F50-506 Online Practice Questions and Answers

Which two statements are true about the NAPT option when using a Network Access connection to FirePass? (Choose 2)

A. When enabled, NAPT translates the client source address to the FirePass Address.

B. When enabled, NAPT translates the FirePass virtual Address to the Server Address.

C. On the 600, The NAPT option is used when connecting to the Network Access feature.

D. On the 600, the NAPT option is used when connecting to the SSL VPN Client feature, and translates the client source address to the Server Address.

E. When disabled, NAPT translates the FirePass virtual Address to the real Server Address.

Which three settings can be configured for a Network Access connection? (Choose 3)

A. Client SSL Certificates.

B. Split Tunneling.

C. Gateway for Network Access connection.

D. DNS Server for Network Access connection.

E. FQDN for attached client machine for Network Access connection.

F. IP Address pool for client source address.

Which two statements are true concerning the Split Tunnel option for a Network Access connection? (Choose 2)

A. When enabled, certain client DNS queries can be directed to a different DNS Server.

B. When enabled, only traffic destined to a particular Application Server is forwarded to the FirePass server.

C. When enabled, only traffic destined from the client to a particular IP Address range is forwarded to the FirePass server.

D. When enabled, all client network traffic is split out and setup in an encrypted tunnel session with the FirePass server.

E. When enabled, traffic destined to a particular Application Server is split out and setup in an encrypted tunnel session with the FirePass server.

Which are true statements concerning FirePass 600 users? (Choose 2)

A. The FirePass Admin can delete users authorized by either the FirePass Internal database or Active Directory.

B. The FirePass Admin cannot delete Windows Domain Server users from FirePass.

C. FirePass users can be added from a RADIUS Server either through an Import or Signup template.

D. FirePass users can be added from a VASCO server either through an Import or Signup template.

E. FirePass users can be added from an Active Directory database either through an Import or Signup template.

From which of the following places can a FirePass Admin Console kill a users connection?

A. Admin Console / Reports / Users.

B. Admin Console / Reports / Sessions.

C. Admin Console / Reports / Connections.

D. Admin Console / Device Management / Security / Sessions.

E. Admin Console / Device Management / Security / Connections.

F. Maintenance Console / Restart and Shutdown / User Connections.

Which of the following are valid options for Network Access policy checks? (Choose 2)

A. Processes present.

B. System Registry Entries absent.

C. Client IP Address.

D. McAfee Antivirus running certain version of Scan Engine.

E. Different Process present as fallback if primary process is absent.

With the conditions below set for Network Access policy checks, along with the following clientscenario, what will be the result? (Choose 2)

Policy Checks - Processes to be present - mcshield (McAfee AntiVirus process), Operating system service packs - win2k and svcpk4 or winxp and svcpk1, Custom Messages - Connection Established message set to "Connected to Company Network". Check for Processes Failed message set to "Incorrect or Faulty Virus Program Installed". Client configuration - Windows 2000 Service Pack 5, Norton Antivirus installed but not McAfee.

A. Client will not be able to use Network Access.

B. Client will be able to logon to FirePass only after un-installing Windows Service Pack 5.

C. Client will be able to use Network Access but will receive message Check for Processes Failed on login screen.

D. Client will receive the message Incorrect or Faulty Virus Program Installed when Network Access option is selected.

E. After un-installing Norton AntiVirus, client will be able to logon to FirePass and will receive message Connected to Company Network when Network Access option is selected.

Which two statements are true about initial access to the FirePass 600 Controller?(Choose 2) A. The Admin has limited command line access through a serial terminal using the maintenance console.

B. The Admin has Unix command line access through a serial terminal using root / default as the userid and password.

C. The SuperUser has web configuration access to https://192.168.1.99/admin/ using admin / admin as the userid and password.

D. The Admin has web configuration access to https://192.168.1.245/admin/ using admin / admin as the userid and password.

E. The Admin has Unix command line access through a keyboard and monitor using root / default as the userid and password.

Which three statements are true about the options available from the FirePass maintenance console? (Choose 3)

A. It can be used to shutdown and restart the FirePass Controller.

B. It can be used to reset the FirePass Controller to factory defaults.

C. It can be used to add Administrator userids to the FirePass Controller.

D. It can be used to set Administrator passwords for the FirePass Controller.

E. It can be used for Network Diagnostics such as ping, netstat and IP Address settings.

Which two statements are true about FirePass 600 Administrators? (Choose 2)

A. SuperUser logons to FirePass do not need to be Authenticated externally to FirePass.

B. All FirePass Administrators can access the FirePass user console.

C. All FirePass Administrators can access the FirePass user console except the SuperUser.

D. FirePass Administrators with the correct rights can change any FirePass user's password.

E. The FirePass SuperUser can only change FirePass internally Authenticated user's passwords.