300-207試験無料問題集（245題）「Cisco Implementing Cisco Threat Control Solutions (SITCS) 認定」

出題：1

Which feature of the Cisco Hybrid Email Security services enables you to create multiple email senders on a single
Cisco ESA?

正解：B 解答を投票する

出題：2

Which Cisco Security IntelliShield Alert Manager Service component mitigates new botnet, phishing, and web-based
threats?

A. the IntelliShield Alert Manager web portal

B. the IntelliShield Threat Outbreak Alert

C. the IntelliShield Alert Manager back-end intelligence engine

D. the IntelliShield Alert Manager historical database

E. IntelliShield Alert Manager vulnerability alerts

正解：B 解答を投票する

出題：3

Which feature does Acceptable Use Controls use to implement Cisco AVC?

A. Cisco ESA

B. Cisco Web Usage Controls

C. Cisco WSA

D. ISA

正解：B 解答を投票する

出題：4

What are three arguments that can be used with the show content-scan command in Cisco IOS software? (Choose
three)

正解：A,C,F 解答を投票する

出題：5

Refer to the exhibit.

Which four rows exhibit the correct WCCP service to protocol assignments? (Choose four.)

正解：A,B,D,E 解答を投票する

出題：6

Which type of server is required to communicate with a third-party DLP solution?

A. an ICAP-capable proxy server

B. an HTTP server

C. a PKI certificate server

D. an HTTPS server

正解：A 解答を投票する

出題：7

What can you use to access the Cisco IPS secure command and control channel to make configuration changes?

A. the management interface

B. Telnet

C. an HTTP server

D. SDEE

正解：A 解答を投票する

出題：8

Which step is required when you configure URL filtering to Cisco Cloud Web Security?

A. Configure URL filtering criteria in the Cisco ASA FirePOWER access rules.

B. Implement Next Generation IPS instrusion rules.

C. install the ASA FirePOWER module on the Cisco AS

正解：C 解答を投票する

出題：9

During initial configuration, the Cisco ASA can be configured to drop all traffic if the ASA CX SSP fails by using which
command in a policy-map?

A. cxsc fail

B. cxssp fail-close

C. cxsc fail-open

D. cxsc fail-close

正解：D 解答を投票する

出題：10

Which two conditions must you configure in an event action rule to match all IPv4 addresses in the victim range and
filter on the complete subsignature range? (Choose two.)

A. Set the subsignature ID-range to the default.

B. Set the deny action percentage to 0.

C. Disable event action override.

D. Leave the victim address range unspecified.

E. Set the deny action percentage to 100.

正解：A,D 解答を投票する

出題：11

Which four statements are correct regarding management access to a Cisco Intrusion Prevention System? (Choose
four.)

A. HTTPS is enabled by default

B. HTTPS is disabled by default

C. SSH is disabled by default

D. The Telnet protocol is disabled by default

E. HTTP is disabled by default

F. HTTP is enabled by default

G. The Telnet protocol is enabled by default

H. SSH is enabled by default

正解：A,D,E,H 解答を投票する

出題：12

Refer to the Following. Which option describe the result of this configuration on a Cisco ASA firewall?
asafwl (config) #http server enable
asafw1(config)#http 10.10.10.1 255.255.255.255 inside

A. The management IP address of the firewall is 10.10.10.1

B. The firewall allows ASDM access from a client on 10.10.10.1

C. The inside interface IP address of the firewall is 10.10.10.1

正解：B 解答を投票する

出題：13

Which action cloud reduce the security of the management interface of the Cisco ESA appliance?

A. configure a web UI session timeout of 30 minutes for connected users.

B. create a network access list to allow all connections to the management interface

C. Display a login banner indicating that all appliance use is logged and reviewed

正解：B 解答を投票する

出題：14

Which Cisco IOS command uses the default class map to limit SNMP inspection to traffic from
10.1.1.0 to 192.168.1.0?

A. hostname(config)# access-list inspect extended permit ip 10.1.1.0 255.255.255.0 192.168.1.0
255.255.255.0
hostname(config-cmap)# match access-list inspect

B. hostname(config)# access-list inspect extended permit ip 10.1.1.0.0.0.0.255
192.168.1.0.0.0.0.255
hostname(config)# class-map inspection_default
hostname(config-cmap)# match access-list inspect

C. hostname(config)# access-list inspect extended permit ip 10.1.1.0.0.0.255
192.168.1.0.0.0.255
hostname(config)# class-map inspection_default

D. hostname(config)# access-list inspect extended permit ip 10.1.1.0 255.255.255.0 192.168.1.0
255.255.255.0
hostname(config)# class-map inspection_default
hostname(config-cmap)# match access-list inspect

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

300-207試験無料問題集「Cisco Implementing Cisco Threat Control Solutions (SITCS) 認定」