[Jan 18, 2023] Pass Your Essentials Dumps Free Latest WatchGuard Practice Tests
Get Top-Rated WatchGuard Essentials Exam Dumps Now
NEW QUESTION 31
How can you prevent connections to the Fireware Web UI from computers on optional interface Eth2? (Select one.)
- A. Remove Any-Optional from the To list of the WatchGuard policy
- B. Remove Any-Optional from the From list of the WatchGuard Web UI policy
- C. Remove Any-Optional from the To list of the WatchGuard Web UI policy.
- D. Remove Eth2 from the Any-Optional alias.
- E. Remove Any-Optional from the From list of the WatchGuard policy.
Answer: C
NEW QUESTION 32
In the network configuration in this image, which aliases is Eth2 a member of? (Select three.)
- A. Optional-1
- B. Any
- C. Any-External
- D. Any-Trusted
- E. Any-optional
Answer: A,B,E
NEW QUESTION 33
Match each WatchGuard Subscription Service with its function.
Uses signatures to provide real-time protection against network attacks. (Choose one).
- A. APT Blocker
- B. Application Control
- C. Intrusion Prevention Server IPS
- D. Reputation Enable Defense RED
- E. Data Loss Prevention DLP
Answer: C
Explanation:
Intrusion PreventionService (IPS) -- As with the other IPS offers, the IPS module is intended to detect and in real time mitigate intrusions coming into a network. This includes a large signaturedata base that monitors for spyware, SQL injections, cross-site scripting (XSS),and buffer overflows.
Reference:http://www.tomsitpro.com/articles/network-security-solutions-guide, 2-866-6.html
NEW QUESTION 34
For which of these third party authentication methods must you specify a search base? (Select two.)
- A. RADIUS
- B. SecurID
- C. Active Directory
- D. LDAP
Answer: C,D
Explanation:
B: Configuring the Firebox to use Active Directory authentication is similar to the process for LDAP authentication. You must set a search base to put limits on the directories on the authentication server the Firebox searchesin for an authentication match.
D: When you configure the Firebox to use LDAP authentication, you must set a search base to put limits on the directories on the authentication server the Firebox searches in for an authentication match
Reference: FirewareBasics, Courseware: WatchGuard System Manager 10, page 83-84
NEW QUESTION 35
If you disable the Outgoing policy, which policies must you add to allow trusted users to connect to commonly used websites? (Select three.)
- A. DNS port 53
- B. HTTP port 80
- C. NAT policy
- D. FTP port 21
- E. HTTPS port 443
Answer: A,B,E
Explanation:
Explanation/Reference:
TCP-UDP packet filter
If you decide to remove the Outgoing policy, you must add a policy for any type of traffic you want to allow through the Firebox. If you remove the Outgoing policy and then decide you want to allow all TCP and UDP connections through the Firebox again, you must add the TCP-UDP packet filter to provide the same function.
This is because the Outgoing policy does not appear in the list of standard policies available from Policy Manager.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, page 97
NEW QUESTION 36
Clients on the trusted network need to connect to a server behind a router on the optional network. Based on this image, what static route must be added to the Firebox for traffic from clients on the trusted network to reach a server at 10.0.20.100? (Select one.)
- A. Route to 10.0.20.0, Gateway 10.0.2.254
- B. Route to 10.0.10.0/24, Gateway 10.0.10.1
- C. Route to 10.0.20.0/24, Gateway 10.0.2.1
- D. Route to 10.0.20.0/24, Gateway 10.0.2.254
Answer: D
Explanation:
We must add a trusted static route to the 10.0.20.0/24 network through the 10.0.2.254 gateway.
NEW QUESTION 37
What settings must you device configuration file include for Gateway AntiVirus to protect users on your network? (Select two.)
- A. Configure a policy to use a proxy action that has AntiVirus settings configured.
- B. Decrease the scan limits
- C. Disable automatic signature updates.
