nerdexam
Exams300-415Questions#334
Cisco

300-415 · Question #334

300-415 Question #334: Real Exam Question with Answer & Explanation

The correct answer is B: numbered sequences of match-action pairs. A firewall security policy is configured using numbered sequences of match-action pairs to define the traffic filtering rules.

Policies

Question

Which configuration component is used in a firewall security policy?

Options

  • Aintrusion prevention policy
  • Bnumbered sequences of match-action pairs
  • Capplication match parameters
  • DURL filtering policy

Explanation

A firewall security policy is configured using numbered sequences of match-action pairs to define the traffic filtering rules.

Common mistakes.

  • A. An intrusion prevention policy is a distinct security feature, often integrated with a firewall, but not the core 'configuration component' of the firewall policy itself.
  • C. Application match parameters are criteria used within a firewall policy to identify traffic, but they are specific elements within the broader structure of match-action pairs, not the overarching configuration component.
  • D. A URL filtering policy is a specific type of filtering, often a feature of a firewall or proxy, but it's not the general 'configuration component' that defines the firewall policy structure.

Concept tested. Firewall policy structure and components

Reference. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-17-book/sdwan-security-config.html

Topics

#Firewall policy#Security policy structure#Match-action rules

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-415 Practice