Certification tests Certification training Certification tests mcse ccna a+
Practice Tests CCNA MCSE A+ Network+
  IT Certification Practice Exams   HOME  | Cisco  | CompTIA  | CheckPoint | CIW | Microsoft | Books | Bootcamp |  Buy Now!

 

CheckPoint® CCSA (CheckPoint Certified Security Administrator)

Practice Questions: Stealth Rule and Rule Base

Home                                 CCSA Practice Questions                                 Previous                    Next

Q6. What is the purpose of stealth rule in the Rule Base of VPN/FireWall?

 

A.   It drops all communication attemps not described by the other rules in the Rule Base.

B.   It is the first rule in the Rule Base that prevents traffic from directly accessing the firewall itself.

C.   It is the first rule in the Rule Base that drops all packets belonging to other Protocol Stacks

D.  It filters networks by Destination IP addresses

 

 

                                                         

Correct Answer: B.

Explanation:

Implicit Drop Rule is added by VPN-1/FireWall-1 at the bottom of the Rule Base. The purpose of this rule is to drop all packets that are not described by earlier rules in the Rule Base.
Compare this with the stealth rule, which is the first rule in the Rule Base. The purpose of this is to prevent traffic from directly accessing the firewall itself.

Home                                                                                               Previous                    Next