CCSP Cisco Secure PIX Firewall Advanced Exam Certification Guide, Second Edition [Electronic resources]

Greg Bastien; Earl Carter; Christian Degu

نسخه متنی -صفحه : 191/ 159
نمايش فراداده

  • Chapter 15

    "Do I Know This Already?" Quiz

  • By deleting the <OBJECT CLASSID> </OBJECT> tags or the <APPLET> </ APPLET> tags in th171 page.

  • It notifies the content-filtering server, which in turn disables the ActiveX objects and Java applets.

  • The PIX Firewall does not filter ActiveX objects or Java applets.

    • A1:

    Answer: a

    A2:

    Answer: b

    A3:

    Answer: d

    A4:

    Answer: a

    A5:

    Answer: a

    A6:

    Answer: c

    A7:

    Answer: c

    A8:

    Answer: d

    A9:

    Answer: a

    A10:

    Answer: c

    Q&A

    A1:

    Answer: The PIX Firewall works with the Websense Enterprise and N2H2 Sentian servers.

    A2:

    Answer: The filter java port local-ip local-mask foreign-ip foreign-mask command filters out Java applets for179 pages.

    A3:

    Answer: Java applets and ActiveX objects are considered a threat because they can be used to execute malicious tasks on the network and the local machine.

    A4:

    Answer: Java and ActiveX filtering o172 files is performed by selectively replacing the <APPLET> </APPLET> tags and the <OBJECT CLASSID> </OBJECT CLASSID> tags with comments.

    A5:

    Answer: The command to designate or identify the URL-filtering server is url-server.

    A6:

    Answer: Cisco PIX Firewall Version 5.3 and later support the Websense URL-filtering server.

    A7:

    Answer: The longest URL filter that is possible with Cisco PIX Firewall Version 6.1 and earlier is 1159 bytes.

    A8:

    Answer: The longest URL filter supported by Cisco PIX Firewall 6.2 is 6 KB.

    A9:

    Answer: The command to filter URLs is filter url.

    A10:

    Answer: The url-cache command provides a configuration option to buffer the response from web servers that respond faster than the available URL-filtering servers.