Within an enterprise firewall configuration, interfaces are mapped to different security zones. Which statement BEST differentiates a trusted zone from an untrusted zone?
A trusted zone is an internal, organization-controlled network with the highest trust level, whereas an untrusted zone is an external network (such as the Internet) with no inherent trust.
Devices in trusted zones use only MAC filtering for access control, whereas devices in untrusted zones use only IP-based filtering.
Trusted zones allow traffic only on ports above 1024 by default, while untrusted zones allow traffic on any port.
Trusted zones consist solely of public-facing servers placed between two firewalls, while untrusted zones sit behind the internal firewall with user workstations.
A trusted zone is the organization-controlled internal network (for example, a corporate LAN or intranet). Because it contains critical assets, it is assigned the highest trust level, but traffic from this zone is generally allowed to initiate connections to lower-trust zones. An untrusted zone is an external network that the organization does not control-most commonly the public Internet. It carries the lowest trust level, and inbound traffic from this zone to higher-trust zones is blocked by default or subjected to tight firewall rules. The other options confuse port numbers, zone placement, or specific filtering methods with the fundamental concept of trust that defines the two zones.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are some examples of a trusted zone?
Open an interactive chat with Bash
How is traffic filtered in an untrusted zone?
Open an interactive chat with Bash
What are the benefits of separating trusted and untrusted zones?