CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. WatchGuard
  5. Essentials

Free Essentials Exam Braindumps (page: 7)

Page 7 of 19
PDF with 75 Questions

If your Firebox has a single public IP address, and you want to forward inbound traffic to internal hosts based on the destination port, which type of NAT should you use?

  1. Static NAT
  2. 1-to-1 NAT
  3. Dynamic NAT

Answer(s): A



You need to create an HTTP-proxy policy to a specific domain for software updates (example.com). The update site has multiple subdomains and dynamic IP addresses on a content delivery network. Which of these options is the best way to define the destination in your HTTP-proxy policy?

  1. Configure a host name for update.example.com.
  2. Configure an FQDN for *.example.com.
  3. Add IP addresses that correspond to each software update server in the domain.
  4. Create an alias for all subdomains and known IP addresses for example.com.

Answer(s): B



From the SMTP proxy action settings in this image, which of these options is configured for outgoing SMTP traffic?

  1. Rewrite the Mail From header for the example.com domain.
  2. Deny incoming mail from the example.com domain.
  3. Prevent mail relay for the example.com domain.
  4. Deny outgoing mail from the example.com domain.

Answer(s): B



You can configure the SMTP-proxy policy to restrict email messages and email content based on which of these message characteristics? (Select four.)

  1. Sender Mail From address
  2. Check URLs in message with WebBlocker
  3. Email message size
  4. Attachment file name and content type
  5. Maximum email recipients

Answer(s): A,C,D,E

Explanation:

A: Another way to protect your SMTP server is to restrict incoming traffic to only messages that use your company domain. In this example, we use the mywatchguard.com domain. You can use your own company domain.
1. From the SMTP-Incoming Categories list, select Address > Rcpt To.
2. In the Pattern text box, type *.mywatchguard.com. Click Add. This denies any email messages with a Rcpt To address that does not match the company domain.
3. Click OK to close the SMTP Proxy Action Configuration dialog box.
C: In this exercise we will reduce the maximum email size to 5 MB (5, 000 kilobytes).
1. From the SMTP Proxy Action dialog box under the Categories list, select General > General Settings.
2. Find the Limits section. In the Set the maximum email size value box, type 5000.
D: Example: He must configure the Firebox to allow Microsoft Access database files to go through the SMTP proxy. He must also configure the Firebox to deny
Apple iTunes MP4 files because of a recent vulnerability announced by Apple.
1. From the SMTP-Incoming Categories list, select Attachments > Content Types.
2. In the Actions to take section, use the None Matched drop-down list to select Allow.
This allows all content types through Firebox to the SMTP server. After Successful Company is able to add in the specific content types they want to allow, they set this parameter to strip content type that does not match their list of allowed content types.
From the SMTP-Incoming Categories list, select Attachments > Filenames.
4. The filename extension for Microsoft Access databases is ".mdb". In the list of filenames, find and select .mdb. Click Remove. Click Yes to confirm.
3. If no rules match, the Action to take option is set to allow the attachment. In this example, MS Access files are now allowed through the Firebox.
5. In the Pattern text box, type *.mp4. Click Add.
This rule configures the Firebox to deny all files with the Apple iTunes ".mp4" file extension bound for the SMTP server.
E: The Set the maximum email recipient checkbox is used to set the maximum number of email recipients to which a message can be sent in the adjacent text box that appears, type or select the number of recipients.
The XTM device counts and allows the specified number of addresses through, and then drops the other addresses. For example, if you set the value to 50 and there is a message for 52 addresses, the first 50 addresses get the email message. The last two addresses do not get a copy of the message.
Incorrect:
Not B: Webblocker is configured through a HTTP-policy, not through an SMTP policy.


Reference:

Fireware Basics, Courseware: WatchGuard System Manager 10, pages 125, 126
http://watchguard.com/help/docs/wsm/xtm_11/en-us/content/en-us/proxies/smtp/proxy_smtp_gen_settings_c.html



Page 7 of 19



Post your Comments and Discuss WatchGuard Essentials exam with other Community members:

Peter commented on April 09, 2023
Well worth the money. Real Questions and Answers
CYPRUS
upvote

Masseh commented on July 22, 2021
The support team from this website is very good. They reply right away unlike other sites where as soon as they take your money they stop replying.
GERNAMY
upvote

Robert commented on April 22, 2016
Hello, the Exam have some bugs. But i passed with over 80 %. Nice Work Robert
UNITED STATES
upvote