This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Question I am not sure about the proper answer for it

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Question I am not sure about the proper answer for it

nedriano
L1 Bithead

‎03-15-2020 01:19 PM - edited ‎03-15-2020 01:30 PM

Hi everyone 

I am studding to take my PCNSA soon followed with PCNSE 

In my study guide I came a cross question for Tap interface

Which two actions can be done with a Tap interface? (Choosetwo.)

  • encrypt traffic
  • decrypt traffic
  • allow or block traffic
  • log traffic A Tap interface monitors traffic that is connected to a network switch's
    MIRROR/SPAN port. This mirrored traffic is forwarded by a switch port to a firewall’s
    Tap interface and is analyzed for App‐ID, User‐ID, Content‐ID, and other traffic, just like
    any other normal data traffic that would pass through the firewall. Before traffic can be
    logged, a security policy must be configured that includes the Tap zone    - So i know Tap interface can log the traffic from Switches and  Also know Tap traffic is not managed so it wouldn't be block or allow any traffic and that will leave the other 2 choices Encrypt and decrypt  traffics , I don't think the tap interface encrypt any traffic bc it analyze the traffic for App-ID, User-ID, Content-ID - That's leave me with just decrypt traffic , I know that possible if I applied decryption role ( but is that going to managed as security roles ) since Tap interface must configured with security role that include the tap zone
  • Is the Correct answer for this question is Decrypt traffic and log traffic 
  • Please help me and share why bc I would like to understand more just get the correct answer 
Nedriano
1 person had this problem.
0 Likes Likes
0 REPLIES 0
  • 2886 Views
  • 0 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks