nerdexam
Exams200-901Questions#146
CiscoCisco

200-901 · Question #146

200-901 Question #146: Real Exam Question with Answer & Explanation

The correct answer is D: firewall. A firewall is the network security device that inspects incoming and outgoing traffic and enforces allow or deny decisions based on a configured rule set. It operates at various OSI layers depending on its type (packet filter, stateful, or application layer).

Network Fundamentals

Question

Which network device monitors incoming and outgoing traffic and decides whether to allow or block specific traffic based on a defined set of rules?

Options

  • Aswitch
  • Bload balancer
  • Creverse proxy
  • Dfirewall

Explanation

A firewall is the network security device that inspects incoming and outgoing traffic and enforces allow or deny decisions based on a configured rule set. It operates at various OSI layers depending on its type (packet filter, stateful, or application layer).

Common mistakes.

  • A. A switch operates at Layer 2 and forwards frames based on MAC address tables; it does not inspect or enforce security policies on traffic content.
  • B. A load balancer distributes incoming requests across multiple backend servers to optimize utilization and availability; its primary purpose is not to enforce traffic security policies.
  • C. A reverse proxy forwards client requests to backend servers and may provide SSL termination or caching, but its primary function is request routing and proxying, not allow/deny enforcement based on a security rule set.

Concept tested. Firewall function in network security

Reference. https://www.cisco.com/c/en/us/products/security/firewalls/what-is-a-firewall.html

Topics

#Firewall#Network Security#Traffic Filtering#Network Devices

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 200-901 PracticeBrowse All 200-901 Questions