SY0-701 · Question #236
SY0-701 Question #236: Real Exam Question with Answer & Explanation
The correct answer is B: Behavioral-based. To minimize the impact of the increasing number of various traffic types during attacks, a security engineer is most likely to configure behavioral-based rules on a Next-Generation Firewall (NGFW). Behavioral-based rules analyze the behavior of traffic patterns and can detect and
Question
A security engineer needs to configure an NGFW to minimize the impact of the increasing number of various traffic types during attacks. Which of the following types of rules is the engineer the most likely to configure?
Options
- ASignature-based
- BBehavioral-based
- CURL-based
- DAgent-based
Explanation
To minimize the impact of the increasing number of various traffic types during attacks, a security engineer is most likely to configure behavioral-based rules on a Next-Generation Firewall (NGFW). Behavioral-based rules analyze the behavior of traffic patterns and can detect and block unusual or malicious activity that deviates from normal behavior. Behavioral-based: Detects anomalies by comparing current traffic behavior to known good behavior, making it effective against various traffic types during attacks. Signature-based: Relies on known patterns of known threats, which might not be as effective against new or varied attack types. URL-based: Controls access to websites based on URL categories but is not specifically aimed at handling diverse traffic types during attacks. Agent-based: Typically involves software agents on endpoints to monitor and enforce policies, not directly related to NGFW rules.
Community Discussion
No community discussion yet for this question.