Quiz 642-627, Implementing Cisco Intrusion Prevention System v7.0 (IPS v7.0)
Which IPS alert action is available only in inline mode?
which three sources does the Cisco IPS appliance obtain OS mapping information?
What can cause this situation to occur?
Which signature action should be selected to cause the attacker’s traffic flow to terminate…?
Which three configurations should be considered to resolve the packet drops issue?
Which type of signature engine is best suited for creating custom signatures that inspect data at OSI Layer 5 and above?
What are the three anomaly detection modes?
Which option is best to use to capture only a subset of traffic off the switch backplane and copy it to the Cisco IPS appliance?
Which four types of interface modes are available on the Cisco IPS 4200 Series appliance?
What is the correct regular expression to match a URI request equal to /test.exe?