{"id":902,"date":"2021-01-17T05:41:48","date_gmt":"2021-01-16T18:08:16","guid":{"rendered":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0894\/"},"modified":"2021-01-17T05:44:49","modified_gmt":"2021-01-17T05:44:49","slug":"systems-security-certified-practitioner-sscp-question0894","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/ISC\/SSCP\/systems-security-certified-practitioner-sscp-question0894\/","title":{"rendered":"Systems Security Certified Practitioner &#8211; SSCP &#8211; Question0894"},"content":{"rendered":"<div class=\"question\">A variation of the application layer firewall is called a: <br \/><strong><br \/>A.<\/strong> Current Level Firewall. <br \/><strong>B.<\/strong> Cache Level Firewall. <br \/><strong>C.<\/strong> Session Level Firewall. <br \/><strong>D.<\/strong> Circuit Level Firewall.<\/div>\n<p><\/p>\n<style> .hidden-div{ display:none } <\/style>\n<p>\t\t\t\t\t\t\t<button onclick=\"getElementById('hidden-div').style.display = 'block'\"> Show Answer <\/button> <button onclick=\"getElementById('hidden-div').style.display = 'none'\">Hide Answer<\/button><\/p>\n<div class=\"hidden-div\" id=\"hidden-div\"><span style=\"\"><\/p>\n<div class=\"answer\">Correct Answer: <strong>D<\/strong><\/div>\n<p><strong>Explanation:<\/strong> <\/p>\n<div class=\"explanation\">\nTerminology can be confusing between the different souces as both CBK and AIO3 call an application layer firewall a proxy and proxy servers are generally classified as either circuit-level proxies or application level proxies.<br \/>\nThe distinction is that a circuit level proxy creates a conduit through which a trusted host can communicate with an untrusted one and doesn&#8217;t really look at the application contents of the packet (as an application level proxy does). SOCKS is one of the better known circuit-level proxies.<br \/>\nFirewalls Packet Filtering Firewall -First Generation<br \/>\nn Screening Router n Operates at Network and Transport level n Examines Source and Destination IP Address n Can deny based on ACLs n Can specify Port<br \/>\nApplication Level Firewall -Second Generation n Proxy Server n Copies each packet from one network to the other n Masks the origin of the data n Operates at layer 7 (Application Layer) n Reduces Network performance since it has do analyze each packet and decide what to do with it. n Also Called Application Layer Gateway<br \/>\nStateful Inspection Firewalls \u2013 Third Generation n Packets Analyzed at all OSI layers n Queued at the network level n Faster than Application level Gateway<br \/>\nDynamic Packet Filtering Firewalls \u2013 Fourth Generation n Allows modification of security rules n Mostly used for UDP n Remembers all of the UDP packets that have crossed the network\u2019s perimeter, and it decides whether to enable packets to pass through the firewall. Kernel Proxy \u2013 Fifth Generation n Runs in NT Kernel n Uses dynamic and custom TCP\/IP-based stacks to inspect the network packets and to enforce security policies. &#8220;Current level firewall&#8221; is incorrect. This is an amost-right-sounding distractor to confuse the unwary. &#8220;Cache level firewall&#8221; is incorrect. This too is a distractor.<br \/>\n&#8220;Session level firewall&#8221; is incorrect. This too is a distractor. References CBK, p. 466 -467 AIO3, pp. 486 -490 CISSP Study Notes from Exam Prep Guide<\/div>\n<p><\/strong><\/span> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>A variation of the application layer firewall is called a: A. Current Level Firewall. B. Cache Level Firewall. C. Session Level Firewall. D. Circuit Level Firewall. Show Answer Hide Answer Correct Answer: D Explanation: Terminology can be confusing between the different souces as both CBK and AIO3 call an application layer firewall a proxy and [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[1078,897,3],"class_list":["post-902","post","type-post","status-publish","format-standard","hentry","category-systems-security-certified-practitioner-sscp","tag-choices","tag-question-0894","tag-systems-security-certified-practitioner-sscp"],"_links":{"self":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/902","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/comments?post=902"}],"version-history":[{"count":1,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/902\/revisions"}],"predecessor-version":[{"id":1978,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/posts\/902\/revisions\/1978"}],"wp:attachment":[{"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/media?parent=902"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/categories?post=902"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exampracticetests.com\/ISC\/SSCP\/wp-json\/wp\/v2\/tags?post=902"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}