WatchGuard Network-Security-Essentials 問題集

質問 1：
The Audit Trail report shows information about Firebox configuration changes. How can you makesure the Audit Trail report includes the names of the specific person that made each change? (Select one.)
A. Install the SSO Client on each computer used by Firebox administrators
B. Create unique device administrator accounts for each Firebox administrative user
C. Configure all Firebox administrators to use the Authentication Portal to log in to the Firebox
D. Enable the Logging > AuditTrack feature
E. Configure your RADIUS server to send accounting messages to the Firebox
正解：B
解説: (Topexam メンバーにのみ表示されます)

質問 2：
Match the "network server to the protocol and port it uses."

正解：

Explanation:

DHCP (Dynamic Host Configuration Protocol):DHCP operates over UDP ports 67 and 68. Port 67 is used by the DHCP server to listen for client requests, and port 68 is used by the DHCP client. This allows devices to automatically receive IP addresses and other network configuration details on a network, essential for automating IP management. [Referenced from multiple sources on network fundamentals] SMTP (Simple Mail Transfer Protocol):SMTP uses TCP port 25 for sending emails from client to server or between mail servers. SMTP is integral for email transmission, allowing efficient communication across mail servers within and outside organizational networks. [Referenced in standard protocols documentation in network management guides] DNS (Domain Name System):DNS typically runs on UDP port 53 for standard queries, with TCP/53 used for zone transfers and other larger requests. DNS is critical for resolving human-readable domain names into IP addresses, which allows users to connect to websites using easily remembered names rather than numerical IP addresses. [Foundational knowledge as detailed in network security and management resources] HTTPS (Hypertext Transfer Protocol Secure):HTTPS, an encrypted version of HTTP,operates on TCP port 443. It provides secure communication over the internet by encrypting data between the client and server using SSL/TLS, protecting data integrity and privacy. [Security essentials for network communications as found in secure web traffic documentation] HTTP (Hypertext Transfer Protocol):HTTP operates on TCP port 80 and is used for unencrypted web traffic. HTTP is the foundation of data exchange on the World Wide Web, supporting basic client-server interactions for retrieving resources from the web. [Basic networking knowledge referenced across multiple network essentials texts]

質問 3：
If policies are automatically ordered, which of these policies has the highest precedence? (Select one.)
A. HTTPS policy - From: User1@Firebox-DB To: Any-External
B. Outgoing policy - From: Any-Trusted, Any-Optional To: Any-External
C. HTTPS policy - From: Trusted To: Any-External
D. HTTPS policy - From: Any-Trusted, Any-Optional To: Any-External
正解：A
解説: (Topexam メンバーにのみ表示されます)

質問 4：
What type of NAT enables clients on a private network to connect to servers on the Internet? (Select one.)
A. Hairpin NAT
B. NAT loopback
C. Dynamic NAT
D. Static NAT
正解：C
解説: (Topexam メンバーにのみ表示されます)

質問 5：
When you migrate a configuration file from one Firebox to a new Firebox, which settings transfer to the new device? (Select two.)
A. DNS servers
B. Management users
C. Feature key
D. Policies
E. Certificates
正解：B,D
解説: (Topexam メンバーにのみ表示されます)

質問 6：
Some management tasks require you to use a specific management interface. Match the task below with the management interface that supports it.

正解：

Explanation:
Here are the correct answers based on typical Firebox management interface capabilities:
* Edit a configuration file without being connected to a Fireboxanswer: Policy Manager Policy Manager allows administrators to edit a Firebox configuration file offline without a direct connection to the Firebox. This feature is helpful for preparing configuration changes in advance.
* Run Policy Checkeranswer: Policy Manager
The Policy Checker tool is included in Policy Manager, which checks configuration settings for errors before applying them. This tool provides an essential layer of validation, preventing misconfigurations.
* View the Firebox Status Reportanswer: Firebox System Manager
The Firebox System Manager (FSM) interface provides real-time status reporting on device health, traffic, and security services, which includes viewing the Firebox Status Report.
* Schedule a Firebox OS updateanswer: Fireware Web UI
Fireware Web UI includes options for scheduling OS updates for the Firebox, which can be managed remotely through a web interface.
These answers align with standard Firebox network security essentials and their recommended management interfaces for specific administrative tasks. Let me know if you need further assistance with related Firebox management topics