSPOT
Match the monitoring tool to the correct task:

正解:

解説:

Explanation:
Firewatch Traffic Monitor Firebox system Manager - Authentication List Log Server Firbox System Manager - Blocked State List Firebox System Manager - Subscription Services


質問 # 45
You can configure your Firebox to send log messages to how many WatchGuard Log Servers at the same time? (Select one.)

  • A. As many as you have configured on your network.
  • B. One
  • C. Two

正解:A

解説:
http://www.watchguard.com/help/docs/wsm/xtm_11/en-us/content/en-us/logging/logging_and_logfiles_about_c.html


質問 # 46
Which tool is used to see a treemap visualization of the traffic through your Firebox? (Select one)

  • A. FireWatch
  • B. Traffic Monitor
  • C. Log Server
  • D. FireBox System Manager - Blocked Sites list
  • E. Firebox System Manager - Subscription services
  • F. Firebox System Manager - Authentication list

正解:A

解説:
Explanation/Reference:
The FireWatch page is separated into tabs of data that is presented in a Treemap Visualization. The treemap is a widget that proportionally sizes blocks in the display to represent the data for that tab. The largest blocks on the tab represent the largest data users. The data is sorted by the tab you select and the type you select from the drop-down list at the top right of the page.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, pages 15, 34, 59, 181


質問 # 47
......

Essentials試験問題無料PDFダウンロード 最近更新された問題です:https://www.passtest.jp/WatchGuard/Essentials-shiken.html

Essentials認定試験問題集には75練習テスト問題:https://drive.google.com/open?id=1EEHUN1sZYteZkAPvf6x3L9z7SDJGTlyK

関するブログ

もっと
Essentials 無料問題集