What is the proper sequence of evaluation for the SurfControl integrated Web filter solution?

What is the proper sequence of evaluation for the SurfControl integrated Web filter solution?

What is the proper sequence of evaluation for the SurfControl integrated Web filter solution?

A.
whitelists, blacklists, SurfControl categories

B.
blacklists, whitelists, SurfControl categories

C.
SurfControl categories, whitelists, blacklists

D.
SurfControl categories, blacklists, whitelists

Show Hint

Leave a Reply 7

Your email address will not be published. Required fields are marked *

Ratheesh

Ratheesh

Answer is :A

Reply

Devi Prasad

Devi Prasad

Yes, Answer is A.

Explanation:
When configuring the local lists, you should know how the SRX device checks the lists. The sender’s IP address is checked first
on the whitelist, and then the blacklist, and then the SBL server. If no matching IP address is found, the device checks for the
sender’s domain name on the whitelist, and then the blacklist. If no matching domain name is found, again the device looks for
the sender’s e-mail address, again on the whitelist first, and then the blacklist.
On either list, if multiple domain suffixes are configured, the SRX device matches against the longest suffix. For example, if the
sender’s e-mail address has a domain name aaa.bbb.ccc, the SRX device looks to match “aaa.bbb.ccc”. If no match is found, it
will try to match “bbb.ccc”, then “ccc”. The SRX device cannot do a partial match against IP addresses. Once a match occurs on
a list, no more matching is processed.

Reply

traffikator

traffikator

what you describe is antispam processing rules, dude

Reply

Jonathan

Jonathan

That is for antispam, not web filtering!

Reply

TK

TK

Answer is B: https://www.juniper.net/documentation/en_US/junos11.4/topics/concept/utm-web-filtering-integrated-understanding.html

Profile Matching Precedence

When a profile employs several categories for URL matching, those categories are checked for matches in the following order:

If present, the global blacklist is checked first. If a match is made, the URL is blocked. If no match is found…
The global whitelist is checked next. If a match is made, the URL is permitted. If no match is found…
User-defined categories are checked next. If a match is made, the URL is blocked or permitted as specified. If no match is found…
Predefined categories are checked next. If a match is made, the URL is blocked or permitted as specified. If no match is found…
The Other category is checked next. If a match is made, the URL is blocked or permitted as specified.

Reply

mr_tienvu

mr_tienvu

I choose B

Reply

Shahid

Shahid

Answer B is correct.

do not confuse with antispam sequence of checking:
For web filtering the sequence is Black list, white list, SurfControl
For antispam the sequence is whitelist, blacklist and SBL

Reply