Question 1mediummultiple choice
Read the full Decryption and SSL Inspection explanation →PCNSE Decryption and SSL Inspection • Complete Question Bank
Complete PCNSE Decryption and SSL Inspection question bank — all 0 questions with answers and detailed explanations.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
One firewall handles traffic; the other stands by
Both firewalls handle traffic simultaneously
Keepalive messages exchanged between HA peers
Original active firewall reclaims role after recovery
Firewall that initially processed a session
Refer to the exhibit. ``` > show ssl-decrypt statistics SSL Decryption Statistics Total sessions decrypted: 45032 Total sessions bypassed: 2341 Bypass reasons: unsupported cipher: 1200 certificate validation failure: 800 handshake failure: 341 Currently active sessions: 105 ```
Refer to the exhibit. ``` Decryption Policy Rule 1: Name: Decrypt_HR_Traffic Source: 10.0.1.0/24 Destination: any Service: any URL Category: Human-Resources Action: decrypt Decryption Policy Rule 2: Name: Decrypt_All Source: any Destination: any Service: any URL Category: any Action: decrypt Decryption Policy Rule 3: Name: No_Decrypt_Finance Source: any Destination: any Service: any URL Category: Finance Action: no-decrypt Ordering: Rule 1, Rule 2, Rule 3 ```
Refer to the exhibit. ``` 2019-03-21 10:15:33.456 ssl_decrypt: session 12345, error: ssl_decrypt_cert_verify_failed, reason: certificate has expired ```
Refer to the exhibit. admin@PA-5000> show decryption statistics Total Decrypted Packets: 12345 Total SSL Handshake Attempts: 1000 Successful Handshakes: 950 Failed Handshakes: 50 - Decryption policy not matched: 20 - Certificate validation failure: 15 - Unsupported cipher: 10 - Other: 5