What is used to collect netflow and jflow traffic in a QRadar Distributed Deployment?
A. QRadar 3105 Console
B. QRadar 1705 Processor
C. QRadar 1605 Processor
D. QRadar 700 Risk Manager
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
A user ofQRadarwishes to have a report showing the number of bytes per packet they see with their flows. The user decides to create a Custom Flow Property for this application.
Which type of custom property is required for this to be accomplished?
A. Regex Custom Property
B. Advanced Custom Property
C. Computation Custom Property
D. Calculation Based Custom Property
正解:A
質問 3:
Which command will install the patch after mounting the patch file?
A. /media/updates/installer
B. /media/updates/setup -patch
C. /media/updates/installer -patch
D. /media/updates/setup
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A QRadar administrator needs to tune the system by enabling or disabling the appropriate rules in order to ensure that the QRadar console generates meaningful offenses for the environment.
Which role permission is required for enabling and disabling the rule?
A. Offenses > Manage Custom Rules
B. Offenses > Maintain Custom Rules
C. Offenses > Toggle Custom Rules
D. Offenses > Maintain CRE Rules
正解:A
質問 5:
On the QRadar console you have received notification that CVE ID: CVE-2010-000 is being actively used.
What search parameter should you select from the list of search parameters in this situation?
A. Vulnerability Information System
B. Vulnerability Internal System Reference
C. Vulnerability External Reference
D. Collateral Damage Reference
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
Tamura -
見やすく、C2150-400勉強しやすい本だと思いました。過去問解説もくわしくて、とても勉強しやすい本でした。