1091 お客様のコメント
質問 1:
A System Administrator sees a lot of Ping_Sweep events reported as blocked on the network. However, because the Ping_Sweep signature only blocks the ping packet that triggers the event, most of the ping packets are allowed through the XGS.
How can these suspicious packets be effectively blocked from the network?
A. Add a quarantine response to the Ping_Sweep event.
B. Add a catch-all rule to the bottom of the NAP that rejects all traffic.
C. Enable the Ping_Sweep event in the default IPS policy with the Block option.
D. Add a Network Access policy rule to reject ICMP traffic.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
The requirements are as follows:
*
Avoid having to push certificates to all workstations
*
Protect users from fraudulent web sites
*
Protect all internal server from malicious attacks
The steps to implement this plan are as follows:
*
Obtain an SSL Inspection license for the XGS
*
Obtain a certificate from a public CA and upload it to the XGS via Outbound SSL Certificates
*
Obtain the certificate and private key of the internal public-facing web server and upload it to the XGS via Inbound SSL Certificates
*
Configure Outbound SSL Inspection Settings to block connections if the server certificate is invalid or self-signed
*
Create Outbound SSL Inspection rules that inspect all traffic
*
Create Inbound SSL Inspection rules that only decrypt traffic destined for the internal web server IP address After implementing the plan, the System Administrator finds that users are blocked when trying to access the private company intranet site.
What should the System Administrator do to allow the users to access the intranet?
A. Add an inbound SSL Inspection rule to ignore the traffic to the intranet site.
B. Disable the self-signed certificate option in Outbound SSL Inspection Settings.
C. Add intranet CA certificates to trusted Certificate Authorities.
D. Add intranet CA certificates to the Inbound SSL Certificates store.
正解:C
質問 3:
A System Administrator wants to configure an XGS to send all IPS security event alerts to a remote system using Syslog.
How should the System Administrator configure the XGS?
A. Edit the Network Access policy object and add a 'Remote Syslog' response object.
B. Edit the signatures inside the IPS Policy object and add a 'Remote Syslog' response object.
C. Configure 'System Alerts' with 'Remote Syslog' response objects.
D. Edit the IPS Policy object and add a 'Remote Syslog' response object.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
The System Administrator is about to perform a copy of settings between the same model appliances; however, the Administrator does not want to copy protection interface settings.
Which turning parameter must be added to the Advances Tuning Parameters policy on the XGS prior to applying the snapshot?
A. snapshot. apply.ignore. management _network
B. snapshot. apply.ignore.adapter
C. snapshot. apply.ignore. perf_level
D. snapshot. apply.ignore.route
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
A System Administrator wants to integrate the XGS product with an existing SIEM deployment.
Which configuration changes should be made to ensure that the SIEM product receives information about security attack incidents?
A. Enable Remote IPFix Flow Data Export for an IPS object.
B. Enable QRadar format/LEEF format for the Event Log object.
C. Add a remote syslog object with the IP address of the SIEM console to all IPS objects in use.
D. Add a quarantine response object with the IP Address of the SIEM console to the Advance Threat Protection Agent list.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
A System Administrator wants to install the XGS license files during the first time configuration of the appliance.
How should the first time configuration wizard on the appliance be accessed?
A. Use the Command Line Interface over SSH.
B. Use a console cable connection.
C. Use the web-based Local Management Interface.
D. Use the LCD front panel.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
A System Administrator sees a lot of Ping_Sweep events reported as blocked on the network. However, because the Ping_Sweep signature only blocks the ping packet that triggers the event, most of the ping packets are allowed through the XGS.
How can these suspicious packets be effectively blocked from the network?
A. Add a quarantine response to the Ping_Sweep event.
B. Add a catch-all rule to the bottom of the NAP that rejects all traffic.
C. Enable the Ping_Sweep event in the default IPS policy with the Block option.
D. Add a Network Access policy rule to reject ICMP traffic.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
The requirements are as follows:
*
Avoid having to push certificates to all workstations
*
Protect users from fraudulent web sites
*
Protect all internal server from malicious attacks
The steps to implement this plan are as follows:
*
Obtain an SSL Inspection license for the XGS
*
Obtain a certificate from a public CA and upload it to the XGS via Outbound SSL Certificates
*
Obtain the certificate and private key of the internal public-facing web server and upload it to the XGS via Inbound SSL Certificates
*
Configure Outbound SSL Inspection Settings to block connections if the server certificate is invalid or self-signed
*
Create Outbound SSL Inspection rules that inspect all traffic
*
Create Inbound SSL Inspection rules that only decrypt traffic destined for the internal web server IP address After implementing the plan, the System Administrator finds that users are blocked when trying to access the private company intranet site.
What should the System Administrator do to allow the users to access the intranet?
A. Add an inbound SSL Inspection rule to ignore the traffic to the intranet site.
B. Disable the self-signed certificate option in Outbound SSL Inspection Settings.
C. Add intranet CA certificates to trusted Certificate Authorities.
D. Add intranet CA certificates to the Inbound SSL Certificates store.
正解:C
質問 3:
A System Administrator wants to configure an XGS to send all IPS security event alerts to a remote system using Syslog.
How should the System Administrator configure the XGS?
A. Edit the Network Access policy object and add a 'Remote Syslog' response object.
B. Edit the signatures inside the IPS Policy object and add a 'Remote Syslog' response object.
C. Configure 'System Alerts' with 'Remote Syslog' response objects.
D. Edit the IPS Policy object and add a 'Remote Syslog' response object.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
The System Administrator is about to perform a copy of settings between the same model appliances; however, the Administrator does not want to copy protection interface settings.
Which turning parameter must be added to the Advances Tuning Parameters policy on the XGS prior to applying the snapshot?
A. snapshot. apply.ignore. management _network
B. snapshot. apply.ignore.adapter
C. snapshot. apply.ignore. perf_level
D. snapshot. apply.ignore.route
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
A System Administrator wants to integrate the XGS product with an existing SIEM deployment.
Which configuration changes should be made to ensure that the SIEM product receives information about security attack incidents?
A. Enable Remote IPFix Flow Data Export for an IPS object.
B. Enable QRadar format/LEEF format for the Event Log object.
C. Add a remote syslog object with the IP address of the SIEM console to all IPS objects in use.
D. Add a quarantine response object with the IP Address of the SIEM console to the Advance Threat Protection Agent list.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
A System Administrator wants to install the XGS license files during the first time configuration of the appliance.
How should the first time configuration wizard on the appliance be accessed?
A. Use the Command Line Interface over SSH.
B. Use a console cable connection.
C. Use the web-based Local Management Interface.
D. Use the LCD front panel.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
Kurosawa -
Pass4Testの問題集は他の本より安い上にしっかり知識を身に着けられるから安心