Refer to the exhibit and to the four HTTP inspection requirements and the Cisco ASA
configuration.
Which two statements about why the Cisco ASA configuration is not meeting the specified HTTP
inspection requirements are true? (Choose two.)
1. All outside clients can use only the HTTP GET method on the protected 10.10.10.10 web
server.
2. All outside clients can access only HTTP URIs starting with the “/myapp” string on the protected
10.10.10.10 web server.
3. The security appliance should drop all requests that contain basic SQL injection attempts (the
string “SELECT” followed by the string “FROM”) inside HTTP arguments.
4. The security appliance should drop all requests that do not conform to the HTTP protocol.
A.
Both instances of match not request should be changed to match request.
B.
The policy-map type inspect http MY-HTTP-POLICY configuration is missing the references to
the class maps.
C.
The BASIC-SQL-INJECTION regular expression is not configured correctly.
D.
The MY-URI regular expression is not configured correctly.
E.
The WEB-SERVER-ACL ACL is not configured correctly.