15062804
Beschreibung
Quiz von Marcos Avila, aktualisiert more than 1 year ago
|
Erstellt von Marcos Avila
vor etwa 6 Jahre
|
|
Frage 1
Frage
Flow-Based Inspection Mode—Full Scan Mode
Antworten
-
Uses the full antivirus database : Normal, extended, or extreme—depending on what is configured in the CLI
-
Uses the normal antivirus database : Normal, extended, or extreme—depending on what is configured in the CLI
Frage 2
Frage
Flow-Based Inspection Mode—Full Scan Mode (Select 2)
Antworten
-
Optimized performance compare to proxy-based scan
-
Optimized performance compare to flow-based scan
-
FortiGate buffers the whole file, but transmits to the client simultaneously.
-
FortiGate buffers only a part of the file, and not transmits to the client simultaneously.
Frage 3
Frage
Flow-Based Inspection Mode—Full Scan Mode
Antworten
-
When the last packet arrives, the AV engine starts the scan. Files bigger than buffer size are not scanned—can enable logging of these files. Packets are not delayed by scan—exceptlastpacket. Lower perceived latency-data loads faster
-
When the first packet arrives, the AV engine starts the scan. Files bigger than buffer size are scanned— can´t enable logging of these files. Packets are not delayed by scan—except first packet. Faster perceived latency-data loads lower
Frage 4
Frage
Flow-Based Inspection Mode—Full Scan Mode
Antworten
-
If a virus is detected, the last packet is dropped and the connection is reset. If an identical request is made, the block replacement page is inserted immediately.
-
If a virus is detected, the first packet is dropped and the connection is reset. If an identical request is made, the block replacement page is inserted again.
Frage 5
Frage
When the antivirus profile is operating in proxy inspection mode, two scanning mode options are available
Antworten
- True
- False
Frage 6
Frage
When the antivirus profile is operating in flow-based inspection mode, two scanning mode options are available:
Antworten
-
full scan mode quick scan mode
-
full scan mode medium scan mode
Frage 7
Frage
Because the file is transmitted simultaneously, flow inspection mode scanning consumes more CPU cycles.
Antworten
-
True
-
False
Frage 8
Antworten
-
Full scan
-
Quick scan
Frage 9
Frage
Regardless of which mode you use, the scan techniques give similar detection rates. How can you choose between the scan engines? If performance is your top priority:
Antworten
-
then flow inspection mode is more appropriate. If security is your priority, proxy inspection mode—with client comforting disabled—is more appropriate.
-
then proxy inspection mode is more appropriate. If security is your priority, flow inspection mode—with client comforting disabled—is more appropriate.
Frage 10
Frage
Uses the IPS engine and embedded compact antivirus database
Faster, less memory usage because the file is not cached, but lower catching rate
Cannot send files to FortiSandbox for inspection
Cannot use advanced heuristics and mobile malware package
Antworten
-
Quick Scan Mode Packet Flow
-
Full Scan Mode Packet Flow
Frage 11
Frage
The quick scan mode option is only available in proxy inspection mode.
Antworten
- True
- False
Frage 12
Frage
Some entry-level FortiGate models don’t support quick scan flow-based inspection method.
Antworten
- True
- False
Frage 13
Antworten
-
Quick scan
-
Full scan
Frage 14
Antworten
-
Proxy inspection mode
-
flow-based inspection mode
Frage 15
Antworten
-
Proxy Inspection Mode Packet Flow
-
Flow-based Inspection Mode Packet Flow
Frage 16
Antworten
-
Full flow-based Quick flow-based Proxy-based
-
Proxy-based Full flow-based Quick flow-based
-
Quick flow-based Proxy-based Full flow-based
Frage 17
Frage
What two scanning modes are available in flow-based inspection mode? 8.
Antworten
-
A. Proxy and NGFW
-
B. Full and quick
Frage 18
Frage
What antivirus database does quick scan mode use?
Antworten
-
A. Compact
-
B. Extended
Möchten Sie mit GoConqr kostenlos Ihre eigenen Quiz erstellen? eigenen Mehr erfahren.