CAS-005 · Question #429
CAS-005 Question #429: Real Exam Question with Answer & Explanation
The correct answer is C: NGFW. A Next-Generation Firewall (NGFW) consolidates traditional firewall functions (stateful packet inspection, VPN termination) with advanced capabilities such as intrusion prevention, application- layer (L7) inspection, and support for multiple VPN contexts. This single-footprint de
Question
Based on a recent security audit, a company discovered the perimeter strategy is inadequate for its recent growth. To address this issue, the company is looking for a solution that includes the following requirements: - Collapse of multiple network security technologies into a single footprint - Support for multiple VPNs with different security contexts - Support for application layer security (Layer 7 of the OSI Model) Which of the following technologies would be the most appropriate solution given these requirements?
Options
- ANAT gateway
- BReverse proxy
- CNGFW
- DNIDS
Explanation
A Next-Generation Firewall (NGFW) consolidates traditional firewall functions (stateful packet inspection, VPN termination) with advanced capabilities such as intrusion prevention, application- layer (L7) inspection, and support for multiple VPN contexts. This single-footprint device can host separate VPN tunnels with distinct security policies while enforcing deep-packet and application- level controls across all traffic.
Community Discussion
No community discussion yet for this question.