Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search Store documents

The best documents sold by students who completed their studies

Search through all study resources
Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

University Rankings

Discover the best universities in your country according to Docsity users

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

From our blog

Exams and Study
Go to the blog

SOPHOS FIREWALL EXAM QUESTIONS AND ANSWERS UPDATED (2025/2026) (VERIFIED ANSWERS), Exams of Cybercrime, Cybersecurity and Data Privacy

Zane State CollegeCybercrime, Cybersecurity and Data Privacy

DHCP can be used to override the magic IP if the XG Firewall is not the default gateway. - ANS ✓False Which web filtering method can offload traffic to the Fast Path? - ANS ✓DPI Which interface type is a virtual LAN created on an existing XG interface - ANS ✓VLAN Which of the following statements about zero-touch deployment are TRUE - ANS ✓Zero-touch configuration rules can only be created for unregistered hardware serial numbers What is the clientless Access portal used for? - ANS ✓To provide access to internal resources without the need for a VPN client to be installed

Typology: Exams

2024/2025

Available from 03/22/2025

tizian-kylan
tizian-kylan 🇺🇸

2.7

(21)

3.8K documents

1 / 6

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
1
SOPHOS
SOPHOS FIREWALL
SOPHOS FIREWALL EXAM QUESTIONS
AND ANSWERS UPDATED
(2025/2026) (VERIFIED ANSWERS)
DHCP can be used to override the magic IP if the XG Firewall is not the
default gateway. - ANS False
Which web filtering method can offload traffic to the Fast Path? - ANS DPI
Which interface type is a virtual LAN created on an existing XG interface -
ANS VLAN
Which of the following statements about zero-touch deployment are TRUE -
ANS Zero-touch configuration rules can only be created for unregistered
hardware serial numbers
What is the clientless Access portal used for? - ANS To provide access to
internal resources without the need for a VPN client to be installed
Which firewall icon represents a disabled user Rule? - ANS C
pf3
pf4
pf5

Partial preview of the text

Download SOPHOS FIREWALL EXAM QUESTIONS AND ANSWERS UPDATED (2025/2026) (VERIFIED ANSWERS) and more Exams Cybercrime, Cybersecurity and Data Privacy in PDF only on Docsity!

SOPHOS

SOPHOS FIREWALL EXAM QUESTIONS

AND ANSWERS UPDATED

(202 5 /202 6 ) (VERIFIED ANSWERS)

DHCP can be used to override the magic IP if the XG Firewall is not the default gateway. - ANS ✓False Which web filtering method can offload traffic to the Fast Path? - ANS ✓DPI Which interface type is a virtual LAN created on an existing XG interface - ANS ✓VLAN Which of the following statements about zero-touch deployment are TRUE - ANS ✓Zero-touch configuration rules can only be created for unregistered hardware serial numbers What is the clientless Access portal used for? - ANS ✓To provide access to internal resources without the need for a VPN client to be installed Which firewall icon represents a disabled user Rule? - ANS ✓C

SOPHOS

Which page list all current applications that are connecting through the XG Firewall? - ANS ✓Live connections How many days of data is available in Sophos Central? - ANS ✓7 days What do you need to do in order to use NTLM and Kerberos for web authentication? - ANS ✓Enable AD SSO per zone on the Device Access page The XG firewall's life implementation of Cloud Access security Broker blocks all cloud applications by default - ANS ✓False Below is an image of the XG Firewall Control Centre. From here, what would you click to access the Policy Test Simulator - ANS ✓Log Viewer Which 4 of the following are supported external authentication servers on Sophos XG firewall 18.0? - ANS ✓eDirectory. Radius, Active directory. LDAP The option to create loopback and reflexive Nat rules is only when adding NEW NAT rule, not when editing an existing NAT rule. - ANS ✓True Which 3 options should be configured to ensure the most secure scanning settings are in place to protect users as they browse the web? - ANS ✓Malware scan mode: Batch, Engine Selection, Dual engine. Content : Block

SOPHOS

Which 2 of the following statements correctly describe how firewall rules are applied? - ANS ✓Packets that don't math a firewall rule are dropped and logged Packets are tested against firewall rules in order and the first match is used The Sophos Chromebook User ID app is deployed to Chromebook from the XG firewall - ANS ✓False Which is the control port in RED connections? - ANS ✓TCP: you are working with sensitive corporate data and want to ensure that traffic from remote locations is monitored and blocked from leaving the corporate LAN. What would be the most appropriate security mode to deploy the RED devices in - ANS ✓Standard/Unified NAT rules require firewall rules to allow traffic - ANS ✓True When creating a NAT rule which option allows you to select - ANS ✓Override source translation When creating a NAT rule which option allows you to select different source NATs based on the outbound interface within a single rule? - ANS ✓Override source translation

SOPHOS

Which 2 methods can be used to generate one-time passwords for authenticating with the XG Firewall - ANS ✓Bridge, transparent When a RED is deployed in Standard/Unified mode, how do the computers on the remote network get their IP addresses? - ANS ✓From a DHCP server running on the XG firewall You are preparing a hardware XG Firewall for installation on a remote site. The order for the license has not yet been processed. Which registration option do you select in the Initial Setup wizard? - ANS ✓I do not want to register now You have created a repot that displays data that you wish to check on a daily basis. how can you make this data easily available in the WebAdmin interface?? - ANS ✓Create a bookmark for the report Which of the following best describes grey listing? - ANS ✓The first attempt to deliver a message is temporarily denied. One computer has a red health status. ON which 2 of the networks can the endpoints be protected from the computer with a red health status? - ANS ✓A. C Sophos XG hardware devices come pre-loaded with software. - ANS ✓True