WATCHGUARD NETWORK SECURITY
ESSENTIALS QUESTIONS AND
ANSWERS
Answer : D - ANSWER-When your device is in a default state, to which interface do you
connect your management computer so you can use the Quick Setup Wizard or Web
Setup Wizard to configure the device? (Select one.)
A. Interface 0
B. Console interface
C. Any interface
D. Interface 1
Answer : AD - ANSWER-In the default Firebox configuration file, which policies control
management access to the device? (Select two.)
A. WatchGuard
B. FTP
C. Ping
D. WatchGuard Web UI
E. Outgoing
Answer : B - ANSWER-To use the Web Setup Wizard or Quick Setup Wizard to
configure your Firebox or XTM device, your computer must have an IP address on
which subnet? (Select one.)
A. 10.0.10.0/24
B. 10.0.1.0/24
C. 172.16.10.0/24
D. 192.168.1.0/24
Answer : A - ANSWER-What is the best method to downgrade the version of Fireware
OS on your Firebox without losing all device configuration settings? (Select one.)
A. Restore a saved backup image that was created for the device before the last
Fireware OS upgrade.
B. Use the Upgrade OS feature in Fireware Web UI to install the sysa_dl file for an
order version of Fireware OS.
C. Change the OS compatibility setting in Policy Manager to downgrade the device.
Then use Policy Manager to save the configuration to the device.
D. Use the downgrade feature on Policy Manager to select a previous of Fireware OS.
Answer : BC - ANSWER-You configured four Device Administrator user accounts for
your Firebox. To see a report of witch Device Management users have made changes
to the device configuration, what must you do? (Select two.)
, A. Start Firebox System Manager for the device and review the activity for the
Management Users on the Authentication List tab.
B. Connect to Report Manager or Dimension and view the Audit Trail report for your
device.
C. Open WatchGuard Server Center and review the configuration history for managed
devices.
D. Configure your device to send audit trail log messages to your WatchGuard Log
Server or Dimension Log Server
Answer : BCEF - ANSWER-Which items are included in a Firebox backup image?
(Select four.)
A. Support snapshot
B. Fireware OS
C. Configuration file
D. Log file
E. Feature keys
F. Certificates
Answer : C - ANSWER-Only 50 clients on the trusted network of your Firebox can
connect to the Internet at the same time. What could cause this? (Select one.)
A. The Live Security feature key is expired.
B. The device feature key allows a maximum of 50 client connections.
C. The DHCP address pool on the trusted interface has only 50 IP addresses.
D. The Outgoing policy allows a maximum of 50 client connections.
Answer : B - ANSWER-The policies in a default Firebox configuration do not allow
outgoing traffic from optional interfaces.
A. True
B. False
Answer : D - ANSWER-When you examine the log messages In Traffic Monitor, you
see that some network packets are denied with an unhandled packet log message.
What does this log massage mean? (Select one.)
A. The packet is denied because the site is on the Blocked Sites List.
B. The packet is denied because it matched a policy.
C. The packet is denied because it matched an IPS signature.
D. The packet is denied because it does not match any firewall policies
Answer : ACD - ANSWER-Which of these actions adds a host to the temporary or
permanent blocked sites list? (Select three.)
A. Enable the AUTO-block sites that attempt to connect option in a deny policy.
B. Add the site to the Blocked Sites Exceptions list.
C. On the Firebox System Manager >Blocked Sites tab, select Add.
D. In Policy Manager, select Setup> Default Threat Protection > Blocked Sites and click
Add.
ESSENTIALS QUESTIONS AND
ANSWERS
Answer : D - ANSWER-When your device is in a default state, to which interface do you
connect your management computer so you can use the Quick Setup Wizard or Web
Setup Wizard to configure the device? (Select one.)
A. Interface 0
B. Console interface
C. Any interface
D. Interface 1
Answer : AD - ANSWER-In the default Firebox configuration file, which policies control
management access to the device? (Select two.)
A. WatchGuard
B. FTP
C. Ping
D. WatchGuard Web UI
E. Outgoing
Answer : B - ANSWER-To use the Web Setup Wizard or Quick Setup Wizard to
configure your Firebox or XTM device, your computer must have an IP address on
which subnet? (Select one.)
A. 10.0.10.0/24
B. 10.0.1.0/24
C. 172.16.10.0/24
D. 192.168.1.0/24
Answer : A - ANSWER-What is the best method to downgrade the version of Fireware
OS on your Firebox without losing all device configuration settings? (Select one.)
A. Restore a saved backup image that was created for the device before the last
Fireware OS upgrade.
B. Use the Upgrade OS feature in Fireware Web UI to install the sysa_dl file for an
order version of Fireware OS.
C. Change the OS compatibility setting in Policy Manager to downgrade the device.
Then use Policy Manager to save the configuration to the device.
D. Use the downgrade feature on Policy Manager to select a previous of Fireware OS.
Answer : BC - ANSWER-You configured four Device Administrator user accounts for
your Firebox. To see a report of witch Device Management users have made changes
to the device configuration, what must you do? (Select two.)
, A. Start Firebox System Manager for the device and review the activity for the
Management Users on the Authentication List tab.
B. Connect to Report Manager or Dimension and view the Audit Trail report for your
device.
C. Open WatchGuard Server Center and review the configuration history for managed
devices.
D. Configure your device to send audit trail log messages to your WatchGuard Log
Server or Dimension Log Server
Answer : BCEF - ANSWER-Which items are included in a Firebox backup image?
(Select four.)
A. Support snapshot
B. Fireware OS
C. Configuration file
D. Log file
E. Feature keys
F. Certificates
Answer : C - ANSWER-Only 50 clients on the trusted network of your Firebox can
connect to the Internet at the same time. What could cause this? (Select one.)
A. The Live Security feature key is expired.
B. The device feature key allows a maximum of 50 client connections.
C. The DHCP address pool on the trusted interface has only 50 IP addresses.
D. The Outgoing policy allows a maximum of 50 client connections.
Answer : B - ANSWER-The policies in a default Firebox configuration do not allow
outgoing traffic from optional interfaces.
A. True
B. False
Answer : D - ANSWER-When you examine the log messages In Traffic Monitor, you
see that some network packets are denied with an unhandled packet log message.
What does this log massage mean? (Select one.)
A. The packet is denied because the site is on the Blocked Sites List.
B. The packet is denied because it matched a policy.
C. The packet is denied because it matched an IPS signature.
D. The packet is denied because it does not match any firewall policies
Answer : ACD - ANSWER-Which of these actions adds a host to the temporary or
permanent blocked sites list? (Select three.)
A. Enable the AUTO-block sites that attempt to connect option in a deny policy.
B. Add the site to the Blocked Sites Exceptions list.
C. On the Firebox System Manager >Blocked Sites tab, select Add.
D. In Policy Manager, select Setup> Default Threat Protection > Blocked Sites and click
Add.
