PrepAway - Latest Free Exam Questions & Answers

Which of the following can monitor any application input, output, and/or system service calls made from, to, o

Which of the following can monitor any application input, output, and/or system service calls made from, to, or by an application?

PrepAway - Latest Free Exam Questions & Answers

A.
Network-based firewall

B.
Dynamic firewall

C.
Host-based firewall

D.
Application firewall

Explanation:
A host-based application firewall can monitor any application input, output, and/or system service calls made from, to, or by an application. This is done by examining information passed through system calls instead of. or in addition to, a network stack. A host-based application firewall can only provide protection to the applications running on the same host.

An example of a host-based application firewall that controls system service calls by an application is AppArmor or the Mac OS X application firewall. Host-based application firewalls may also provide network-based application firewalling.

Answer option A is incorrect. A network-based application layer firewall, also known as a proxy- based or reverse-proxy firewall, is a computer networking firewall that operates at the application layer of a protocol stack. Application firewalls specific to a particular kind of network traffic may be titled with the service name, such as a Web application firewall. They may be implemented through software running on a host or a stand-alone piece of network hardware. Often, it is a host using various forms of proxy servers to proxy traffic before passing it on to the client or server. Because it acts on the application layer, it may inspect the contents ofthe traffic, blocking specified content, such as certain websites, viruses, and attempts to exploit known logical flaws in client software.

Answer option D is incorrect. An application firewall is a form of firewall that controls input, output, and/or access from, to, or by an application or service. It operates by monitoring and potentially blocking the input, output, or system service calls that do not meet the configured policy of the firewall. The application firewall is typically built to monitor one or more specific applications or services (such as a web or database service), unlike a stateful network firewall, which can provide some access controls for nearly any kind of network traffic. There are two primary categories of application firewalls:
Network-based application firewalls
Host-based application firewalls

Answer option B is incorrect. A dynamic packet-filtering firewall is a fourth generation firewall technology. It is also known as a stateful firewall. The dynamic packet-filtering firewall tracks the state of active connections, and then determines which network packets are allowed to enter through the firewall. It records session information, such as IP addresses and port numbers to implement a more secure network. The dynamic packet-filtering firewall operates at Layer3, Layer4, and Layers.


Leave a Reply