Cisco
300-415 · Question #423
300-415 Question #423: Real Exam Question with Answer & Explanation
The correct answer is B: It returns the unicast IP addresses of intelligent proxy.. If a DNS query's FQDN is grey-listed by Cisco Umbrella, Umbrella responds to the client by returning the unicast IP addresses of its intelligent proxy.
Security and Quality of Service
Question
How does Cisco Umbrella respond to the client if the FQDN in the DNS query is one of the grey-listed domains?
Options
- AIt returns the IP address of the content provider.
- BIt returns the unicast IP addresses of intelligent proxy.
- CIt returns the IP address of the blocked landing page.
- DNo response is sent; traffic is blocked.
Explanation
If a DNS query's FQDN is grey-listed by Cisco Umbrella, Umbrella responds to the client by returning the unicast IP addresses of its intelligent proxy.
Common mistakes.
- A. Returning the IP address of the content provider would bypass Umbrella's inspection for grey-listed domains, which require further scrutiny.
- C. Returning the IP address of a blocked landing page is typically reserved for domains that are definitively identified as malicious or explicitly blocked, not for grey-listed domains requiring inspection.
- D. Not sending a response or blocking traffic outright is for definitively blocked domains, whereas grey-listed domains are subject to conditional access via the intelligent proxy.
Concept tested. Cisco Umbrella Intelligent Proxy behavior for grey-listed domains
Reference. https://docs.umbrella.com/umbrella-user-guide/docs/about-the-intelligent-proxy
Topics
#Cisco Umbrella#DNS Security#Intelligent Proxy#Web Security
Community Discussion
No community discussion yet for this question.