Study tips 642-545

Which protocol is used by Juniper NetScreen IDP to exchange IPS events with the Cisco Security MARS?

Which option is correct about the case management feature of Cisco Security MARS?

Which attack can be detected by Cisco Security MARS by use of NetFlow data?

which type of attack is this Rule useful for detecting?

Which two items are correct according to the rule shown on the MARS GUI screen?

when does archiving initially occur?

What Cisco Security MARS event information derived from the reporting device raw message is not passed to Cisco Security Manager to perform Cisco Security Manager policy lookup?

Which three items about the Query displayed on the MARS GUI screen are correct?

which benefit is of using the dollar variable (as in $TARGET01)?

Which option is correct with regard to authenticating Cisco Security MARS accounts with external AAA servers?