350-701無料問題集「Cisco Implementing and Operating Cisco Security Core Technologies」

質問 1

An organization has a Cisco ESA set up with policies and would like to customize the action assigned for violations. The organization wants a copy of the message to be delivered with a message added to flag it as a DLP violation. Which actions must be performed in order to provide this capability?

（A）quarantine and send a DLP violation notification

（B）quarantine and alter the subject header with a DLP violation

（C）deliver and send copies to other recipients

（D）deliver and add disclaimer text

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

What are two benefits of workload security? (Choose two.)

（A）Tracked application security

（B）Workload modeling

（C）Reduced attack surface

（D）Automated patching

（E）Scalable security policies

正解：C、E 解答を投票する

質問 3

Which two solutions help combat social engineering and phishing at the endpoint level? (Choose two.)

（A）Cisco DNA Center

（B）Cisco ISE

（C）Cisco Duo Security

（D）Cisco TrustSec

（E）Cisco Umbrella

正解：C、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which two statements about a Cisco WSA configured in Transparent mode are true? (Choose two)

（A）It requires a proxy for the client web browser.

（B）It requires a PAC file for the client web browser.

（C）Layer 4 switches can automatically redirect traffic destined to port 80.

（D）It can handle explicit HTTP requests.

（E）WCCP v2-enabled devices can automatically redirect traffic destined to port 80.

正解：D、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

For a given policy in Cisco Umbrella, how should a customer block websites based on a custom list?

（A）By adding the websites to a blocked type destination list

（B）By specifying the websites in a custom blocked category

（C）By specifying blocked domains in the policy settings

（D）By adding the website IP addresses to the Cisco Umbrella blocklist

正解：B 解答を投票する

質問 6

Which statement about the configuration of Cisco ASA NetFlow v9 Secure Event Logging is true?

（A）A flow-export event type must be defined under a policy

（B）To view bandwidth usage for NetFlow records, the QoS feature must be enabled.

（C）A sysopt command can be used to enable NSEL on a specific interface.

（D）NSEL can be used without a collector configured.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

An engineer adds a custom detection policy to a Cisco AMP deployment and encounters issues with the configuration. The simple detection mechanism is configured, but the dashboard indicates that the hash is not
64 characters and is non-zero. What is the issue?

（A）The file being uploaded is incompatible with simple detections and must use advanced detections

（B）The hash being uploaded is part of a set in an incorrect format

（C）The engineer is attempting to upload a file instead of a hash

（D）The engineer is attempting to upload a hash created using MD5 instead of SHA-256

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which group within Cisco writes and publishes a weekly newsletter to help cybersecurity professionals remain aware of the ongoing and most prevalent threats?

（A）DEVNET

（B）Talos

（C）CSIRT

（D）PSIRT

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

A network engineer is deciding whether to use stateful or stateless failover when configuring two Cisco ASAs for high availability. What is the connection status in both cases?

（A）Preserved with stateful failover and need to be reestablished with stateless failover

（B）Need to be reestablished with stateful failover and preserved with stateless failover

（C）Need to be reestablished with both stateful and stateless failover

（D）Preserved with both stateful and stateless failover

正解：A 解答を投票する

質問 10

Which algorithm provides asymmetric encryption?

（A）AES

（B）RSA

（C）3DES

（D）RC4

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

An engineer is configuring their router to send NetfFow data to Stealthwatch which has an IP address of 1 1
11 using the flow record Stea!thwatch406397954 command Which additional command is required to complete the flow record?

（A）match ipv4 ttl

（B）cache timeout active 60

（C）destination 1.1.1.1

（D）transport udp 2055

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

In which cloud services model is the tenant responsible for virtual machine OS patching?

（A）SaaS

（B）PaaS

（C）IaaS

（D）UCaaS

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Which public cloud provider supports the Cisco Next Generation Firewall Virtual?

（A）Google Cloud Platform

（B）Amazon Web Services

（C）Red Hat Enterprise Visualization

（D）VMware ESXi

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

What is a benefit of using GET VPN over FlexVPN within a VPN deployment?

（A）GET VPN interoperates with non-Cisco devices

（B）GET VPN natively supports MPLS and private IP networks

（C）GET VPN uses multiple security associations for connections

（D）GET VPN supports Remote Access VPNs

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

Which type of attack is MFA an effective deterrent for?

（A）syn flood

（B）teardrop

（C）ping of death

（D）phishing

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

350-701 無料問題集「Cisco Implementing and Operating Cisco Security Core Technologies」

弊社を連絡する

関連リンク

トップ試験