Check Point Certified Security Administrator (CCSA) R80 — Question 29

Joey is using the computer with IP address 192.168.20.13. He wants to access web page `www.CheckPoint.com`, which is hosted on Web server with IP address
203.0.113.111. How many rules on Check Point Firewall are required for this connection?

Answer options

• A. Two rules ג€" first one for the HTTP traffic and second one for DNS traffic.
• B. Only one rule, because Check Point firewall is a Packet Filtering firewall
• C. Two rules ג€" one for outgoing request and second one for incoming replay.
• D. Only one rule, because Check Point firewall is using Stateful Inspection technology.

Correct answer: D

Explanation

The correct answer is D because Check Point firewalls employing Stateful Inspection technology can manage both incoming and outgoing traffic with a single rule. Option A is incorrect as it suggests the need for separate rules for HTTP and DNS, which is unnecessary with Stateful Inspection. Option B is wrong because it mischaracterizes Check Point firewalls as only packet filtering. Option C is also incorrect since it assumes two separate rules are needed for each direction of traffic.