In which two instances will traffic be denied as it crosses the ASA 5505 device? (Choose two.)
- traffic originating from the inside network going to the DMZ network
- traffic originating from the inside network going to the outside network
- traffic originating from the outside network going to the DMZ network
- traffic originating from the DMZ network going to the inside network
- traffic originating from the outside network going to the inside network
Explanation: When an ASA 5505 device is being utilized, traffic is denied as it travels from a lower security zone to a higher security zone. The highest security zone is the internal network, the DMZ is usually the next highest, and the outside network is the lowest. Traffic is only allowed to move from a lower security level to a higher if it is in response to originating traffic within the higher security zone.
Exam with this question: CCNA Security Final Exam Answers
Exam with this question: Checkpoint Exam: ASA Group Exam Answers
Please login or Register to submit your answer