What command would you use for a packet capture on an absolute position for TCP streaming (out) 1ffffe0

A. fw ctl chain -po 1ffffe0 -o monitor.out

B. fw monitor -po -0x1ffffe0 -o monitor.out

C. fw monitor -e 0x1ffffe0 -o monitor.out

D. fw monitor -pr 1ffffe0 -o monitor.out

What causes the SIP Early NAT chain module to appear in the chain?

A. The SIP traffic is trying to pass through the firewall.

B. SIP is configured in IPS.

C. A VOIP domain is configured.

D. The default SIP service is used in the Rule Base.

Tom has a Web server for which he has created a manual NAT rule. The rule is not working. He tries to initiate a connection from the external network to a DMZ server using the public IP which the firewall translates to the actual IP of the server. He analyzes the captured packets using Wireshark and observes that the destination IP is being changed as required by the firewall but does not see the packet leave the internal interface. Which box in Global Properties should be checked?

A. Automatic NAT rules > Allow bi-directional NAT

B. Automatic NAT rules > Automatic ARP Configuration

C. Automatic NAT rules > Translate destination on client side

D. Manual NAT rules > Translate destination on client side

Extended Cluster Anti-Spoofing checks what value to determine if a packet with the source IP of a gateway in the cluster is being spoofed?

A. The source IP of the packet.

B. The packet has a TTL value of less than 255.

C. The source MAC address of the packet.

D. The destination IP of the packet.

You are setting up VPN between two gateways Local-GW and New-GW and want to use shared secret. For some reason New-GW is not showing up in the shared secret properties under mesh community properties. What is the most likely reason why the New-GW is not displayed?

A. Gateway is locally managed by the same management station as Local-GW and shared secret is not supported for this configuration

B. New-GW has to have Advanced properties > shared secret enabled.

C. You need to install database by selecting Policy > Install database before gateway can be added.

D. Gateway is 600 appliance and does not support "shared secret" option.

A Rule Base has been improperly configured with a rule which disables templating at the top of the Rule Base. How will this impact traffic acceleration?

A. SecureXL is disabled.

B. Templates are disabled, and throughput acceleration only functions for rules above this one.

C. Templates are disabled for this rule but it does not impact the rest of the Rule Base.

D. Templates are disabled but throughput acceleration is still taking place.

From a Best Practices perspective, what percentage of your packets should be accelerated?

A. 65%

B. 90%

C. 100%

D. 75%

When troubleshooting a performance problem on multicore firewall that is using CoreXL, what command checks the number of connections each core is processing?

A. sim affinity -l

B. cat fwkern.conf

C. fw CTL pstat

D. fw ctl multik stat

You have strict IPS corporate guidelines. This is having a performance impact on the firewall. What steps could you take to minimize this impact without compromising the corporate policy?

A. Select "Protect Internal hosts only"

B. Select "Bypass IPS inspection when gateway is under heavy load"

C. Select "Perform IPS inspection on all traffic"

D. Without minimizing signatures you cannot improve performance

Jane wants to create a VPN using OSPF. Which VPN configuration would you recommend she use?

A. Site-to-site VPN

B. Domain-based VPN

C. Route-based VPN

D. Remote-access VPN