Which option, when applied to a rule, allows traffic to VPN gateways in specific VPN communities?
Options:
A.
All Connections (Clear or Encrypted)
B.
Accept all encrypted traffic
C.
Specific VPN Communities
D.
All Site-to-Site VPN Communities
Answer:
B
Explanation:
Explanation:
The first rule is the automatic rule for the Accept All Encrypted Traffic feature. The Firewalls for the Security Gateways in the BranchOffices and LondonOffices VPN communities allow all VPN traffic from hosts in clients in these communities. Traffic to the Security Gateways is dropped. This rule is installed on all Security Gateways in these communities.
2. Site to site VPN - Connections between hosts in the VPN domains of all Site to Site VPN communities are allowed. These are the only protocols that are allowed: FTP, HTTP, HTTPS and SMTP.
3. Remote access - Connections between hosts in the VPN domains of RemoteAccess VPN community are allowed. These are the only protocols that are allowed: HTTP, HTTPS, and IMAP.
Question 3
You have discovered suspicious activity in your network. What is the BEST immediate action to take?
Options:
A.
Create a policy rule to block the traffic.
B.
Create a suspicious action rule to block that traffic.
C.
Wait until traffic has been identified before making any changes.