Which two statements are correct about unified security policies? (Choose two.)
Unified security policies (USPs) provide integrated application-aware controls using AppID and extend traditional zone-based policy enforcement.
Option A: Correct. If traffic matches a unified security policy, it is not re-evaluated by traditional security policies. Unified policies take precedence for matched flows.
Option B: Incorrect. Traditional policies rely on Layer 3/4 attributes. Unified policies go deeper by leveraging AppID, which inspects traffic up to Layer 7.
Option C: Incorrect. Traffic matching a traditional policy is unaffected by unified policy unless unified mode is explicitly configured for those flows.
Option D: Correct. Dynamic application recognition in unified policies uses Layer 7 (application-layer) inspection via AppID.
Correct Statements: A and D
Currently there are no comments in this discussion, be the first to comment!