PCNSE · Question #253
PCNSE Question #253: Real Exam Question with Answer & Explanation
Sign in or unlock PCNSE to reveal the answer and full explanation for question #253. The question stem and answer options stay visible for context.
Question
A web server is hosted in the DMZ and the server is configured to listen for incoming connections on TCP port 443. A Security policies rules allowing access from the Trust zone to the DMZ zone needs to be configured to allow web-browsing access. The web server hosts its contents over HTTP(S). Traffic from Trust to DMZ is being decrypted with a Forward Proxy rule. Which combination of service and application, and order of Security policy rules, needs to be configured to allow cleartext web-browsing traffic to this server on tcp/443?
Options
- ARule #1: application: web-browsing; service: application-default; action: allow
- BRule #1: application: web-browsing; service: service-https; action: allow
- CRule # 1: application: ssl; service: application-default; action: allow
- DRule #1: application: web-browsing; service: service-http; action: allow
Unlock PCNSE to see the answer
You've previewed enough free PCNSE questions. Unlock PCNSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.