Examice

Exam 156-31581 All QuestionsBrowse all questions from this exam

Question 156

In terms of “Order of Rule Enforcement”. When a packet arrives at the gateway, the gateway checks it against the rules in the top Policy Layer, sequentially from top to bottom. Which Statement is correct?

If the rule does not match in the Network policy it will continue to other enabled polices.

If the Action of the matching rule is Drop, the gateway continues to check rules in the next Policy Layer down.

If the Action of the matching rule is Accept, the gateway will drop the packet.

If the Action of the matching rule is Drop, the gateway stops matching against later rules in the Policy Rule Base and drops the packet.

Correct Answer: D

When a packet arrives at the gateway, the gateway checks it against the rules in the policy layers sequentially from top to bottom. If the action of the matching rule is Drop, the gateway stops matching against later rules in the Policy Rule Base and drops the packet. This ensures that once a rule that dictates to drop a packet is encountered, no further rules are checked, and the packet is immediately discarded, thus enhancing the security and efficiency of the rule enforcement process.

Discussion

gperesOption: D

correct