PrepAway - Latest Free Exam Questions & Answers

Which firewall filter configuration do you use?

Referring to the exhibit, you are asked to rate-limit traffic from Web-Server to the subnet where
Mal-User is located. All other traffic should be permitted.

Which firewall filter configuration do you use?

PrepAway - Latest Free Exam Questions & Answers

A.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}

B.
[edit firewall]
user@router# show
policer LIMIT-BAD-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}

C.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
100.100.100.10/32;
}
destination-address {
200.200.200.0/24;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then reject;
}
}
}

D.
[edit firewall]
user@router# show
policer LIMIT-MAL-USER {
if-exceeding {
bandwidth-limit 400k;
burst-size-limit 100k;
}
then discard;
}
family inet {
filter STOP-MAL-USER {
term one {
from {
source-address {
200.200.200.0/24;
}
destination-address {
100.100.100.10/32;
}
}
then policer LIMIT-MAL-USER;
}
term two {
then accept;
}
}
}

Explanation:

2 Comments on “Which firewall filter configuration do you use?

  1. humberto says:

    D.
    [edit firewall]
    user@router# show
    policer LIMIT-MAL-USER {
    if-exceeding {
    bandwidth-limit 400k;
    burst-size-limit 100k;
    }
    then discard;
    }
    family inet {
    filter STOP-MAL-USER {
    term one {
    from {
    source-address {
    200.200.200.0/24;
    }
    destination-address {
    100.100.100.10/32;
    }
    }
    then policer LIMIT-MAL-USER;
    }
    term two {
    then accept;
    }
    }




    0



    0

Leave a Reply