Q1. Within Cisco IPS anomaly detection, what is the default IP range of the external zone? 

A. 0.0.0.0 0.0.0.0 

B. 0.0.0.0 - 255.255.255.255 

C. 0.0.0.0/8 

D. the network of the management interface 

View Answer

Q2. Which Cisco monitoring solution displays information and important statistics for the security devices in a network? 

A. Cisco Prime LAN Management 

B. Cisco ASDM Version 5.2 

C. Cisco Threat Defense Solution 

D. Syslog Server 

E. TACACS+ 

View Answer

Q3. A new Cisco IPS device has been placed on the network without prior analysis. Which CLI command shows the most fired signature? 

A. Show statistics virtual-sensor 

B. Show event alert 

C. Show alert 

D. Show version 

View Answer

Q4. Refer to the exhibit. 

What Cisco ESA CLI command generated the output? 

A. smtproutes 

B. tophosts C. hoststatus 

D. workqueuestatus 

View Answer

Q5. A new Cisco IPS device has been placed on the network without prior analysis. Which CLI command shows the most fired signature? 

A. Show statistics virtual-sensor 

B. Show event alert 

C. Show alert 

D. Show version 

View Answer

Q6. An IPS is configured to fail-closed and you observe that all packets are dropped. What is a possible reason for this behavior? 

A. Mainapp is unresponsive. 

B. The global correlation update failed. 

C. The IPS span session failed. 

D. The attack drop file is misconfigured. 

View Answer

Q7. Which Cisco WSA is intended for deployment in organizations of up to 1500 users? 

A. WSA S370 

B. WSA S670 

C. WSA S370-2RU 

D. WSA S170 

View Answer

Q8. Which IPS signature regular expression CLI command matches a host issuing a domain lookup for www.theblock.com? 

A. regex-string (\x03[Tt][Hh][Ee]\x05[Bb][Ll][Oo][Cc][Kk]) 

B. regex-string (\x0b[theblock.com]) 

C. regex-string (\x03[the]\x05[block]0x3[com]) 

D. regex-string (\x03[T][H][E]\x05[B][L][O][C][K]\x03[.][C][O][M] 

View Answer

Q9. Refer to the exhibit. 

Which four rows exhibit the correct WCCP service to protocol assignments? (Choose four.) 

A. Row 1 

B. Row 2 

C. Row 3 

D. Row 4 

E. Row 5 

F. Row 6 

G. Row 7 

H. Row 8 

View Answer

Q10. Refer to the exhibit. 

When designing the network to redirect web traffic utilizing the Catalyst 6500 to the Cisco Web Security Appliance, impact on the switch platform needs consideration. Which four rows identify the switch behavior in correlation to the redirect method? (Choose four.) 

A. Row 1 

B. Row 2 

C. Row 3 

D. Row 4 

E. Row 5 

F. Row 6 

G. Row 7 

H. Row 8 

View Answer