Exam (elaborations)
RHCSA Study Questions & Answers 100% Solved
- Course
- Institution
RHCSA Study Questions & Answers 100% Solved
[Show more]
Content preview
RHCSA Study Questions & Answers 100%Solved
Which of the following is not a standard firewalld zone?
a. Untrusted
b. Trusted
c. External
d. Internal Correct Ans-A. Explanation: On a default configuration, there is no untrusted zone
in firewalld
Which of the following is the name of firewalling as implemented in the Linux kernel?
a. iptables
b. firewalld
c. netfilter
d. firewall-mod Correct Ans-C. Explanation: Netfilter is the name of the firewall
implementation in the Linux kernel. Different toolsets exist to manage netfilter firewalls.
Iptables has been the default management interface for a long time, and in Red Hat Enterprise
Linux 7, firewalld has been added as an alternative solution to manage firewalls
Which of the following is not an advantage of firewalld?
a. Rules can be modified through dbus.
b. It has an easy to use command-line interface.
c. It has an easy to use graphical interface.
,d. It can be used as an enhancement to iptables. Correct Ans-D. Explanation: Firewalld and
iptables are mutually exclusive.
Which command enables you to list all available firewalld services?
a. firewall-cmd --list-services
b. firewall-cmd --list-all
c. firewall-cmd --get-services
d. firewall-cmd --show-services Correct Ans-C. Explanation: The firewall-cmd --get-services
command shows all services that are available in firewalld
What is the name of the GUI tool that enables you to easily manage firewalld configurations?
a. system-config-firewall
b. firewall-gtk
c. firewall-config
d. firewall-gui Correct Ans-. C. Explanation: The name of the GUI tool that can be used to
manage firewall configurations is firewall-config.
Which of the following shows correct syntax for adding a port persistently to the current
firewalld configuration?
a. firewall-cmd --addport=2022/tcp --permanent
b. firewall-cmd --add-port=2022/tcp --permanent
c. firewall-cmd --addport=2022/tcp --persistent
,d. firewall-cmd --add port=2022/tcp --persistent Correct Ans-A. Explanation: Answer A shows
the correct syntax.
Which zones should you use for an interface that is on a network where you need minimal
firewall protection because every other computer on that same network is trusted?
a. Trusted
b. Home
c. Work
d. Private Correct Ans-A. Explanation: The trusted zone is provided for interfaces that need
minimal protection.
Which of the following statements is true about the --permanent commandline option when
used with firewall-cmd?
a. Configuration that is added using --permanent is activated immediately and will be activated
automatically after (re)starting firewalld.
b. Configuration that is added using --permanent is activated immediately.
c. Configuration that is added using --permanent is not activated immediately and can be
activated only by using systemctl restart firewalld .
d. To activate configuration that has been added with the --permanent option, you need to
reload the firewall configuration by using firewall-cmd -reload Correct Ans-D. Explanation:
Configuration that is added with the --permanent option is not activated immediately and needs
either a restart of the firewalld service or the command firewall-cmd --reload
, Which command enables you to get an overview of all the current firewall configurations for all
zones?
a. firewall-cmd --show-current
b. firewall-cmd --list-all
c. firewall-cmd --list-current
d. firewall-cmd --show-all Correct Ans-B. Explanation: The --list-all command without further
options shows all configurations for all zones
Which of the following statements is not true about the firewall-config GUI tool?
a. All configuration that is created in firewall-config is automatically
activated and stored permanently.
b. The firewall-config tool provides an easy interface to add ports to
zones.
c. In its default screen, firewall-config shows all zones.
d. firewall-config connects to the firewalld service. If this service is not running, you may have
problems working with firewall-config Correct Ans-A. Explanation: When working with
firewall-config, you need to choose between the run-time and the permanent mode
In the linux kernel how is firewalling implemented? Correct Ans-It is implemented through
the netfilter subsystem
Can iptables be used with firewalld? Correct Ans-No they are mutually exclusive.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller TheeGrades. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $15.99. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
79373 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now