Which two statements are correct about firewall filters? (Choose two.)
Which two statements are correct about firewall filters? (Choose two.)
In firewall filters, 'Discard' is the default action for packets that are not explicitly allowed to ensure security by blocking any unspecified traffic. Additionally, it is possible to have multiple firewall filters, which can be applied to different interfaces or directions to meet various traffic control requirements depending on the network's needs.
The two correct statements about firewall filters are: A. "Discard" is the default action of packets that are not explicitly allowed. - If a packet does not match any term in a firewall filter, the default action is typically to discard the packet. This default behavior ensures that only explicitly permitted traffic is allowed through, enhancing security. C. There can be multiple firewall filters. - Multiple firewall filters can be created and applied to different interfaces or different directions (inbound or outbound) on a network device. Each filter can be tailored to specific traffic control needs.
Firewall systems, including those in Junos, allow the configuration of multiple firewall filters. This flexibility is necessary to apply different rulesets based on varying criteria such as incoming interface, source address, destination address, application, etc. In many firewall configurations, including Junos firewall filters, if a packet does not match any of the specified rules, the default action is typically to discard or drop the packet. This is known as an implicit deny or default deny posture, where security is prioritized by denying all traffic that isn't explicitly allowed by any rule.
A and C
A and C
A. Discard is default action for firewall filter C. There can be multiple firewall filters
Discard is default action for firewall filter , accept is default action for Routing policy
A and C