Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 300-207
100% Free Download! 100% Pass Guaranteed!
Implementing Cisco Threat Control Solutions
Question No: 121
Which Cisco technology is a customizable web-based alerting service designed to report threats and vulnerabilities?
-
Cisco Security Intelligence Operations
-
Cisco Security IntelliShield Alert Manager Service
-
Cisco Security Optimization Service
-
Cisco Software Application Support Service
Answer: B
Question No: 122
Refer to the exhibit.
What Cisco ESA CLI command generated the output?
-
smtproutes
-
tophosts
-
hoststatus
-
workqueuestatus
Answer: B
Question No: 123
What are two features of the Cisco ASA NGFW? (Choose two.)
-
It can restrict access based on qualitative analysis.
-
It can restrict access based on reputation.
-
It can reactively protect against Internet threats.
-
It can proactively protect against Internet threats.
Answer: B,D
Question No: 124
Which three statements about threat ratings are true? (Choose three.)
-
A threat rating is equivalent to a risk rating that has been lowered by an alert rating.
-
The largest threat rating from all actioned events is added to the risk rating.
-
The smallest threat rating from all actioned events is subtracted from the risk rating.
-
The alert rating for deny-attacker-inline is 45.
-
Unmitigated events do not cause a threat rating modification.
-
The threat rating for deny-attacker-inline is 50.
Answer: A,D,E
Question No: 125
An ASA with an IPS module must be configured to drop traffic matching IPS signatures and
block all traffic if the module fails. Which describes the correct configuration?
-
Inline Mode, Permit Traffic
-
Inline Mode, Close Traffic
-
Promiscuous Mode, Permit Traffic
-
Promiscuous Mode, Close Traffic
Answer: B
Question No: 126
Which port is used for CLI Secure shell access?
-
Port 23
-
Port 25
-
Port 22
-
Port 443
Answer: C
Question No: 127
For which domains will the Cisco Email Security Appliance allow up to 5000 recipients per message?
-
violet.public
-
violet.public and blue.public
-
violet.public, blue.public and green.public
-
red.public
-
orange.public
-
red.public and orange.public
Answer: E Explanation:
Here we see that the TRUSTED policy is being throttled to 5000 recipients per message.
Image 75
By looking at the HAT policy we see that the TRUSTED policy applies to the WHITELIST sender group.
Image 27
By clicking on the WHITELIST sender group we can see that orange.public is listed as the sender.
Capture
Question No: 128 CORRECT TEXT
Answer: Steps are in Explanation below:
Explanation:
First, enable the Gig 0/0 and Gig 0/1 interfaces:
Second, create the pair under the “interface pairs” taB.
Then, apply the HIGHRISK action rule to the newly created interface pair:
Then apply the same for the MEDIUMRISK traffic (deny attacker inline)
Finally. Log the packets for the LOWRICK event:
When done it should look like this:
Question No: 129
What is the access-list command on a Cisco IPS appliance used for?
-
to permanently filter traffic coming to the Cisco IPS appliance via the sensing port
-
to filter for traffic when the Cisco IPS appliance is in the inline mode
-
to restrict management access to the sensor
-
to create a filter that can be applied on the interface that is under attack
Answer: C
Question No: 130
A system administrator wants to know if the email traffic from a remote partner will activate special treatment message filters that are created just for them. Which tool on the Cisco Email Security gateway can you use to debug or emulate the flow that a message takes through the work queue?
-
the message tracker interface
-
centralized or local message tracking
-
the CLI findevent command
-
the trace tool
-
the CLI grep command
Answer: D
100% Ensurepass Free Download!
–300-207 PDF
100% Ensurepass Free Guaranteed!
–300-207 Dumps
EnsurePass | ExamCollection | Testking | |
---|---|---|---|
Lowest Price Guarantee | Yes | No | No |
Up-to-Dated | Yes | No | No |
Real Questions | Yes | No | No |
Explanation | Yes | No | No |
PDF VCE | Yes | No | No |
Free VCE Simulator | Yes | No | No |
Instant Download | Yes | No | No |