What is the default action of aNetScreenfirewall when a configured screening function threshold limit has been reached?

What is the default action of aNetScreenfirewall when a configured screening function threshold limit has been reached?

What is the default action of aNetScreenfirewall when a configured screening function threshold limit has been reached?

A.
Log the packet but not drop it

B.
Drop the packet and all further packets matching the attack for up to 1 minute

C.
Drop the packet and all further packets matching the attack for up to a configurable maximum of 10 seconds

D.
Drop the packet and all further packets matching the attack for the remainder of the current second plus the next second

Explanation:

The SCREEN options on aNetScreenfirewall are perhaps the oldest form of protection found on these firewalls. New options and features were added over time to address new threats present on the Internet.
In the newer versions ofScreenOS(starting withScreenOS3.1, which was a limited-platform release-all
devicessupported this new feature inScreenOS4.0), these options aresecurityzonespecific-each zone may have unique settings applied to it. For all options, these settings are applied as the inspected traffic externally enters the zone-that is, when the stream is read from the interface off the wire, not as it passes through theNetScreenand out another interface. WhileNetScreenorganizes these attacks by layers and protocols, it’s easier to talk about them more generically by theirpurpose.Thetwo major functions of the SCREEN features are reconnaissance detectionand Denial of Service protection. The default threshold action for these features are : Dropthe packet and all further packets matching the attack for the remainder of the current second plus the next second.



Leave a Reply 1

Your email address will not be published. Required fields are marked *


mr_tienvu

mr_tienvu

I choose D