348 Appendix A: Answers to the “Do I Know This Already?” Quizzes and Q&A Questions

7What is the minimum memory requirement for TurboACL to work?

A 8 MB

B 100 Kb

C 2.1 MB

D 4 MB

Answer: C

Chapter 8

"Do I Know This Already?" Quiz

1 What port does syslogd listen on by default?

Answer: Syslogd listens on UDP port 514 by default. This can be changed, however.

2What is the total number of logging facilities available for syslog configuration?

Answer: Eight logging facilities are commonly used for syslog—facilities 16 to 23.

3True or false: If the PIX is set to Warning level, critical, alert, and emergency messages are sent in addition to warning messages.

Answer: True

4What is the command for sending syslog messages to Telnet sessions?

Answer: logging monitor

5What is the logging trap command used for?

Answer: It determines what level of syslog messages are sent to the syslog server.

6What is the command used to enable logging on the failover PIX unit?

Answer: logging standby

7Why would you use the timestamp command parameter?

Answer: The timestamp command parameter specifies timestamp values on the syslog messages sent to the syslog server for later analyses of the logs.

8 What is PFSS?

Answer: The PIX Firewall Syslog Server (PFSS) lets you view PIX Firewall event information from the Windows NT system.

350 Appendix A: Answers to the “Do I Know This Already?” Quizzes and Q&A Questions

7What port does syslogd use by default?

A UDP 512

B TCP 514

C TCP 512

D UDP 514

Answer: D

8True or false: The default facility number on the PIX Firewall is 18.

Answer: False. The default facility number is 20.

9How are syslog messages organized?

AThey are listed numerically by message code.

BThey are listed by importance level.

CThey are listed by date.

DThey are not organized.

Answer: A

10True or false: It is possible to disable specific syslog messages.

Answer: True

11Windows NT 4.0 server can work as a syslog server with what?

A IIS configured for logging

B PIX Firewall Syslog Server application installed

C PIX Device Manager

D UNIX

Answer: B

Chapter 9

"Do I Know This Already?" Quiz

1 What are some things that trigger a failover event?

Answer: Loss of power, cable errors, memory exhaustion, administratively forcing the standby

Chapter 9 351

2What command assigns an IP address to the standby PIX Firewall?

Answer: failover ip address if_name ip_address

3How many PIX Firewall devices can be configured in a failover configuration?

Answer: Two

4What is the benefit of using LAN-based failover?

Answer: The serial cable distance restriction of 6 feet is no longer a factor. Also, an alternative path for stateful information can be communicated in the event of a failure by the failover interface.

5What is some of the information that is updated to the standby unit in a stateful failover configuration?

Answer: TCP connection table, translation table (xlate), negotiated H.323 UDP ports, port allocation table bitmap for PAT

6What command forces replication to the standby unit?

Answer: failover active

7What command configures a LAN-based failover?

Answer: failover lan interface interface_name

8What is the default failover poll in seconds?

Answer: 15 seconds

Q&A

1 Which two of the following cause a failover event?

AA reboot or power interruption on the active PIX Firewall

BLow HTTP traffic on the outside interface

CThe failover active command is issued on the standby PIX Firewall

DBlock memory exhaustion for 15 consecutive seconds or more on the active PIX

Answer: A, D

2What is the command to view failover configuration?

A show failover

B failover

C view failover

D show me failover Answer: A

Chapter 9 353

7What command assigns an IP address to the standby Cisco PIX Firewall?

A secondary ip address ip address

B failover ip address if_name ip_address

C ip address ip address secondary

D ip address ip address failover

Answer: B

8What is the command to configure a LAN-based failover?

Aconf lan failover

Bfailover ip LAN

Cfailover lan interface if_name

Dlan interface failover Answer: C

9 What is an advantage of a LAN-based failover?

AIt quickly fails over to a peer when a power failure on the active unit takes place.

BIt does not have the 6-foot cable distance limitation for failover communication.

CIt is preconfigured on the PIX.

DAll of the above

Answer: B

10What is the default failover poll in seconds?

A 10 seconds

B 15 seconds

C 30 seconds

D 25 seconds

Answer: B