350-701 Question #102: Real Exam Question with Answer & Explanation

Question

Which two methods are available in Cisco Secure Web Appliance to process client requests when configured in Transparent mode? (Choose two.)

Options

• AIt can handle explicit HTTP requests.
• BIt requires a PAC file for the client web browser.
• CIt requires a proxy for the client web browser.
• DWCCP v2-enabled devices can automatically redirect traffic destined to port 80.
• ELayer 4 switches can automatically redirect traffic destined to port 80.

Explanation

When configured in Transparent mode, Cisco Secure Web Appliance processes client requests through traffic redirection orchestrated by WCCP v2-enabled devices or Layer 4 switches.

Common mistakes.

• A. Transparent mode specifically intercepts traffic without client configuration; explicit HTTP requests are handled when the appliance is configured in Forward (explicit) proxy mode.
• B. PAC (Proxy Auto-Configuration) files are used in explicit proxy deployments to instruct client browsers where to send web traffic, which is not characteristic of transparent mode.
• C. Requiring a proxy for the client web browser describes an explicit proxy setup, where clients are aware of and configured to use the proxy, which is contrary to the nature of transparent mode.

Concept tested. Cisco WSA Transparent mode traffic redirection

Reference. https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_11-5/user_guide/b_WSA_Admin_Guide_11_5/b_WSA_Admin_Guide_11_5_chapter_011.html

No community discussion yet for this question.