nerdexam
ExamsNETSEC-GENERALISTQuestions#37
Palo_Alto_NetworksPalo_Alto_Networks

NETSEC-GENERALIST · Question #37

NETSEC-GENERALIST Question #37: Real Exam Question with Answer & Explanation

The correct answer is C: 20.10.10.15. Based on the image and default rulestack settings of the Cloud NGFW for AWS, the source IP address seen in the data filtering logs will be 20.10.10.15, which is the IP address of the load Default Rulestack Behavior: By default, the rulestack settings do not inspect or preserve th

Cloud NGFW Traffic Processing and Logging

Question

Based on the image below, which source IP address will be seen in the data filtering logs of the Cloud NGFW for AWS with the default rulestack settings?

Options

  • A10.1.1.3
  • B20.10.10.16
  • C20.10.10.15
  • D10.1.1.2

Explanation

Based on the image and default rulestack settings of the Cloud NGFW for AWS, the source IP address seen in the data filtering logs will be 20.10.10.15, which is the IP address of the load Default Rulestack Behavior: By default, the rulestack settings do not inspect or preserve the original client IP (e.g., 10.1.1.2) in the "X-Forwarded-For" header. Instead, the load balancer's IP (20.10.10.15) is recorded as the source IP. Logging Mechanism: Unless explicitly configured to parse the "X-Forwarded-For" header, the firewall's logs will reflect the IP address of the device directly sending the traffic to the NGFW (the load balancer in this case).

Topics

#Cloud NGFW#AWS Networking#Network Address Translation (NAT)#Firewall Logging

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full NETSEC-GENERALIST PracticeBrowse All NETSEC-GENERALIST Questions