The requirements are as follows:
*
Avoid having to push certificates to all workstations
*
Protect users from fraudulent web sites
*
Protect all internal server from malicious attacks
The steps to implement this plan are as follows:
*
Obtain an SSL Inspection license for the XGS
*
Obtain a certificate from a public CA and upload it to the XGS via Outbound SSL Certificates
*
Obtain the certificate and private key of the internal public-facing web server and upload it to the XGS via Inbound SSL Certificates
*
Configure Outbound SSL Inspection Settings to block connections if the server certificate is invalid or self-signed
*
Create Outbound SSL Inspection rules that inspect all traffic
*
Create Inbound SSL Inspection rules that only decrypt traffic destined for the internal web server IP address After implementing the plan, the System Administrator finds that users are blocked when trying to access the private company intranet site.
What should the System Administrator do to allow the users to access the intranet?
A. Add an inbound SSL Inspection rule to ignore the traffic to the intranet site.
B. Disable the self-signed certificate option in Outbound SSL Inspection Settings.
C. Add intranet CA certificates to trusted Certificate Authorities.
D. Add intranet CA certificates to the Inbound SSL Certificates store.
正解:C
質問 2:
A System Administrator needs to create a pcap capture file which contains the FTP traffic inspected by the XGS and therefore has enabled the FTP_Get signature in the Default IPS Object.
Which other action needs to be performed to ensure that the desired capture file is available in the Local Management interface (LMI) for this event only?
A. Select "Log With Raw" on the FTP_Get signature that was enabled.
B. Enable the tools>capture>pinterface from the command line filtering by FTP_Get event.
C. Configure "Capture Connection" on the Response tab for an IPS Event Filter Policy rule for FTP_Get event.
D. Configure "Capture Connection" on the Response tab for the Default IPS Object.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
The System Administrator is about to perform a copy of settings between the same model appliances; however, the Administrator does not want to copy protection interface settings.
Which turning parameter must be added to the Advances Tuning Parameters policy on the XGS prior to applying the snapshot?
A. snapshot. apply.ignore. management _network
B. snapshot. apply.ignore.adapter
C. snapshot. apply.ignore. perf_level
D. snapshot. apply.ignore.route
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A System Administrator wants to install the XGS license files during the first time configuration of the appliance.
How should the first time configuration wizard on the appliance be accessed?
A. Use the Command Line Interface over SSH.
B. Use a console cable connection.
C. Use the web-based Local Management Interface.
D. Use the LCD front panel.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
The System Administrator for a financial organization wants to register an XGS appliance to SiteProtector. There are two SiteProtector Sites:
*
SiteProtector_1 in Strict mode has AgentManager_1 installed in it.
*
SiteProtector_2 in Compatible mode has AgentManager_2 installed in it.
The System Administrator has configured XGS SiteProtector Management policy as follows:
In which SiteProtector instance should this XGS appear as Active based on the above policy given that there are no other network issues?
A. XGS should be seen as Active in both SiteProtector sites.
B. XGS should not be active in any of the SiteProtector sites.
C. XGS should be seen as Active in SiteProtector_2 only.
D. XGS should be seen as Active in SiteProtector_1 only.
正解:C
質問 6:
The System Administrator has discovered the XGS device is overloaded and is dropping legitimate traffic.
Which setting is likely responsible for this behavior?
A. LogDB response enabled on NAP rules
B. TCP resets- TCP reset interface
C. Fail Closed hardware bypass mode
D. Unanalyzed policy configuration
正解:D
江藤** -
最小限の対策で合格をめざす参考書だと思う。C2150-620試験本番の問題とほぼあってる。