Restrict inbound traffic from untrusted sources

Posted on
Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

These questions are derived from the Self Test Software Practice Test for Cisco exam #642-522 – Securing Networks with PIX and ASA.

 

Objective Sequence: Configure a security appliance to restrict inbound traffic from untrusted sources
SubObjective Sequence: Configure URL filtering

 

Show In Engine: False

 

Multiple Answer, Multiple Choice

 

Which URL-filtering application servers are supported by Cisco security appliances? (Choose two.)

 

 

  1. Websense Enterprise
  2. N2H2 Sentian
  3. WebSafe Server
  4. N2O2 WebServer

 

Answer:
A. Websense Enterprise
B. N2H2 Sentian

 

Tutorial:
Cisco Security Appliances supports two vendor specific URL-filtering application servers:

 

 

  • Websense Enterprise
  • N2H2 Sentian

 

When a secured user sends an HTTP request to a Web site, the Cisco security appliance forwards this request to a Web server and a URL-filtering application server simultaneously. If policies on URL-filtering application server authorize the user to access the requested Web content, then the reply from Web server is allowed to reach the user Otherwise the user is prompted with an unauthorized access window.

 

The following commands identify configured URL-filtering servers on Cisco security appliance:

 

N2H2 Sentian server: url-server [(if-name)] vendor n2h2 host local-ip [port number] [timeout seconds] [protocol {TCP | UDP}]

 

Websense Enterprise server: url-server [(if-name)] vendor n2h2 host local-ip [port number] [timeout seconds] [protocol {TCP | UDP}] .

 

WebSafe Server and N2O2 WebServer are incorrect options as these are not valid server names.

 

Reference:
CCSP SNPA Official Exam Certification Guide, Third Edition, Chapter 16, pp. 503-504.

http://www.cisco.com/en/US/products/ps6120/products_command_reference_chapter09186a00805fd7f7.html#wp1278826

Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone
cmadmin

ABOUT THE AUTHOR

Posted in Archive|

Comment:

Leave a comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>