Examice

Exam PCNSE All QuestionsBrowse all questions from this exam

Question 383

A firewall administrator is investigating high packet buffer utilization in the company firewall. After looking at the threat logs and seeing many flood attacks coming from a single source that are dropped by the firewall, the administrator decides to enable packet buffer protection to protect against similar attacks.

The administrator enables packet buffer protection globally in the firewall but still sees a high packet buffer utilization rate.

What else should the administrator do to stop packet buffers from being overflowed?

Apply DOS profile to security rules allow traffic from outside.

Enable packet buffer protection for the affected zones.

Add the default Vulnerability Protection profile to all security rules that allow traffic from outside.

Add a Zone Protection profile to the affected zones.

Correct Answer: D

To effectively prevent the packet buffers from being overflowed due to flood attacks, the administrator should add a Zone Protection profile to the affected zones. Zone Protection profiles are designed to provide additional protection mechanisms for specific zones, addressing issues such as flood attacks and resource exhaustion. While enabling packet buffer protection globally is a good first step, applying a Zone Protection profile specifically focuses on the problematic areas, thereby enhancing the firewall's ability to handle and mitigate such attacks.

Discussion

nose999

Repeat of 382

confusionOption: B

B First globally, then on the zone (same as previous question).

mysteryzjokerOption: B

duplicate

Moh0025Option: B

B is correct

MarshpillowzOption: B

B is correct

MetgatzOption: B

Duplicate