312-49 · Question #452
312-49 Question #452: Real Exam Question with Answer & Explanation
The correct answer is C: Statefull firewall. A stateful firewall (stateful inspection firewall) maintains a state table that tracks the state of all active network connections. When an internal host initiates an outbound connection, the firewall records this in its state table. It then permits the corresponding inbound resp
Question
You are assisting a Department of Defense contract company to become compliant with the stringent security policies set by the DoD. One such strict rule is that firewalls must only allow incoming connections that were first initiated by internal computers. What type of firewall must you implement to abide by this policy?
Options
- APacket filtering firewall
- BApplication-level proxy firewall
- CStatefull firewall
- DCircuit-level proxy firewall
Explanation
A stateful firewall (stateful inspection firewall) maintains a state table that tracks the state of all active network connections. When an internal host initiates an outbound connection, the firewall records this in its state table. It then permits the corresponding inbound response traffic only because it matches an existing, internally-initiated session. Traffic arriving inbound that does not correspond to an established session is blocked. This directly satisfies the DoD requirement. A simple packet filtering firewall operates stateless and cannot distinguish response traffic from unsolicited inbound connections. Application-level and circuit-level proxies serve different purposes and work differently from stateful inspection.
Topics
Community Discussion
No community discussion yet for this question.