Cisco IOS Firewall: HTTP Inspection Engine | Exam 400-251 Answer

Protecting Against Threats: Cisco IOS Firewall HTTP Inspection Engine

Prev Question Next Question

Question

In Cisco IOS firewall the HTTP inspection engine has the ability to protect against which of the following?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

B.

The Cisco IOS firewall HTTP inspection engine is a feature that allows the firewall to inspect and regulate HTTP traffic passing through it. This feature can protect against various types of security threats that use HTTP as a vector.

A. Tunneling over port 443: The HTTP inspection engine can protect against tunneling over port 443, which is commonly used for HTTPS traffic. Tunneling is a technique that allows an attacker to hide malicious traffic within legitimate traffic, making it difficult to detect. By inspecting the traffic passing through port 443, the firewall can identify and block any attempts at tunneling.

B. Tunneling over port 80: The HTTP inspection engine can also protect against tunneling over port 80, which is commonly used for regular HTTP traffic. Again, by inspecting the traffic passing through port 80, the firewall can identify and block any attempts at tunneling.

C. HTTP file transfers authorized by the configured security policy: The HTTP inspection engine can also protect against unauthorized file transfers over HTTP. This is accomplished by configuring a security policy that specifies which types of files are allowed to be transferred and which are not. The inspection engine will then monitor HTTP traffic for any attempts to transfer unauthorized files and block them if necessary.

D. Authorized request methods: The HTTP inspection engine can also protect against unauthorized HTTP request methods. This is accomplished by configuring a security policy that specifies which HTTP methods are allowed and which are not. The inspection engine will then monitor HTTP traffic for any attempts to use unauthorized methods and block them if necessary.

In summary, the Cisco IOS firewall HTTP inspection engine can protect against tunneling over both port 80 and port 443, unauthorized file transfers, and unauthorized HTTP request methods. This feature is an important component of an overall security strategy, as it helps to ensure that HTTP traffic passing through the firewall is legitimate and does not pose a threat to the network.