[Free] 2017(Jan) Ensurepass Examcollection Cisco 300-207 Real Test 21-30

Ensurepass

Implementing Cisco Threat Control Solutions (SITCS)

 

QUESTION 21

What are three best practices for a Cisco Intrusion Prevention System? (Choose three.)

 

A.

Checking for new signatures every 4 hours

B.

Checking for new signatures on a staggered schedule

C.

Automatically updating signature packs

D.

Manually updating signature packs

E.

Group tuning of signatures

F.

Single tuning of signatures

 

Correct Answer: BCE

 

 

 

QUESTION 22

Who or what calculates the signature fidelity rating?

 

A.

the signature author

B.

Cisco Professional Services

C.

the administrator

D.

the security policy

 

Correct Answer: A

 

 

QUESTION 23

Which three zones are used for anomaly detection? (Choose three.)

 

A.

Internal zone

B.

External zone

C.

Illegal zone

D.

Inside zone

E.

Outside zone

F.

DMZ zone

 

Correct Answer: ABC

 

 

QUESTION 24

Which option describes how the native VLAN is set up on an IPS sensor when VLAN groups are used in an inline deployment of the sensor?

 

A.

The sensor looks at the native VLAN setup on the switch to determine the correct native VLAN to use.

B.

The sensor does not care about VLANs.

C.

A default VLAN variable must be associated with each physical interface on the sensor.


D.

There is no way to set this, so you need to tag all traffic.

E.

ISL links are only supported.

 

Correct Answer: C

 

 

QUESTION 25

When learning accept mode is set to auto, and the action is set to rotate, when is the KB created and used?

 

A.

It is created every 24 hours and used for 24 hours.

B.

It is created every 24 hours, but the current KB is used.

C.

It is created eve
ry 1 hour and used for 24 hours.

D.

A KB is created only in manual mode.

 

Correct Answer: A

 

 

 

 

 

QUESTION 26

What is the CLI command to create a new Message Filter in a Cisco Email Security Appliance?

 

A.

filterconfig

B.

filters new

C.

messagefilters

D.

policyconfig– inbound or outbound– filters

 

Correct Answer: B

 

 

QUESTION 27

A Cisco Email Security Appliance uses which message filter to drop all executable attachments entering and leaving the Cisco Email Security Appliance?

 

A.

drop-exe.if (attachment-filename == “\\.exe$”) OR (attachment-filetype == “exe”) { drop(); }

B.

drop-exe.if (recv-listener == “InboundMail” ) AND ( (attachment-filename == “\\.exe$”) OR (attachment-filetype == “exe”)) { drop(); }

C.

drop-exe! if (attachment-filename == “\\.exe$”) OR (attachment-filetype == “exe”) { drop(); }

D.

drop-exe! if (recv-listener == “InboundMail” ) AND ( (attachment-filename == “\\.exe$”) OR (attachment-filetype == “exe”)) { drop(); }

 

Correct Answer: A

 

 

QUESTION 28

What can Cisco Prime Security Manager (PRSM) be used to achieve?

 

A.

Configure and Monitor Cisco CX Application Visibility and Control, web filtering, access and decryption policies

B.

Configure Cisco ASA connection limits

C.

Configure TCP state bypass in Cisco ASA and IOS

D.

Configure Cisco IPS signature and monitor signature alerts

E.

Cisco Cloud Security on Cisco ASA

 

Correct Answer: A

 

 

QUESTION 29

Which is the default IP address and admin port setting for https in the Cisco Web Security Appliance?

 

A.

http://192.168.42.42:8080

B.

http://192.168.42.42:80

C.

https://192.168.42.42:443

D.

https://192.168.42.42:8443

 

Correct Answer: D

 

 

QUESTION 30

Which port is used for CLI Secure shell access?

 

A.

Port 23

B.

Port 25

C.

Port 22

D.

Port 443

 

Correct Answer: C

 

Free VCE & PDF File for Cisco 300-207 Real Tests

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …

This entry was posted in 300-207 Real Tests (2017) and tagged , , , , , , , , , , , , , . Bookmark the permalink.