A network administrator is configuring a rule in an access control policy to block certain URLs and selects the `Chat and Instant Messaging` category. Which reputation score should be selected to accomplish this goal?
The answer is D. 1.
A reputation score of 1 is the lowest possible score, and it indicates that the URL is considered to be very risky. This means that the network administrator should block all URLs with a reputation score of 1, in order to prevent users from accessing malicious websites.
The other possible answers are incorrect. A reputation score of 5 is considered to be "neutral", while a reputation score of 10 is considered to be "good". This means that URLs with these scores should not be blocked. A reputation score of 3 is considered to be "suspect", and it may be necessary to block some URLs with this score, depending on the organization's specific policies and risk tolerance.
Here is a table that shows the different reputation scores and their corresponding meanings:
Reputation Score | Meaning
------- | --------
1 | Very risky
3 | Suspect
5 | Neutral
10 | Good
We are talking about ACP (Access Control Policy) which is only to be found on Firepower. When you have an URL filtering license on your FMC you can enable URL filtering based on reputation which provides a score of 1 (Untrusted), 2 (Questionable) 3 (Neutral or Unknown) 4 (Favorable) and 5 (Trusted).
About URL Filtering with Category and Reputation
With a URL Filtering license, you can control access to websites based on the category and reputation of requested URLs:
Category—A general classification for the URL. For example, ebay.com belongs to the Auctions category, and monster.com belongs to the Job Search category.
A URL can belong to more than one category.
Reputation—How likely the URL is to be used for purposes that might be against your organization’s security policy. Reputations range from Unknown risk (level 0) or Untrusted (level 1) to Trusted (level 5).
In the URL Filtering Overview section
https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/url_filtering.html#Cisco_Reference.dita_72248e9a-706c-4e53-9bf1-de72f87b1beb
The appropriate reputation score to select in an access control policy to block URLs in the "Chat and Instant Messaging" category would depend on the organization's specific policies and risk tolerance. However, generally speaking, a higher reputation score would be more restrictive and block more URLs. Malicious (-10.0 to -6.0), Suspect (-5.9 to 5.9), Clean (6.0 to 10.0)
In new FMC 7.2 When creating Access Policy Rule, you have a range from 1-5 in Reputation for Chat and Instant Messaging.
3 - Will block Neutral Reputation to Untruset
1 - Will block Untrusted Reputation
However there is more levels.
In old fmc it seems to be only 1-3 and 3 will block from Untrusted to Neutral.
https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/url_filtering.html#Cisco_Reference.dita_72248e9a-706c-4e53-9bf1-de72f87b1beb
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Kuzi
Highly Voted 1 year, 11 months agoHappy_Shepherd26
Most Recent 6 months, 2 weeks agoiratus_umbra
2 years, 1 month agojienBoq
2 years, 1 month agostalkr3
2 years agoseb008
1 year, 10 months ago[Removed]
1 year, 3 months agozsrite
2 years, 1 month agoToni_Su91
2 years, 2 months agojienBoq
2 years, 1 month agostalkr3
2 years agoTuxzinator
2 years, 2 months agoZatingke
2 years, 3 months ago