- D. Install the Gateway AntiVirus server on your network.
- E. Configure Gateway AntiVirus settings for a proxy action.
Answer: A,E
Explanation:
Explanation/Reference:
When you enable Gateway AntiVirus, you must set the actions to be taken if a virus or error is found in an email message (SMTP or POP3 proxies), web page download or upload post (HTTP proxy), or uploaded or downloaded file (FTP proxy). When Gateway AntiVirus is enabled, it scans each file up to a specified kilobyte count. Any additional bytes in the file are not scanned. This allows the proxy to partially scan very large files without a large effect on performance.
Reference: http://watchguard.com/help/docs/webui/xtm_11/en-us/content/en-us/services/gateway_av/ av_actions_config_c.html
NEW QUESTION 38
Match each WatchGuard Subscription Service with its function.
A repository where email messages can be sent based on analysis by spamBlocker, Gateway AntiVirus, or Data Loss Prevention. (Choose one).
- A. Spam Blocker
- B. Intrusion Prevention Server IPS
- C. Gateway / Antivirus
- D. Quarantine Server
- E. Data Loss Prevention DLP
Answer: D
Explanation:
Explanation/Reference:
The WatchGuard Quarantine Server provides a safe mechanism to quarantine any email messages that are suspected or known to be spam, or to contain viruses or sensitive data. The Quarantine Server is a repository for email messages that the SMTP proxy sends to quarantine based on analysis by spamBlocker, Gateway AntiVirus, or Data Loss Prevention.
Reference: https://www.watchguard.com/help/docs/webui/xtm_11/en-US/index.html#cshid=en-US/ quarantineserver/quar_server_about_c.html
NEW QUESTION 39
The IP address for the trusted interface on your Firebox is 10.0.40.1/24, but you want to change the IP address for this interface. How can you avoid a network outage for clients on the trusted network when you change the interface IP address to 10.0.50.1/24? (Select one.)
- A. Add a route to 10.0.40.0/24 with the gateway 10.0.50.1.
- B. Add 10.0.40.1/24 as a secondary IP address for the interface.
- C. Create a 1-to-1 NAT rule for traffic from the 10.0.40.0/24 subnet to addresses on the 10.0.50.0/24 subnet.
- D. Add IP addresses on the 10.0.40.0/24 subnet to the DHCP Server IP address pool for this interface.
Answer: B
NEW QUESTION 40
When your device is in a default state, to which interface do you connect your management computer so you can use the Quick Setup Wizard or Web Setup Wizard to configure the device? (Select one.)
- A. Any interface
- B. Interface 1
- C. Interface 0
- D. Console interface
Answer: B
Explanation:
Explanation/Reference:
To start the Web Setup Wizard, connect your computer to interface number 1 of your XTM device with an Ethernet cable. This is the trusted interface.
Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/installation/ qsw_web_about_c.html
NEW QUESTION 41
Users on the trusted network cannot browse Internet websites. Based on the configuration shown in this image, what could be the problem with this policy configuration? (Select one.)
- A. The HTTP-proxy allows Any-Trusted and Any-Optional to Any-External.
- B. The HTTP-proxy policy has higher precedence than the HTTPS-proxy policy.
- C. The default Outgoingpolicy has been removed and there is no policy to allow DNS traffic.
- D. The HTTP-proxy policy is configured for the wrong port.
Answer: D
NEW QUESTION 42
In the network configuration in this image, which aliases is Eth2 a member of? (Select three.)
- A. Optional-1
- B. Any
- C. Any-External
- D. Any-Trusted
- E. Any-optional
Answer: A,B,E
NEW QUESTION 43
Which of these actions adds a host to the temporary or permanent blocked sites list? (Select three.)
- A. In Policy Manager, selectSetup> Default Threat Protection > Blocked Sitesand clickAdd.
- B. Enable theAUTO-block sites that attempt to connectoption in a deny policy.
