Last Updated on April 30, 2021 by Admin
NS – Modules 20 – 22
Refer to the exhibit. A network administrator is configuring the security level for the ASA. Which statement describes the default result if the administrator tries to assign the Inside interface with the same security level as the DMZ interface?
- The ASA console will display an error message.
- The ASA will not allow traffic in either direction between the Inside interface and the DMZ.
- The ASA allows inbound traffic initiated on the Internet to the DMZ, but not to the Inside interface.
- The ASA allows traffic from the Inside to the DMZ, but blocks traffic initiated on the DMZ to the Inside interface.
Answers Explanation & Hints:
Multiple interfaces in an ASA can be assigned the same security level. To allow connectivity between interfaces with the same security levels, the same-security-traffic permit inter-interface global configuration command is required. Traffic from the higher level network to the lower level network is allowed by default. However, traffic initiated on the lower level network is denied access to the higher level network by default.