300-207試験無料問題集（245題）「Cisco Implementing Cisco Threat Control Solutions (SITCS) 認定」

出題：1

Which five system management protocols are supported by the Cisco Intrusion Prevention System? (Choose five.)

A. SNMPv1

B. SMTP

C. SNMPv3

D. Syslog

E. SNMPv2c

F. SNMPv2

G. SDEE

正解：A,B,E,F,G 解答を投票する

出題：2

Which command establishes a virtual console session to a CX module within a Cisco Adaptive Security Appliance?

A. session 1 ip address

B. session ips console

C. session 1

D. session 2 ip address

E. session cxsc console

正解：E 解答を投票する

出題：3

A new Cisco IPS device has been placed on the network without prior analysis. Which CLI command shows the most
fired signature?

A. Show statistics virtual-sensor

B. Show alert

C. Show version

D. Show event alert

正解：A 解答を投票する

出題：4

The Cisco Email Security Appliance will reject messages from which domains?

A. violet.public and blue.public

B. violet.public

C. None of the listed domains

D. red.public, orange.public and yellow.public

E. red.public and orange.public

F. orange.public

G. red.public

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which command applies WCCP redirection on the inside interface of a Cisco ASA 5500-x firewall?

A. wccp interface inside redirect out

B. wccp interface inside 90 redirect in

C. wccp web-cache

D. web-cache interface inside 90 redirect in

正解：B 解答を投票する

出題：6

Refer to the exhibit.

The system administrator of mydomain.com was informed that one of the users in his environment received spam
from an Internet sender. Message tracking shows that the emails for this user were not scanned by antispam. Why did
the Cisco Email Security gateway fail to do a spam scan on emails for [email protected]?

A. The user [email protected] matched an inbound rule with antispam disabled.

B. The user [email protected] matched an inbound rule with antispam disabled.

C. The remote MTA activated the SUSPECTLIST sender group.

D. The Cisco Email Security gateway created duplicates of the message.

正解：A 解答を投票する

出題：7

Which two conditions must you configure in an event action override to implement a risk rating of 70 or higher and
terminate the connection on the IPS? (Choose two.)

A. Set the risk rating range to 0 to 100.

B. Configure the event action override to send a TCP reset.

C. Configure the event action override to send a block-host request.

D. Configure the event action override to send a block-connection request.

E. Set the risk rating range to 70 to 100.

正解：B,E 解答を投票する

出題：8

When you configure the Cisco ESA to perform blacklisting, what are two items you can disable to enhance
performance? (Choose two.)

A. spam scanning

B. antivirus scanning

C. rootkit detection

D. APT detection

正解：A,B 解答を投票する

出題：9

Refer to the exhibit.

When designing the network to redirect web traffic utilizing the Catalyst 6500 to the Cisco Web Security Appliance,
impact on the switch platform needs consideration. Which four rows identify the switch behavior in correlation to the
redirect method? (Choose four.)

A. Row 6

B. Row 4

C. Row 3

D. Row 8

E. Row 2

F. Row 5

G. Row 7

H. Row 1

正解：A,C,E,G 解答を投票する

出題：10

What Event Action in an IPS signature is used to stop an attacker from communicating with a network using an access-
list?

A. Deny Attacker Inline

B. Request Block Connection

C. Request Block Host

D. Deny Connection Inline

E. Deny Packet Inline

正解：C 解答を投票する

出題：11

Which Cisco IPS CLI command shows the most fired signature?

A. show statistics virtual-sensor

B. show event alert

C. show version

D. show alert

正解：A 解答を投票する

出題：12

Which Cisco Web Security Appliance deployment mode requires minimal change to endpoint devices?

A. Explicit Forward Mode

B. Inline Mode

C. Transparent Mode

D. Promiscuous Mode

正解：C 解答を投票する

出題：13

Which two statements about devices within a Cisco ESA cluster are true? (Choose two.)

A. Clustered devices can communicate only with Cluster Communication Service.

B. Clustered systems must consist of devices in the same hardware series.

C. In-the-cloud devices must be in a separate cluster from on-premise devices.

D. Clustered devices can run different versions of AsyncOS.

E. Clustered devices can communicate via either SSH or Cluster Communication Service.

正解：B,E 解答を投票する

300-207試験無料問題集「Cisco Implementing Cisco Threat Control Solutions (SITCS) 認定」