Kopieren und bearbeiten

SSL-VPN

Beschreibung

NSE4 6.0 NSE4 6.0 Quiz am SSL-VPN, erstellt von Marcos Avila am 13/09/2018.
Marcos Avila
Quiz von Marcos Avila, aktualisiert more than 1 year ago
Marcos Avila
Erstellt von Marcos Avila vor etwa 6 Jahre
456
1
0

Zusammenfassung der Ressource

Frage 1

Frage
La mayoria de las VPNs son SSL o IPsec, FortiOS soporta ambas, incluso las mas debiles en seguridad como PPTP.
Antworten
  • True
  • False

Frage 2

Frage
SSL resides higher upon the network stack than IP and; therefore, it usually requires less bits—less bandwidth—for SSL-VPN headers.
Antworten
  • True
  • False

Frage 3

Frage
lPsec uses some special protocols. The primary protocol is ESP, which encapsulates and encrypts UDP, RDP, HTTP, or other protocols that are inside in the lPsec tunnel.
Antworten
  • True
  • False

Frage 4

Frage
?
Image:
Ssl (binary/octet-stream)
Antworten
  • SSL-VPN
  • IPsec VPN

Frage 5

Frage
?
Image:
Ipsec (binary/octet-stream)
Antworten
  • SSL
  • IPsec

Frage 6

Frage
What does a VPN do?
Antworten
  • A. Extends a private network across a public network
  • B. Protects a network from external attacks

Frage 7

Frage
Which statements about lPsec and SSL VPNs are true?
Antworten
  • A. Either an SSL-VPN or an lPsec VPN can be established between two FortiGate devices.
  • B. Either an SSL-VPN or an lPsec VPN can be established between an end-user workstation and a FortiGate device.

Frage 8

Frage
SSL - VPN deployment modes
Antworten
  • Tunnel mode Web mode
  • Web tunnel mode

Frage 9

Frage
Requires only a web browser Supports a limited number of protocols: - Citrix, FTP, HTTP/HTTPS, Port Forward, RDP, SMB/CIFS, SSH, Telnet, VNC, and Ping
Antworten
  • Tunnel mode
  • Web mode

Frage 10

Frage
Accessed through a standalone client Requires a virtual adapter on the client’s host
Antworten
  • Tunnel mode
  • Web mode

Frage 11

Frage
Web access is the simplest SSL-VPN mode.
Antworten
  • True
  • False

Frage 12

Frage
All traffic routes through an SSL-VPN tunnel to a remote FortiGate, then to the destination. This includes Internet traffic. An egress firewall policy is required. Traffic inspection and security features are applied.
Antworten
  • Split tunneling disabled
  • Split tunneling enabled

Frage 13

Frage
Only traffic destined for the private network is routed through the remote FortiGate. Internet traffic uses the local gateway; unencrypted route. Conserves bandwidth and alleviates bottlenecks.
Antworten
  • Split tunneling disable
  • Split tunneling enabled

Frage 14

Frage
A web-mode SSL-VPN user connects to a remote web server. What’s the source IP address of the HTTP request the web server receives?
Antworten
  • A. The remote user's IP address
  • B. The FortiGate device's internal IP address

Frage 15

Frage
Which statements about tunnel-mode SSL-VPN are correct?
Antworten
  • A. It supports split tunneling.
  • B. It requires a bookmarks.

Frage 16

Frage
A web-mode SSL-VPN user accesses internal network resources by using :
Antworten
  • A. Bookmarks
  • B. FortiClient

Frage 17

Frage
Which of the following steps is necessary to configure SSL-VPN connections?
Antworten
  • A. Create firewall policies to and from the SSL-VPN interface.
  • B. Enable event logs for SSL-VPN traffic: users, VPN, and endpoints.

Frage 18

Frage
What action may allow Internet access to SSL-VPN users in tunnel mode if the remote network does not have Internet access?
Antworten
  • A. Enable split tunneling
  • B. Configure the DNS server to use the same as the client’s system DNS.

Frage 19

Frage
?
Image:
Realms (binary/octet-stream)
Antworten
  • SSL-VPN Realms
  • SSL-VPN Personal bookmarks

Frage 20

Frage
Which statement about SSL-VPN realms is correct?
Antworten
  • A. Allow access to different SSL-VPN portals by user groups.
  • B. Allow unlimited concurrent SSL-VPN users.

Frage 21

Frage
Which FortiGate interface allows administrators to create user-specific bookmarks?
Antworten
  • A. Command line interface (CLI)
  • B. Graphical user interface (GUI)

Frage 22

Frage
Why is it necessary to run a client integrity check (host—chec k)?
Antworten
  • A. To check whether specific security software is running on SSL-VPN users’ computers
  • B. To check whether a specific security certificate is running on SSL-VPN users’ web browsers

Frage 23

Frage
Which security action restricts SSL-VPN connections from users located in a specific country or region?
Antworten
  • A. Restricting hosts by MAC address
  • B. Restricting hosts by IP address

Frage 24

Frage
To view the status of SSL-VPN acceleration, use the following command:
Antworten
  • get vpn status ssl hw-acceleration-status
  • get vpn ssl status hw-acceleration

Frage 25

Frage
What does the SSL-VPN monitor feature allow you to do?
Antworten
  • A. Monitor SSL-VPN user actions, such as authentication.
  • B. Force SSL-VPN user disconnections.

Frage 26

Frage
Which statements about SSL-VPN timers are correct?
Antworten
  • A. SSL-VPN timers can avoid logouts when SSL-VPN users experience long network latency.
  • B. The login timeout is a non-customizable hard value.
Zusammenfassung anzeigen Zusammenfassung ausblenden

Möchten Sie mit GoConqr kostenlos Ihre eigenen Quiz erstellen? eigenen Mehr erfahren.

ähnlicher Inhalt

Einstufungstest Italienisch Niveau A1.2
SprachschuleAktiv
AOW - Psych
Aydan Altuner
Können Sie die Flosse der Airline zuordnen?
B G
KPOL-Fragen
Lisa-Maria Hauschild
Krankenkasse Grundversicherung
Christine Zehnder
La mondialisation - Vocab
Gaelle Bourgeois
IKA-Theoriefragen Serie 20 (15 Fragen)
IKA ON ICT GmbH
Klinische Psychologie Teil 1
Lisa Mariá Hchil
Ökologie
Zami I.
Φαρμακολογια 1 Ε
Lampros Dimakopoulos
Vetie - Histo & Embryo P 2014
Fioras Hu
Bibliothek durchsuchen