300-207無料問題集「Cisco Implementing Cisco Threat Control Solutions (SITCS)」

質問 1

Which two Cisco IPS events will generate an IP log? (Choose two.)

（A）A statically configured IP or IP network criterion was matched.

（B）A signature had an event action that was configured with log packets.

（C）An attack produced a response action.

（D）A dynamically configured IP address or IP network was matched.

正解：A、B 解答を投票する

質問 2

Which IPS engine detects ARP spoofing?

（A）ARP Inspection Engine

（B）Atomic ARP Engine

（C）AIC Engine

（D）Service Generic Engine

正解：B 解答を投票する

質問 3

Which three options are characteristics of router-based IPS? (Choose three.)

（A）It supports virtual sensors.

（B）It is used for small networks.

（C）It uses configurable anomaly detection.

（D）It supports multiple VRFs.

（E）It is used for large networks.

（F）Signature definition files have been deprecated.

正解：B、D、F 解答を投票する

質問 4

Which technique is deployed to harden network devices?

（A）infrastructure ACLs

（B）VLAN ACLs

（C）port-by-port router ACLs

（D）transmit ACLs

正解：A 解答を投票する

質問 5

What command alters the SSL ciphers used by the Cisco Email Security Appliance for TLS sessions and HTTPS access?

（A）sslconfig

（B）tlsconifg

（C）sslciphers

（D）certconfig

正解：A 解答を投票する

質問 6

Which Cisco ESA component receives connections from external mail servers?

（A）SMTP incoming relay agent

（B）MTA

（C）recipient access table

（D）public listener

（E）private listener

正解：D 解答を投票する

質問 7

You ran the ssh generate-key command on the Cisco IPS and now administrators are unable to connect. Which action
can be taken to correct the problem?

（A）Run the ssh host-key command.

（B）Run the ssh authorized-keys command.

（C）Add the administrator IP addresses to the trusted TLS host list on the IPS.

（D）Replace the old key with a new key on the client.

正解：D 解答を投票する

質問 8

Which Cisco technology is a customizable web-based alerting service designed to report threats and vulnerabilities?

（A）Cisco Software Application Support Service

（B）Cisco Security Intelligence Operations

（C）Cisco Security IntelliShield Alert Manager Service

（D）Cisco Security Optimization Service

正解：C 解答を投票する

質問 9

Which IPS engine detects ARP spoofing?

（A）ARP Inspection Engine

（B）Atomic ARP Engine

（C）AIC Engine

（D）Service Generic Engine

正解：B 解答を投票する

質問 10

Which Cisco IOS command uses the default class map to limit SNMP inspection to traffic from
10.1.1.0 to 192.168.1.0?

（A）hostname(config)# access-list inspect extended permit ip 10.1.1.0 255.255.255.0 192.168.1.0
255.255.255.0
hostname(config)# class-map inspection_default
hostname(config-cmap)# match access-list inspect

（B）hostname(config)# access-list inspect extended permit ip 10.1.1.0.0.0.255
192.168.1.0.0.0.255
hostname(config)# class-map inspection_default

（C）hostname(config)# access-list inspect extended permit ip 10.1.1.0.0.0.0.255
192.168.1.0.0.0.0.255
hostname(config)# class-map inspection_default
hostname(config-cmap)# match access-list inspect

（D）hostname(config)# access-list inspect extended permit ip 10.1.1.0 255.255.255.0 192.168.1.0
255.255.255.0
hostname(config-cmap)# match access-list inspect

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

An IPS is configured to fail-closed and you observe that all packets are dropped. What is a possible reason for this
behavior?

（A）The attack drop file is misconfigured.

（B）Mainapp is unresponsive.

（C）The IPS span session failed.

（D）The global correlation update failed.

正解：B 解答を投票する

質問 12

How does a user access a Cisco Web Security Appliance for initial setup?

（A）Open the web browser at 192.168.42.42:8443 for the setup wizard over https.

（B）Connect the console cable and use the terminal at 9600 baud to run the setup wizard.

（C）Connect the console cable and use the terminal at 115200 baud to run the setup wizard.

（D）Open the web browser at 192.168.42.42:443 for the setup wizard over https.

正解：A 解答を投票する

質問 13

Which Cisco Cloud Web Security Connector feature allows access by all of an organization's users while applying
Active Directory group policies?

（A）a group authentication key

（B）a PAC file

（C）a company authentication key

（D）proxy forwarding

（E）a user authentication key

正解：C 解答を投票する

質問 14

Which Cisco Web Security Appliance design requires minimal change to endpoint devices?

（A）Explicit Forward Mode

（B）Inline Mode

（C）Promiscuous Mode

（D）Transparent Mode

正解：D 解答を投票する

質問 15

Which three protocols are required when considering firewall rules for email services using a Cisco Email Security
Appliance? (Choose three.)

（A）DNS

（B）HTTP

（C）FTP

（D）SNMP

（E）SMTP

正解：A、B、E 解答を投票する

質問 16

What step is required to enable HTTPS Proxy on the Cisco Web Security Appliance?

（A）Web Security Manager HTTPS Proxy click Enable

（B）System Administration HTTPS Proxy click Enable

（C）HTTPS Proxy is enabled by default

（D）Security Services HTTPS Proxy click Enable

正解：D 解答を投票する

質問 17

DRAG DROP
Drag and drop the Cisco Security IntelliShield Alert Manager Service components on the left onto the corresponding
description on the right.

正解：

質問 18

Which two options are known limitations in deploying an IPS sensor in promiscuous mode versus inline mode?
(Choose two).

（A）A sensor failure affects network functionality.

（B）It is less effective in stopping email viruses and automated attackers such as worms.

（C）Sensors in this deployment cannot stop the trigger packet and are not guaranteed to stop a connection.

（D）It requires less of an operational response because the attacks are blocked automatically without operational team
support.

（E）It does not see the same traffic.

正解：B、C 解答を投票する

質問 19

For which domains will the Cisco Email Security Appliance allow up to 5000 recipients per message?

（A）violet.public

（B）orange.public

（C）red.public

（D）violet.public, blue.public and green.public

（E）red.public and orange.public

（F）violet.public and blue.public

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

300-207 無料問題集「Cisco Implementing Cisco Threat Control Solutions (SITCS)」

弊社を連絡する

関連リンク

トップ試験