Exam CISA Topic 1 Question 1021 Discussion

Actual exam question for ISACA's CISA exam
Question #: 1021
Topic #: 1
Which of the following would be the MOST secure firewall system?

Suggested Answer: B Vote an answer

Section: Protection of Information Assets
Explanation:
A screened-subnet firewall, also used as a demilitarized zone (DMZ), utilizes two packet filtering routers
and a bastion host. This provides the most secure firewall system, since it supports both network- and
application-level security while defining a separate DMZ network. A screened-host firewall utilizes a packet
filtering router and a bastion host. This approach implements basic network layer security (packet filtering)
and application server security (proxy services). A dual- homed firewall system is a more restrictive form of
a screened-host firewall system, configuring one interface for information servers and another for private
network host computers. A stateful-inspection firewall working at the transport layer keeps track of the
destination IP address of each packet that leaves the organization's internal network and allows a reply
from the recorded IP addresses.

by Valentina at Nov 07, 2025, 05:11 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어