A network administrator is configuring an application-aware firewall between inside zones to an outside zone on a WAN Edge router using vManage GUI. Which kind of inspection is performed when the `inspect` action is used?
A network administrator is configuring an application-aware firewall between inside zones to an outside zone on a WAN Edge router using vManage GUI. Which kind of inspection is performed when the `inspect` action is used?
When configuring an application-aware firewall, the `inspect` action typically refers to stateful inspection for both TCP and UDP. Stateful inspection tracks the state of active connections and makes decisions based on the context of the traffic, which is necessary for an application-aware firewall to function correctly. This ensures that both types of traffic are comprehensively monitored and managed.
A firewall policy is a type of localized security policy that allows stateful inspection of TCP, UDP, and ICMP data traffic flows. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/security/ios-xe-16/security-book-xe/enterprise-firewall.html
D answer
D is correct answer
D. stateful inspection for TCP and UDP
this is networking basic knowledge, how can udp be statefully inspected? it is not a stefull protocol so choose whatever but not D
From firewall basics: You are right UDP is stateless but Firewall can inspect that UDP flow and allow the returning traffic.
Looks to be correct one.