Which Cisco Web Security Appliance feature enables the appliance to block suspicious traffic on all of its ports and IP addresses?

Which Cisco Web Security Appliance feature enables the appliance to block suspicious traffic on all
of its ports and IP addresses?

Which Cisco Web Security Appliance feature enables the appliance to block suspicious traffic on all
of its ports and IP addresses?

A.
Layer 4 Traffic Monitor

B.
Secure Web Proxy

C.
explicit forward mode

D.
transparent mode

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

Ace

Ace

ports -> OSI Layer 4

“The Cisco Web Security Appliance (WSA) has a built-in Layer 4 Traffic Monitor (L4TM) service that can block suspicious sessions across all network ports (TCP/UDP 0-65535).
To be able to monitor or block these sessions traffic must be redirected to the WSA, either by using a TAP (Test Access Port) device, or by configuring a mirror port on network devices (SPAN ports on Cisco devices). L4TM in-line mode is not supported yet.
Even though traffic is only mirrored (copied) from the original sessions to the appliance, the WSA can still block suspicious traffic by either resting a TCP session or sending ICMP “host unreachable” messages for UDP sessions” – http://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117985-qanda-wsa-00.html

Reply