NGFW-ENGINEER · Question #14
NGFW-ENGINEER Question #14: Real Exam Question with Answer & Explanation
The correct answer is D: It specifies which domains are resolved by the VPN-assigned DNS servers and which domains. When split tunneling is enabled with the "Both Network Traffic and DNS" option in the GlobalProtect portal configuration, it allows the firewall to control which traffic is sent over the VPN tunnel and which is not. Specifically, it determines which domains are resolved by the VP
Question
What is a result of enabling split tunneling in the GlobalProtect portal configuration with the "Both Network Traffic and DNS" option?
Options
- AIt specifies when the secondary DNS server is used for resolution to allow access to specific
- BIt allows users to access internal resources when connected locally and external resources when
- Clt allows devices on a local network to access blocked websites by changing which DNS server
- DIt specifies which domains are resolved by the VPN-assigned DNS servers and which domains
Explanation
When split tunneling is enabled with the "Both Network Traffic and DNS" option in the GlobalProtect portal configuration, it allows the firewall to control which traffic is sent over the VPN tunnel and which is not. Specifically, it determines which domains are resolved by the VPN- assigned DNS servers (for domains requiring VPN access) and which are resolved by local DNS servers (for domains that can be accessed without the VPN tunnel).
Topics
Community Discussion
No community discussion yet for this question.