Latest Fireware-Essentials Practice Tests with Actual Questions

Get Complete pool of questions with Premium PDF and Test Engine

Exam Code : Fireware-Essentials
Exam Name : Fireware Essentials
Vendor Name : "Watchguard"







Fireware-Essentials Dumps Fireware-Essentials Braindumps Fireware-Essentials Real Questions Fireware-Essentials Practice Test

Fireware-Essentials Actual Questions


killexams.com


Watchguard


Fireware-Essentials


Fireware Essentials


https://killexams.com/pass4sure/exam-detail/Fireware-Essentials


Question: 103


You configured four Device Administrator user accounts for your Firebox.


To see a report of witch Device Management users have made changes to the device configuration, what must you do? (Select two.)


  1. Start Firebox System Manager for the device and review the activity for the Management Users on the Authentication List tab.

  2. Connect to Report Manager or Dimension and view the Audit Trail report for your device.

  3. Open WatchGuard Server Center and review the configuration history for managed devices.

  4. Configure your device to send audit trail log messages to your WatchGuard Log Server or Dimension Log Server.




Answer: B,C
Question: 104

Which takes precedence: WebBlocker category match or a WebBlocker exception?


  1. WebBlocker exception

  2. WebBlocker category match




Answer: B
Question: 105

From the Firebox System Manager >Authentication List tab, you can view all of the authenticated users connected to your Firebox and disconnect any of them.


  1. True

  2. False




Answer: B
Question: 106

Users on the trusted network cannot browse Internet websites.



Based on the configuration shown in this image, what could be the problem with this policy configuration? (Select one.)


  1. The default Outgoing policy has been removed and there is no policy to allow DNS traffic.

  2. The HTTP-proxy policy has higher precedence than the HTTPS-proxy policy.

  3. The HTTP-proxy policy is configured for the wrong port.

  4. The HTTP-proxy allows Any-Trusted and Any-Optional to Any-External.




Answer: C
Question: 107 HOTSPOT

Match each WatchGuard Subscription Service with its function:


wrong




Answer: C
Explanation: WebBlocker Spam Blocker

Gateway / Antivirus APT Blocker Application Control Quarantee Server

Intrusion Prevention Server IPS Data Loss Prvention DLP Reputation Enable Defense RED



Question: 108


Which of these threats can the Firebox prevent with the default packet handling settings? (Select four.)


  1. Access to inappropriate websites

  2. Denial of service attacks

  3. Flood attacks

  4. Malware in downloaded files

  5. Port scans

  6. Viruses in email messages

  7. IP spoofing




Answer: B,C,E,G
Question: 109

In the network configuration in this image, which aliases is Eth2 a member of? (Select three.)


  1. Any-optional

  2. Any-External

  3. Optional-1

  4. Any

  5. Any-Trusted




Answer: A,C,D
Question: 110

To enable remote devices to send log messages to Dimension through the gateway Firebox, what must you verify is included in your gateway Firebox configuration? (Select one.)


  1. You can only send log messages to Dimension from a computer that is on the network behind your gateway Firebox.

  2. You must change the connection settings in Dimension, not on the gateway Firebox.

  3. You must add a policy to the remote device configuration file to allow traffic to a Dimension.

  4. You must make sure that either the WG-Logging packet filter policy, or another policy that allows external connections to Dimension over port 4115, is included in the configuration file.




Answer: C
Question: 111

An email newsletter about sales from an external company is sometimes blocked by spamBlocker. What option could you choose to make sure the newsletter is delivered to your users? (Select one.)

  1. Add a spamBlocker exception based on the From field of the newsletter email.

  2. Set the spamBlocker action to quarantine the email for later retrieval.

  3. Add a spamBlocker subject tag for bulk email messages.

  4. Set the spamBlocker virus outbreak detection action to allow emails from the newsletter source.




Answer: C
Question: 112

You can use Firebox-DB authentication with any type of Mobile VPN.


  1. True

  2. False




Answer: B
Question: 113

You can configure your Firebox to automatically redirect users to the Authentication Portal page.


  1. True

  2. False




Answer: B
Question: 114

Your company denies downloads of executable files from all websites.


What can you do to allow users on the network to download executable files from the companyâs remote website? (Select one.)


  1. Add an HTTP proxy exception for the companyâs remote website.

  2. Create a WebBlocker exception to allow access to the companyâs remote website.

  3. Create an IPS exception.

  4. Create a Blocked Sites exception.

  5. Configure HTTP Request > URL Paths to allow the companyâs remote website.




Answer: A
Question: 115

You have a privately addressed email server behind your Firebox.


If you want to make sure that all traffic from this server to the Internet appears to come from the public IP address 203.0.113.25, regardless of policies, which from of NAT would you use? (Select one.)


  1. In the SMTP policy that handles traffic from the email server, select the option to apply dynamic NAT to all traffic in the policy and set the source IP address 203.0.113.25.

  2. Create a global dynamic NAT rule for traffic from the email server and set the source IP address to 203.0.113.25.

  3. Create a static NAT action for traffic to the email server, and set the source IP address to 203.0.113.25.




Answer: B
Question: 116

While troubleshooting a branch office VPN tunnel, you see this log message:


2014-07-23 12:29:15 iked (203.0.113.10<->203.0.113.20) Peer proposes phase one encryption 3DES, expecting AES What settings could you modify in the local device configuration to resolve this issue? (Select one.)

  1. BOVPN Gateway settings

  2. BOVPN-Allow policies

  3. BOVPN Tunnel settings

  4. BOVPN Tunnel Route settings




Answer: A,B



Explanation:


The WatchGuard BOVPN settings error in this example states phase one encryption. Only the BOVPN Gateway settings can specify phase one settings. BOVPN Tunnel settings specify phase 2 settings.



Question: 117


Which WatchGuard tools can you use to review the log messages generated by your Firebox? (Select three).


  1. Firebox System Manager > Traffic Monitor

  2. Fireware XTM Web UI > Traffic Monitor

  3. Firebox System Manager > Status Report

  4. Dimension > Log manager

  5. WatchGuard System Manager > Policy Manager




Answer: A,C,D