NAT

Description

NSE4 6.0 NSE4 6.0 Quiz on NAT, created by Marcos Avila on 16/08/2018.
Marcos Avila
Quiz by Marcos Avila, updated more than 1 year ago
Marcos Avila
Created by Marcos Avila over 6 years ago
742
1

Resource summary

Question 1

Question
are the terms used to refer to the mechanism that allows IPv6 addressed hosts to communicate with IPv4 addressed hosts and the reverse.
Answer
  • NAT64 NAT46
  • NAT56 NAT65

Question 2

Question
Without the mechanism NAT64 and 46, an IPv6 node on a network, such as a corporate LAN, would not be able to communicate with a website that was in an IPv4-only environment, and IPv4 environments would not be able to connect to IPv6 networks.
Answer
  • True
  • False

Question 3

Question
is NAT between two IPv6 networks
Answer
  • NAT66
  • NAT46
  • NAT64

Question 4

Question
What is NAT used for?
Answer
  • a. Preserving IP addresses
  • b. Traffic shaping

Question 5

Question
Which statement about NAT66 is true?
Answer
  • a. It is NAT between two IPv6 networks.
  • b. It is NAT between two IPv4 networks.

Question 6

Question
are a mechanism that allow sessions leaving the FortiGate firewall to use NAT. Defines a single IP address or a range of IP addresses to be used as the source address for the duration of the session. These assigned addresses will be used instead of the IP address assigned to that FortiGate interface.
Answer
  • IP Pools
  • SNAT
  • NAT
  • PAT

Question 7

Question
There are four types of IP pools that can be configured on the FortiGate firewall:
Answer
  • Overload
  • One-to-one
  • Fixed port range
  • Port block allocation
  • Dynamic
  • Static

Question 8

Question
What is the default IP pool type?
Answer
  • a. One-to-one
  • b. Overload

Question 9

Question
Which of the following is the default VIP type?
Answer
  • a. static-nat
  • b. load-balance

Question 10

Question
Which one of the following statements is true?
Answer
  • a. Central NAT is not enabled by default and can only be enabled on the CLI.
  • b. Both central NAT and firewall policy NAT can be enabled together.

Question 11

Question
What happens if NAT is enabled on a firewall policy and there is no matching central SNAT policy or no central SNAT policy configured?
Answer
  • a. No NAT will be applied.
  • b. The egress interface IP will be used.

Question 12

Question
Which method would be used for advanced application tracking and control?
Answer
  • a. Session helper
  • b. Application layer gateway

Question 13

Question
Which profile is an example of application layer gateway?
Answer
  • a. WAF profile
  • b. VOIP profile

Question 14

Question
If session diagnostic output indicates that a TCP protocol state is proto_state=01, which of the following statements is true?
Answer
  • a. The session is established.
  • b. The session is not established.

Question 15

Question
An administrator wants to check the total number of TCP sessions for an IP pool named INTERNAL. Which one of the following CLI commands should the administrator use?
Answer
  • a. diagnose firewall ippool-all stats INTERNAL
  • b. diagnose firewall ippool-all list INTERNAL

Question 16

Question
Which of the following statements about NAT port exhaustion is true?
Answer
  • a. Reducing the traffic traversing the border firewall will cause NAT port exhaustion.
  • b. Increased traffic traversing the border firewall can cause NAT port exhaustion.

Question 17

Question
[blank_start]NAT[blank_end] : Changes the IP layer address of a packet - Some protocols, like SIP, have addresses at the application layer, requiring session helpers or proxies -Source NAT (SNAT) -Destination NAT (DNAT) [blank_start]PAT[blank_end] : Changes the IP layer port number of a packet [blank_start]NAT64 and NAT46[blank_end] : mechanism that allows IPv6 addressed hosts to communicate with IPv4 addressed hosts and the reverse -[blank_start]NAT66[blank_end] : NAT between two IPv6 networks
Answer
  • NAT
  • PAT
  • NAT64 and NAT46
  • NAT66

Question 18

Question
When more advanced application tracking and control is required
Answer
  • an application layer gateway (ALG) can be used. The VolP profile is an example of an ALG.
  • an application layer gateway can be used. The session helpers profile is an example of an ALG.

Question 19

Question
Listen [blank_start]9[blank_end] Last_ACK [blank_start]8[blank_end] Close_Wait [blank_start]7[blank_end] Close [blank_start]6[blank_end] Time_Wait [blank_start]5[blank_end] Fin_Wait [blank_start]4[blank_end] Syn & Syn/ACK [blank_start]3[blank_end] Syn_Sent [blank_start]2[blank_end] Established [blank_start]1[blank_end] None [blank_start]0[blank_end]
Answer
  • 9
  • 8
  • 7
  • 6
  • 5
  • 4
  • 3
  • 2
  • 1
  • 0

Question 20

Question
Even though UDP is stateless, FortiGate still uses two session state values:
Answer
  • UDP traffic one way only: 00 UDP traffic both ways: 01
  • UDP traffic one way only: 01 UDP traffic both ways: 00
Show full summary Hide full summary

Similar

PROTOCOLOS DE RED Y ESQUEMAS DE DIRECCIONAMIENTO
Adrián Sanchez Monteverde
MAPA MENTAL ALIMENTACIÓ SALUDABLE
Jenner Sarmiento
Tanulás támogatása
bencze.andris
ORGANITZACIÓ DEL ÉSSERS VIUS
Anna Muñoz
NAT (NETWORK ADDRESS TRANSLATION)
joseph chiong
E2_11 NAT
John Dedios
Modern Studies - Democracy in Scotland/UK.
Daniel Cormack
GCSE AQA Biology 1 Variation, Genetics & Reproduction
Lilac Potato
Flashcards for CPXP exam
Lydia Elliott, Ed.D
2PR101 1. test - 2. část
Nikola Truong