Which of these Security Policy changes optimize Security Gateway performance?

Which of these Security Policy changes optimize Security Gateway performance?

Which of these Security Policy changes optimize Security Gateway performance?

A.
Using groups within groups in the manual NAT Rule Base.
B. Use Automatic NAT rules instead of Manual NAT rules whenever possible.

C.
Using domain objects in rules when possible.

D.
Putting the least-used rule at the top of the Rule Base.

Show Hint

Leave a Reply 8

Your email address will not be published. Required fields are marked *

srini

srini

Got this question in today exam.Answer B

Reply

vpn123

vpn123

BY ELIMINATION, B.

Reply

Sage Rebollar

Sage Rebollar

The subsequent time I learn a blog, I hope that it doesnt disappoint me as a lot as this one. I imply, I do know it was my option to read, but I actually thought youd have something fascinating to say. All I hear is a bunch of whining about one thing that you could possibly repair when you werent too busy looking for attention.

http://www.bastcilkdoptb.com/

Reply

Gaurav

Gaurav

For me the correct answer is C – Domain Object because Each time the system performs DNS lookup and waits for the response.

Reply

SB

SB

Question is about improving performance. Here performance is asked in terms of additional steps firewall has to undergo.
If domain objects are used, fw has to do dns query, resolve it to an IP address to proceed further.
Manual nat need additional configuration for routes, proxy arps which is time consuming and additional administration burden.
Option B is the right answer

Reply

SB

SB

I mean to less additional steps.

Reply

Gaurav Pandya

Gaurav Pandya

Got it. Correct answer is B

Reply