Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) — Question 399
Which of the following are features typically only found in a Next Generation (NextGen) firewall? (Choose two.)
Answer options
- A. Network Address Translation (NAT)
- B. Secure remote access VPN (RA VPN)
- C. Deep packet inspection
- D. reputation based malware detection
- E. IPSec site-to-site VPN
Correct answer: C, D
Explanation
Deep packet inspection and reputation based malware detection are advanced features found in NextGen firewalls, enabling them to analyze traffic more thoroughly and identify threats based on reputation. In contrast, Network Address Translation (NAT) and VPN options are more traditional features that are not specific to NextGen firewalls, while secure remote access VPNs and IPSec site-to-site VPNs can be found in both traditional and NextGen firewalls.