NEW QUESTION 1
Using the Cisco WSA GUI, where should an operator navigate to determine the running software image on the Cisco WSA?

• A. Systems Administration > System Upgrade
• B. Systems Administration > Feature Keys
• C. Systems Administration > General
• D. Admin > System Info

Answer: A

NEW QUESTION 2
Which configuration mode enables a virtual sensor to monitor the session state for unidirectional traffic?

• A. asymmetric mode
• B. symmetric mode
• C. loose mode
• D. strict mode

Answer: A

NEW QUESTION 3
Refer to the exhibit.

The security engineer has configured cisco cloud web security redirection on a Cisco ASA firewall. Which statement describes what can be determined from exhibit?

• A. In case of issues, the next step should be to perform debugging on the cisco ASA.
• B. The URL visited by the user was LAB://testgroup.
• C. This out has been obtained by browsing to whoami.scansafe.net
• D. The IP address of the Scansafe tower is 209.165.200.241

Answer: C

NEW QUESTION 4
Which technique is deployed to harden network devices?

• A. port-by-port router ACLs
• B. infrastructure ACLs
• C. transmit ACLs
• D. VLAN ACLs

Answer: B

NEW QUESTION 5
Which two statements about Cisco ESA clusters are true? (Choose two.)

• A. A cluster must contain exactly one group.
• B. A cluster can contain multiple groups.
• C. Clusters are implemented in a client/server relationship.
• D. The cluster configuration must be managed by the cluster administrator.
• E. The cluster configuration can be created and managed through either the GUI or the CLI.

Answer: BE

NEW QUESTION 6
Which option describes a customer benefit of the Cisco Security IntelliShield Alert Manager?

• A. It provides access to threat and vulnerability information for Cisco related products only.
• B. It consolidates vulnerability information from an internal Cisco source, which allows security personnel to focus on remediation and proactive protection versus research.
• C. It provides effective and timely security intelligence via early warnings about new threats and technology vulnerabilities.
• D. It enhances the efficiency of security staff with accurate, noncustomizable threat intelligence, critical remediation information, and easy-to-use workflow tools.

Answer: C

NEW QUESTION 7
A user is deploying a Cisco IPS appliance in a data center to mitigate most attacks, including atomic attacks. Which two modes does Cisco recommend using to configure for this? (Choose two.)

• A. VLAN pair
• B. interface pair
• C. transparent mode
• D. EtherChannel load balancing
• E. promiscuous mode

Answer: AD

NEW QUESTION 8
What are three features of the Cisco Security Intellishield Alert Manager Service? (Choose three.)

• A. validation of alerts by security analysts
• B. custom notifications
• C. complete threat and vulnerability remediation
• D. vendor-specific threat analysis
• E. workflow-management tools
• F. real-time threat and vulnerability mitigation

Answer: ABE

NEW QUESTION 9
Cisco AVC allows control of which three of the following? (Choose three.)

• A. Facebook
• B. LWAPP
• C. IPv6
• D. MySpace
• E. Twitter
• F. WCCP

Answer: ADE

NEW QUESTION 10
Which statement about the Cisco CWS web filtering policy behavior is true?

• A. Rules are comprised of three criteria and an action.
• B. By default, the schedule is set to office hours.
• C. At least one rule applies to a web request.
• D. In the evaluation of a rule set, the best match wins.

Answer: A

NEW QUESTION 11
DRAG DROP
Drag and drop the steps on the left into the correct order on the right to configure a Cisco ASA
NGFW with multiple security contexts.

Answer:

Explanation:

NEW QUESTION 12
During initial configuration, the Cisco ASA can be configured to drop all traffic if the ASA CX SSP fails by using which command in a policy-map?

• A. cxsc fail
• B. cxsc fail-close
• C. cxsc fail-open
• D. cxssp fail-close

Answer: B

NEW QUESTION 13
Which four statements are correct regarding management access to a Cisco Intrusion Prevention System? (Choose four.)

• A. The Telnet protocol is enabled by default
• B. The Telnet protocol is disabled by default
• C. HTTP is enabled by default
• D. HTTP is disabled by default
• E. SSH is enabled by default
• F. SSH is disabled by default
• G. HTTPS is enabled by default
• H. HTTPS is disabled by default

Answer: BDEG

NEW QUESTION 14
An ASA with an IPS module must be configured to drop traffic matching IPS signatures and block all traffic if the module fails. Which describes the correct configuration?

• A. Inline Mode, Permit Traffic
• B. Inline Mode, Close Traffic
• C. Promiscuous Mode, Permit Traffic
• D. Promiscuous Mode, Close Traffic

Answer: B

NEW QUESTION 15
Connections are being denied because of SenderBase Reputation Scores. Which two features must be enabled in order to record those connections in the mail log on the Cisco ESA? (Choose two.)

• A. Rejected Connection Handling
• B. Domain Debug Logs
• C. Injection Debug Logs
• D. Message Tracking

Answer: AD

NEW QUESTION 16
Which action cloud reduce the security of the management interface of the Cisco ESA appliance?

• A. create a network access list to allow all connections to the management interface
• B. Display a login banner indicating that all appliance use is logged and reviewed
• C. configure a web UI session timeout of 30 minutes for connected users.

Answer: A

NEW QUESTION 17
A Cisco Web Security Appliance's policy can provide visibility and control of which two elements? (Choose two.)

• A. Voice and Video Applications
• B. Websites with a reputation between -100 and -60
• C. Secure websites with certificates signed under an unknown CA
• D. High bandwidth websites during business hours

Answer: CD