Which Sourcefire event action should you choose if you …

Which Sourcefire event action should you choose if you want to block only malicious traffic
from a particular end user?

Which Sourcefire event action should you choose if you want to block only malicious traffic
from a particular end user?

A.
Allow with inspection

B.
Allow without inspection

C.
Block

D.
Trust

E.
Monitor

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

megatron

megatron

“Allow with Inspection allows all traffic except for malicious traffic from a particular end-user. The
other options are too restrictive, too permissive, or don’t exist.”

Reply