CISSP Exam - Question 291

B. Who is providing answers to some of these??

B Circuit Level Firewall

It should be B

Here's why is B: circuit-level gateways offer a rough and fast method to filter incoming data packets. In contrast to packet filtering, however, circuit-level gateways aren’t concerned with the incoming packet’s IP address. Rather, their job is to verify the transmission protocol handshake (TCP). Of course, a successful handshake doesn’t ensure the absence of malicious traffic entering your private network. The other similarity between packet filtering and circuit-level gateways is that neither type of firewall actually analyzes the contents of an incoming data packet. Though they work well in conjunction with other security measures, packet filtering and circuit-level gateways alone are not enough to protect your internal network.

A circuit-level gateway firewall helps in providing the security between UDP and TCP using the connection. It also acts as a handshaking device between trusted clients or servers to untrusted hosts and vice versa. Generally, these circuit-level gateways work at the session layer of the OSI model. https://www.geeksforgeeks.org/what-is-circuit-level-gateway/

Moderators, can you please jump in here and confirm why this is marked as C when so much data supports B?

A circuit-level gateway firewall helps in providing security between UDP and TCP using the connection. It also acts as a handshaking device between trusted clients or servers to untrusted hosts and vice versa. Generally, these circuit-level gateways work at the session layer of the OSI model. To determine whether the session request is confirmed or not by the circuit-level gateway is done with the help of handshaking between packets.

Circuit-level firewalls are a type of firewall that operate at the session layer of the OSI model. They monitor the initiation and termination of connections, also known as handshakes, between systems. Once a session is established, the circuit-level firewall allows traffic to pass through without further inspection, based on the assumption that the systems on either side of the connection are trusted.

B. is correct, Session Layer of the OSI responsible for session establishment and deletion. A circuit-level gateway is a type of firewall that operates on layer 5 of the Open Systems Interconnection (OSI) model, which is the session layer. It's the layer responsible for providing the mechanism of initiating, managing, and closing a communication session between end-user application processes.

Circuit-level firewalls operate at the session layer of the OSI model and only examine the "handshaking" between packets to determine whether a requested session is legitimate. They do not inspect the actual contents of the packets. Once the handshake is established and the session is determined to be legitimate, the firewall allows the traffic to flow between the source and destination without further checking.

B. Circuit-level firewalls The type of firewall that only examines the "handshaking" between packets before forwarding traffic is the Circuit-level firewall. This type of firewall works by verifying the transmission control protocol (TCP) handshake to ensure that the session the packet is from is legitimate. Unlike other types of firewalls, circuit-level firewalls do not inspect the contents of the packets, making them less secure in terms of deep packet inspection compared to proxy firewalls or stateful inspection firewalls. Circuit-level firewalls are typically less granular in their inspection compared to proxy firewalls or host-based firewalls.

B is Correct