The default configuration of the Solaris 10 OS has packet filtering disabled on all network interfaces. To enable packet filtering on the hme0 interface of a running system, the
related hme line in the /etc/ipf/pfil.ap file must be uncommented:

# IP Filter pfil autopush setup
#
# See autopush(1M) manpage for more information.

#
# Format of the entries in this file is:
#
#major minor lastminor modules

#le -1 0 pfil
#qe -1 0 pfil
hme -1 0 pfil
#qfe -1 0 pfil
#eri -1 0 pfil
#ce -1 0 pfil
#bge -1 0 pfil
#be -1 0 pfil
#vge -1 0 pfil
#ge -1 0 pfil
#nf -1 0 pfil
#fa -1 0 pfil

#ci -1 0 pfil
#el -1 0 pfil
#ipdptp -1 0 pfil
#lane -1 0 pfil
#dmfe -1 0 pfil

Which UNIX command must be executed to enable Solaris IP Filter firewall for the hme0 interface without rebooting the system?

Solaris IP Filter is configured to log blocked packets to syslog using the
default facility and levels. Which line in the /etc/syslog.conf file logs blocked packets to the
/var/adm/ipflog file?

A firewall administrator creates the /tmp/newrules file containing additional Solaris IP Filter rules. What are two results of running the ipf -f /tmp/newrules command? (Choose two.)

A new system is being installed with multiple interfaces configured and IP Forwarding enabled. One interface, ge0, connects to the primary company LAN. Another interface, ge1, connects to a LAN dedicated to administration of the company’s servers.

Given:

ge0 IP Address = 10.0.0.25/32
ge1 IP Address = 192.168.1.25/32
Admin network = 192.168.1.0/24
Primary network = 10.0.0.0/24

Solaris IP Filter firewall must be configured in a way that:

1- Systems on the admin network can reach the primary network.

2- The system itself has to be reached using ssh from all systems on the admin network.

3- Systems on the primary network cannot reach any systems on the admin network.

Which three rules should be included in the Solaris IP Filter configuration? (Choose three.)

The TCP/IP network model is a four-layered structure resting on a common hardware platform. In this model, the Transport layer is responsible for transporting data to and from the correct application. Which two protocols are found in the Transport layer? (Choose two.)

While attempting to configure an interface you receive the following error:

# ifconfig hme1 plumb 232.15.8.3 netmask 255.255.255.0 up ifconfig: SIOCSLIFADDR: hme1: Cannot assign requested address

Which is the cause of this error?

You configure and set up a tunnel, and need to ping the host at the remote end of the tunnel to ensure the tunnel will work. The remote end of the tunnel can be pinged without a tunnel in place. What are two good reasons to create a tunnel? (Choose two.)

You are attempting to configure link-based IPMP on a system containing two physical interfaces. Both interfaces are in the same group. Which two statements are true in a working link-based IPMP configuration? (Choose two.)

A section of the ifconfig -a command is run on a Solaris system with Probe-Based IPMP configured as follows:

hme0:1:flags=9040843<UP,BROADCAST,RUNNING,MULTICAST,DEPRECATED,IPV4,NOFAILOVER> mtu 1500 index 2 inet 192.168.1.51 netmask ffffff00 broadcast 192.168.1.255

The address shown is marked as deprecated.

In which two situations are addresses that are marked deprecated used as source addresses for outbound packets? (Choose two.)

You want to modify the failure detection time for IPMP so that failures are detected more quickly on the IPMP group containing the IPv6 interface eri0. Which file you do edit?