Which two actions will resolve the problem?

Click the Exhibit button.
[edit security idp-policy test]
user@host# show
rulebase-ips {
rule R3 {
match {
source-address any;
destination-address any;
attacks {
predefined-attacks FTP:USER:ROOT;
}
}
then {
action {
recommended;
}
}
terminal;
}
rule R4 {
match {
source-address any;
destination-address any;
attacks {
predefined-attacks HTTP:HOTMAIL:FILE-UPLOAD;
}}
then {
action {
recommended;
}
}
}
}
You have just committed the new IDP policy shown in the exhibit. However, you notice no action is taken on
traffic matching the R4 IDP rule.
Which two actions will resolve the problem? (Choose two.)

Click the Exhibit button.
[edit security idp-policy test]
user@host# show
rulebase-ips {
rule R3 {
match {
source-address any;
destination-address any;
attacks {
predefined-attacks FTP:USER:ROOT;
}
}
then {
action {
recommended;
}
}
terminal;
}
rule R4 {
match {
source-address any;
destination-address any;
attacks {
predefined-attacks HTTP:HOTMAIL:FILE-UPLOAD;
}}
then {
action {
recommended;
}
}
}
}
You have just committed the new IDP policy shown in the exhibit. However, you notice no action is taken on
traffic matching the R4 IDP rule.
Which two actions will resolve the problem? (Choose two.)

A.
Change the R4 rule to match on a predefined attack group.

B.
Insert the R4 rule above the R3 rule.

C.
Delete the terminal statement from the R3 rule.

D.
Change the IPS rulebase to an exempt rulebase.

Show Hint

Leave a Reply 0

Your email address will not be published. Required fields are marked *