- C. On the Firebox System Manager >Blocked Sitestab, selectAdd.
- D. Add the site to theBlocked Sites Exceptionslist.
Answer: A,B,C
Explanation:
A: You can configure a deny policy to automatically block sites that originate traffic that does not comply with the policy rulese
1.From Policy Manager, double-click the PCAnywhere policy.
2.Click the Properties tab. Select the Auto-block sites that attempt to connect checkbox.
Reference:https://www.watchguard.com/training/fireware/80/defense8.htm
C: The blocked sites list shows all the sites currently blocked as a result of the rules defined in Policy Manager. From this tab, you can add sites to the temporary blocked sites list, or remove temporary blocked sites.
Reference:http://www.watchguard.com/training/fireware/82/monitoa6.htm
D: You can usePolicy Manager to permanently add sites to the Blocked Sites list.
1.select Setup > Default Threat Protection > Blocked Sites.
2.Click Add.
The Add Site dialog box appears.
Reference:http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-
US/intrusionprevention/blocked_sites_permanent_c.html
NEW QUESTION 44
Which of these options must you configure in an HTTPS-proxy policy to detect credit card numbers in HTTP traffic that is encrypted with SSL? (Select two.)
- A. Gateway AntiVirus
- B. Data Loss Prevention
- C. Deep inspection of HTTPS content
- D. WebBlocker
- E. Application Control
Answer: C
NEW QUESTION 45
Which of these actions adds a host to the temporary or permanent blocked sites list? (Select three.)
- A. Enable the AUTO-block sites that attempt to connect option in a deny policy.
- B. Add the site to the Blocked Sites Exceptions list.
- C. In Policy Manager, select Setup> Default Threat Protection > Blocked Sites and click Add.
- D. On the Firebox System Manager >Blocked Sites tab, select Add.
Answer: A,C,D
Explanation:
Explanation/Reference:
A: You can configure a deny policy to automatically block sites that originate traffic that does not comply with the policy rulese
1. From Policy Manager, double-click the PCAnywhere policy.
2. Click the Properties tab. Select the Auto-block sites that attempt to connect checkbox.
Reference: https://www.watchguard.com/training/fireware/80/defense8.htm C: The blocked sites list shows all the sites currently blocked as a result of the rules defined in Policy Manager. From this tab, you can add sites to the temporary blocked sites list, or remove temporary blocked sites.
Reference: http://www.watchguard.com/training/fireware/82/monitoa6.htm
D: You can use Policy Manager to permanently add sites to the Blocked Sites list.
1. select Setup > Default Threat Protection > Blocked Sites.
2. Click Add.
The Add Site dialog box appears.
Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-US/ intrusionprevention/blocked_sites_permanent_c.html
NEW QUESTION 46
Match each WatchGuard Subscription Service with its function.
Prevents accidental or unauthorized transmission of confidential information outside your network. (Choose one).
- A. Reputation EnableDefense RED
- B. APT Blocker
- C. Intrusion Prevention Server IPS
- D. Gateway / Antivirus
- E. Data Loss Prevention DLP
Answer: E
Explanation:
Data Loss Prevention (DLP) watches for accidental and intentional breaches of private/sensitive data through an organizational policy. Provides a library of over 200 rules to protect organization data and has the ability to parse over 30 different file formats including Microsoft Office formats and PDFs.
Reference:http://www.tomsitpro.com/articles/network-security-solutions-guide, 2-866-6.html
NEW QUESTION 47
In this diagram, which branch office VPN tunnel route must you add on the Site A Firebox to allow traffic between devices on the trusted network at Site A and the trusted network at site B? (Select one.)
