23 Questions
What should be selected for the flow control when creating a new Quarantine action set?
Quarantine
What are the recommended thresholds for immediate block in Quarantine settings?
1 and 1
What is a potential use of TCP Reset as part of Quarantine Actions?
Filtering SMTP virus filters
Which type of IP addresses will the quarantine apply to?
Source IP addresses
In which profile should the newly created Quarantine action set be applied for testing?
DMZ Profile
What can be optionally configured for quarantine in the TSE settings?
Timeout
When will a host appear in the Quarantined Hosts table with Block + Quarantine configuration and no threshold set?
When it triggers the filter but does not exceed the threshold
Where can the IPS Quarantine Action Set be configured?
/Profiles/Shared Settings/Action Sets/
What is the purpose of Spyware Filters in the context of Quarantine Traffic?
To immediately block malicious flow
In the context of Quarantine Traffic, what is the function of a Threshold?
To define the hit count within a certain period for quarantine actions
What action can be taken when Quarantine occurs after excessive filter hits?
Release hosts from Quarantine
What can be configured to take effect before the threshold is triggered?
Permit and trust actions
What is the purpose of displaying a Quarantine web page in the context of Quarantine Traffic?
To notify a quarantined user of the problem and provide instructions for fixing it
In the context of Quarantine Traffic, what occurs when quarantine actions are triggered at a user-defined threshold?
All traffic from the quarantined IP address is redirected to a quarantine server
What addresses are reachable by hosts in Quarantine in the context of Quarantine Traffic?
Quarantine access addresses
What is the main purpose of TippingPoint Quarantine?
Preventing insider threats and walk-in worms
How does Quarantine work with the source IP address in the packets?
It adds the source IP to the Quarantine list
What is one of the uses of Blocking Quarantine?
Informing the user about problems
In what way does TippingPoint Quarantine prevent network infection?
By extending protection down to the endpoint
What type of information does Quarantine functionality add to the Quarantine list?
Source IP addresses
What can Quarantine be used for in the context of an infected machine?
To prevent the infected machine from spreading worms
How does Quarantine help prevent confidential information leakage?
By isolating offending endpoints with remediation VLANs
What does TippingPoint Quarantine do when it detects a spyware infection?
Informs the user that something has gone wrong
Test your knowledge of TippingPoint Quarantine functionality with this quiz. Explore concepts, considerations, and actions related to Quarantine.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free