MA0-104 無料問題集「McAfee Intel Security Certified Product Specialist-SIEM」
The analyst has created a correlation rule to correlate events from Anti-Virus (AV>, Network Intrusion
Prevention (NIPS) and the firewall. While reviewing just firewall events, the analyst notices a large spike
in outbound Command and Control traffic, however, the correlation rule is not triggering The analyst then
looks at the Network IPS and the Anti-Virus views and notices there are no alerts for this traffic. Which of
the following features of NIPS and AV are most likely turned off?
Prevention (NIPS) and the firewall. While reviewing just firewall events, the analyst notices a large spike
in outbound Command and Control traffic, however, the correlation rule is not triggering The analyst then
looks at the Network IPS and the Anti-Virus views and notices there are no alerts for this traffic. Which of
the following features of NIPS and AV are most likely turned off?
正解:A
解答を投票する