- A. Local: 10.0.10.0/24 <--> Remote: 192.168.1.0/24
- B. Local: 192.168.1.0/24 <--> Remote: 10.0.10.0/24
- C. Local: 203.0.113.10/24 <--> Remote: 198.151.100.2/24
- D. Local: 10.0.10.1/24 <--> Remote: 192.168.1.1/24
Answer: D
NEW QUESTION 48
Match each type of NAT with the correct description:
Conserves IP addresses and hides the internal topology of your network. (Choose one)
- A. NAT Loopback
- B. 1-to1 NAT
- C. Dynamic NAT
Answer: C
Explanation:
Explanation/Reference:
Dynamic NAT is also known as IP masquerading. With dynamic NAT many computers can connect to the Internet from one public IP address. Dynamic NAT gives more security for internal hosts that use the Internet, because it hides the IP addresses of hosts on your network.
Reference: http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/nat/ nat_dynamic_use_c.html%3FTocPath%3DNetwork%2520Address%2520Translation%2520(NAT)%
7CAbout%2520Dynamic%2520NAT%7C_____0
NEW QUESTION 49
You can configure the SMTP-proxy policy to restrict email messages and email content based on
which of these message characteristics? (Select four.)
- A. Attachment file name and content type
- B. Maximum email recipients
- C. Check URLs in message with WebBlocker
- D. Sender Mail From address
- E. Email message size
Answer: B,C,D,E
NEW QUESTION 50
Which policies can use the Intrusion Prevention Service to block network attacks? (Select one?)
- A. Only inbound policies
- B. Only proxy policies
- C. All policies
- D. Only packet filter policies
- E. Only HTTP and HTTPS Proxy policies
Answer: C
NEW QUESTION 51
A local branch office VPN tunnel route is configured as shown in this image.
On the remote peer device, what must be configured as the remote network address for this tunnel route? (Select one.)
- A. 10.0.20.0/24
- B. 10.0.10.0/24
- C. 10.0.1.0/24
Answer: B
NEW QUESTION 52
Which WatchGuard Subscription Service must be enabled in a proxy policy before you can use APT Blocker?
(Select one.)
- A. IPS
- B. WebBlocker
- C. Gateway Antivirus
- D. Application Control
- E. RED
Answer: C
NEW QUESTION 53
Match the monitoring tool to the correct task.
Which tool can ping the source of a denied packet? (Select one)
- A. Log Server
- B. FireWatch
- C. Firebox System Manager - Authentication list
- D. FireboxSystem Manager - Subscription services
- E. Traffic Monitor
- F. FireBox System Manager - Blocked Sites list
Answer: E
Explanation:
For a quick look at the log messages generated by the Firebox, use Traffic Monitor. With Traffic Monitor, you can apply color to differenttypes of messages, and ping or traceroute to the IP addresses of computers included in the log messages.
Reference: Fireware Basics, Courseware: WatchGuard System Manager 10, pages 15, 34, 59, 181
NEW QUESTION 54
Match each WatchGuard Subscription Service with its function.
A repository where email messages can be sent based on analysis by spamBlocker, Gateway AntiVirus, or Data Loss Prevention. (Choose one).
- A. Spam Blocker
- B. Intrusion Prevention Server IPS
- C. Gateway / Antivirus
- D. Quarantine Server
- E. Data Loss Prevention DLP
Answer: D
Explanation:
The WatchGuard Quarantine Server provides a safe mechanism to quarantine any email messages that are suspected or known to be spam, or to contain viruses or sensitive data. The QuarantineServer is a repository for email messages that the SMTP proxy sends to quarantine based on analysis by spamBlocker, Gateway AntiVirus, or Data Loss Prevention.
Reference:https://www.watchguard.com/help/docs/webui/xtm_11/en-US/index.html#cshid=en-US/quarantineserver/quar_server_about_c.html
NEW QUESTION 55
......
Passing Key To Getting Essentials Certified Exam Engine PDF: https://www.itexamdownload.com/Essentials-valid-questions.html
Essentials Exam Dumps Pass with Updated Tests Dumps: https://drive.google.com/open?id=1NLsYp47p6ItSGvE0ewjh0A2pzF4A9ggl