When an encrypted packet is decrypted, where does this happen?
A. Security policy
B. Inbound chain
C. Outbound chain
D. Decryption is not supported
|
Download Printable PDF. VALID exam to help you PASS. |
 |
When an encrypted packet is decrypted, where does this happen?
A. Security policy
B. Inbound chain
C. Outbound chain
D. Decryption is not supported
|
Download Printable PDF. VALID exam to help you PASS. |
|
Correct A
when the encrypted Tunnel Test packet arrives at the Gateway, the Gateway decrypts the packet (strips the outer IP layer of the packet and maintains the inner IP layer, which contains the user’s private IP address).
When Gateway attempts to reply to the Tunnel Test packet, it detects that the Source IP address of the packet is on the Gateway’s inner/local network, and therefore, the packet should not have been decrypted in the first place, since there is no matching rule in the policy that would encrypt it. This causes the Gateway to drop the packet with the above-mentioned error
B
https://community.checkpoint.com/t5/General-Topics/R80-x-Security-Gateway-Architecture-Logical-Packet-Flow/m-p/41747