Which statement describes Cisco IOS Zone-Based Policy Firewall operation?
- The pass action works in only one direction.
- Router management interfaces must be manually assigned to the self zone.
- A router interface can belong to multiple zones.
- Service policies are applied in interface configuration mode.
Explanation: The pass action allows traffic only in one direction. Interfaces automatically become members of the self zone. Interfaces are assigned to zones in interface configuration mode, but most configuration takes place in global configuration mode and associated submodes. Interfaces can belong to only one zone at any time.
Exam with this question: CCNPv8 ENCOR (Version 8.0) – Access Control and Infrastructure Security Exam
Exam with this question: Modules 8 - 10: ACLs and Firewalls Group Exam Answers
Exam with this question: Network Defense (NetDef) Course Final Exam Answers
Please login or Register to submit your answer