Not A or D. Was not sure whether it should be B or C until I read the definition of SWGs in the official guide from CompTIA. "An on-premises SWG is a proxy-based firewall, content filter, and intrusion detection/prevention system that mediates user access to Internet sites and services"

This one asks which one is used for port blocking in WEB SERVERS. SWG is primarily used to protect USERS from accessing or being infected by web threats. I'll go with firewalls to explicitly allow 443.

Both can do the same. However, SWG can be on premise as well as cloud based. "Cloud enviroment" is the clue.

A secure web gateway (SWG) is a security solution that prevents unsecured internet traffiic from entering an organization's internal network

Key factors to consider: Network size and complexity: SWGs often suit larger, more intricate networks with diverse web traffic. Security priorities: If granular web control and advanced threat protection are paramount, an SWG might be more suitable. Budget and resources: SWGs typically involve additional costs and management overhead compared to host-based firewalls. A network with 100 or more web servers would generally be considered larger and more intricate than networks with fewer servers.

Get full questions with correct answers contact at [email protected]

The correct answer is "C." You can allow or deny specific ports using a host-based firewall. For example in Linux, "sudo ufw allow 443" would allow port 443 (https), and you can substitute with "allow" with "deny" for ports you want to deny.

C. Host-based firewall To accomplish the task of disabling all web-server ports except 443, a host-based firewall can be used. A host-based firewall operates at the individual server level, allowing administrators to define rules and restrictions on incoming and outgoing network traffic for specific hosts. In this scenario, the host-based firewall on each of the 100 web servers can be configured to block traffic on all ports except port 443. This ensures that only traffic on port 443 (commonly used for secure HTTPS communication) is allowed, in accordance with the security policy. The other options are not directly related to the task at hand

I did this as a part of my job; it's C. You make a baseline configuration that disables all ports except 443 and spawns all of them at once.

Host-based firewall (or personal firewall)—implemented as a software application running on a single host designed to protect that host only. As well as enforcing packet filtering ACLs, a personal firewall can be used to allow or deny software processes from accessing the network. SWG-A software application or gateway that filters client requests for various types of internet content (web, FTP, IM, and so on).

Secure Web Gateway (SWG) is a security solution that prevents unsecured internet traffic from entering an organization's internal network. Cloud-based proxy that enforces standards on URL filtering. I am going with B https://www.comptia.org/blog/sase-secure-access-service-edge

How can a HOST based firewall be a solution for cloud servers not 1 or 2 but 100. dont see HOST based firewall covering the issue

To accomplish the task of disabling all web-server ports except 443, the most suitable option would be a host-based firewall. A host-based firewall can be configured to allow only specific ports, such as port 443 for secure web traffic, while blocking all other ports. This helps enforce the security policy and restrict access to the web servers. So, the correct answer is C. Host-based firewall. While a Secure Web Gateway (SWG) can provide security features like URL filtering and malware protection, it may not be the best choice for this specific task of disabling web-server ports. SWGs are typically used for monitoring and securing web traffic, rather than controlling access to specific ports on individual servers. In this case, a host-based firewall would be more appropriate for the task at hand. Hope that clarifies things for you all.

Right Answer is B as SWG is deployed in CLOUD Environments where as host based firewall is Deployed on HOSTS

A Secure Web Gateway (SWG) is typically used to protect the network at a perimeter level and focuses on filtering web traffic for security threats, content filtering, and enforcing security policies for outbound web traffic.

SWG can help you force policies that can deny/allow traffic on a huge scale instead of configuring 100 firewalls one by one.

SWG is for (content filtering, malware protection, url redirection, time/resource policing) of the local network users out to the internet. NGFW is for external threats.