Which of the following firewall modes DOES NOT allow for Identity Awareness to be deployed?

Which of the following firewall modes DOES NOT allow for Identity Awareness to be deployed?

Which of the following firewall modes DOES NOT allow for Identity Awareness to be deployed?

A.
Bridge
B. Load Sharing

C.
High Availability

D.
Fail Open

Show Hint

Leave a Reply 9

Your email address will not be published. Required fields are marked *

Ben

Ben

It is not A:
Identity Awareness can be deployed in Bridge mode or Route mode

It is not B or C:
Identity awareness supports ClusterXL HA and LS modes.

Therefore D is right!

Reply

Lukas

Lukas

D is correct.

Reply

Carlos

Carlos

Answer is D. Explanation

Identity Awareness can be deployed in Bridge mode or Route mode.
– In the Bridge mode, it can use an existing subnet with no change to the hosts’ IP addresses.
– In the Route mode, the Security Gateway acts as a router with different subnets connected to its network interfaces.
For redundancy, you can deploy a Security Cluster in Active-Standby (HA) or Active-Active (LS) modes. Identity awareness supports ClusterXL HA and LS modes.

Reply

Reck

Reck

Identity Awareness can be deployed in Bridge mode or Route mode.

In the Bridge mode, it can use an existing subnet with no change to the hosts’ IP addresses.
In the Route mode, the Security Gateway acts as a router with different subnets connected to its network interfaces.
For redundancy, you can deploy a Security Cluster in Active-Standby (HA) or Active-Active (LS) modes. Identity awareness supports ClusterXL HA and LS modes.

so Answer is “D”

Reply

Mark

Mark

if fail openen refers to Threat Prevention fail mode, in fail open all connections are allowed, so D

Reply