Which two statements about stateless firewalls are true?

Which two statements about stateless firewalls are true? (Choose two.)

Which two statements about stateless firewalls are true? (Choose two.)

A.
They compare the 5-tuple of each incoming packet against configurable rules.

B.
They cannot track connections.

C.
They are designed to work most efficiently with stateless protocols such as HTTP or HTTPS.

D.
Cisco IOS cannot implement them because the platform is stateful by nature.

E.
The Cisco ASA is implicitly stateless because it blocks all traffic by default.

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

Marcel

Marcel

A and B:

A 5-tuple refers to a set of five different values that comprise a Transmission Control Protocol/Internet Protocol (TCP/IP) connection. It includes a source IP address/port number, destination IP address/port number and the protocol in use.

Reply