A security engineer has been asked to close all non-secure connections from the corporate network.

The engineer is attempting to understand why the corporate UTM will not allow users to download email via IMAPS.

The engineer formulates a theory and begins testing by creating the firewall ID 58, and users are able to download emails correctly by using IMAP instead.

The network comprises three VLANs:

The security engineer looks at the UTM firewall rules and finds the following:

Which of the following should the security engineer do to ensure IMAPS functions properly on the corporate user network?

Question

A security engineer has been asked to close all non-secure connections from the corporate network.

The engineer is attempting to understand why the corporate UTM will not allow users to download email via IMAPS.

The engineer formulates a theory and begins testing by creating the firewall ID 58, and users are able to download emails correctly by using IMAP instead.

The network comprises three VLANs:

- VLAN 30 Guest networks 192.168.20.0/25
- VLAN 20 Corporate user network 192.168.0.0/28
- VLAN 110 Corporate server network 192.168.0.16/29

The security engineer looks at the UTM firewall rules and finds the following:

Rute perewalt source | Destination | Ports Action decryption
Yes 38 VEAN 20 [15.22.33.45 | 143 Rllow and log | Enabled
Yes 33 VIAN 30 | Any 0, 443, [Allow and log | Disabled
Yes 22 VEAN 110 | VEAN 20 Any Allow and log | Disabled
No 21 VLAN 20 15.22.33.45 | 990 Allow and log | Disabled
Yes 20 VLAN 20 | VLAN 110 Any Allow and log | Enabled
Yes 19 VEAN 20 | Any 953, 587 [Allow and log | Enabled

Which of the following should the security engineer do to ensure IMAPS functions properly on the corporate user network?

Exam-Answer · Accepted Answer

Make sure the UTM certificate is imported on the corporate computers.

Question 17 of 44 from exam CAS-004: CompTIA CASP+

Question

Answers

Explanations