Blog

What are the three signature levels provided by Snort IPS on the 4000 Series ISR? (Choose three.) inspect balanced security reject connectivity drop

Match the IPS alarm type to the description.

What characteristic of the Snort term-based subscriptions is true for both the community and the subscriber rule sets? Both have a 30-day delayed access to updated signatures. Both use Cisco…

What network testing tool can be used to identify network layer protocols running on a host? SIEM Tripwire L0phtcrack Nmap

What is the function of the pass action on a Cisco IOS Zone-Based Policy Firewall? inspecting traffic between zones for traffic control forwarding traffic from one zone to another logging…

Refer to the exhibit. Based on the security levels of the interfaces on ASA1, what traffic will be allowed on the interfaces? Traffic from the Internet and LAN can access…

What are the three core components of the Cisco Secure Data Center solution? (Choose three.) threat defense servers visibility mesh network infrastructure secure segmentation Answers Explanation & Hints: Secure segmentation…

What is the main factor that ensures the security of encryption of modern algorithms? secrecy of the keys the use of 3DES over AES secrecy of the algorithm complexity of…

How do modern cryptographers defend against brute-force attacks? Use an algorithm that requires the attacker to have both ciphertext and plaintext to conduct a successful attack. Use a keyspace large…

What are two security measures used to protect endpoints in the borderless network? (Choose two.) denylisting Snort IPS DLP DMZ rootkit Answers Explanation & Hints: Measure Purpose antimalware software Protect…

Which two protocols generate connection information within a state table and are supported for stateful filtering? (Choose two.) UDP DHCP TCP HTTP ICMP

How does a firewall handle traffic when it is originating from the private network and traveling to the DMZ network? The traffic is usually permitted with little or no restrictions.…

What are two methods to maintain certificate revocation status? (Choose two.) DNS LDAP OCSP subordinate CA CRL Answers Explanation & Hints: A digital certificate might need to be revoked if…

Which three services are provided through digital signatures? (Choose three.) authenticity integrity encryption nonrepudiation compression accounting Answers Explanation & Hints: Digital signatures use a mathematical technique to provide three basic…

A recently created ACL is not working as expected. The admin determined that the ACL had been applied inbound on the interface and that was the incorrect direction. How should…

Which three functions are provided by the syslog logging service? (Choose three.) gathering logging information setting the size of the logging buffer distinguishing between information to be captured and information…

What are two reasons to enable OSPF routing protocol authentication on a network? (Choose two.)​ to ensure more efficient routing to ensure faster network convergence to prevent data traffic from…

Refer to the exhibit. Which conclusion can be made from the show crypto map command output that is shown on R1? The crypto map has not yet been applied to…

What are two drawbacks in assigning user privilege levels on a Cisco router? (Choose two.) Commands from a lower level are always executable at a higher level. Assigning a command…

Refer to the exhibit. A network administrator has configured NAT on an ASA device. What type of NAT is used? bidirectional NAT inside NAT outside NAT static NAT Answers Explanation…