Which are valid SYNDefender options. (Choose all that apply)
A.
SYNDefender gateway
B.
SYNDefender server
C.
SYNDefender transparent
D.
SYNDefender passive gateway
Explanation:
: We have 2 options in here, when “SYNDefender Gateway” configuration takes place in a
checkpoint implementation it will automatically reply “SYN/ACK” packets from clients with an
“ACK” packet. When the server receives the ACK packet from the gateway, the connection is
moved out of the backlog queue, and becomes an open connection as far as the server is
concerned. The second option
“Passive SynDefender Gateway” is the same as the first with the difference that FW1 does not
simulate the client ACK to the server, instead, it waits for the client ACK, before passing it to the
server. See Pages 6.8-6.10 of CCSE NG Official Courseware. (VPN1-FW1 Management II NG
FP-1).