350-701 Exam Dumps | An engineer needs behavioral analysis to detect malicious activity on the hosts, and is configuring the

<< Prev Question Next Question >>

Question 175/264

An engineer needs behavioral analysis to detect malicious activity on the hosts, and is configuring the organization's public cloud to send telemetry using the cloud provider's mechanisms to a security device.
Which
mechanism should the engineer configure to accomplish this goal?

A. mirror port

B. Flow

C. NetFlow

D. VPC flow logs

Question List (264q): Question 1: Which PKI enrollment method allows the user to separate auth...; Question 2: How does Cisco Advanced Phishing Protection protect users?...; Question 3: Which problem Is solved by deploying a multicontext firewall...; Question 4: A network administrator is modifying a remote access VPN on ...; Question 5: How does a cloud access security broker function?...; Question 6: What provides total management for mobile and PC including m...; Question 7: Which Cisco ASA Platform mode disables the threat detection ...; Question 8: Which characteristic is unique to a Cisco WSAv as compared t...; Question 9: Which two authentication protocols are supported by the Cisc...; Question 10: An engineer adds a custom detection policy to a Cisco AMP de...; Question 11: Which two key and block sizes are valid for AES? (Choose two...; Question 12: A company discovered an attack propagating through their net...; Question 13: In which two ways does a system administrator send web traff...; Question 14: Which two solutions help combat social engineering and phish...; Question 15: Which benefit does DMVPN provide over GETVPN?...; Question 16: What is a capability of Cisco ASA Netflow?...; Question 17: Which license is required for Cisco Security Intelligence to...; Question 18: An organization wants to improve its cybersecurity processes...; Question 19: An engineer is configuring a Cisco ESA and wants to control ...; Question 20: An engineer needs to add protection for data in transit and ...; Question 21: What is a benefit of flexible NetFlow records?...; Question 22: Refer to the exhibit. (Exhibit) Which command was used to ge...; Question 23: Which attack is preventable by Cisco ESA but not by the Cisc...; Question 24: An organization wants to provide visibility and to identify ...; Question 25: What is the purpose of a denial-of-service attack?...; Question 26: Which IPS engine detects ARP spoofing?...; Question 27: Which system facilitates deploying microsegmentation and mul...; Question 28: Refer to the exhibit. (Exhibit) Which command was used to di...; Question 29: What is a characteristic of Dynamic ARP Inspection?...; Question 30: Which Cisco network security device supports contextual awar...; Question 31: Which two aspects of the cloud PaaS model are managed by the...; Question 32: What is the difference between deceptive phishing and spear ...; Question 33: What are the two types of managed Intercloud Fabric deployme...; Question 34: A network engineer is deciding whether to use stateful or st...; Question 35: What is provided by the Secure Hash Algorithm in a VPN?...; Question 36: For which two conditions can an endpoint be checked using IS...; Question 37: A user has a device in the network that is receiving too man...; Question 38: Which MDM configuration provides scalability?...; Question 39: What is the target in a phishing attack?...; Question 40: Which CoA response code is sent if an authorization state is...; Question 41: An organization wants to secure users, data, and application...; Question 42: A security test performed on one of the applications shows t...; Question 43: Which Cisco Umbrella package supports selective proxy for In...; Question 44: A customer has various external HTTP resources available inc...; Question 45: Which statement about the configuration of Cisco ASA NetFlow...; Question 46: What limits communication between applications or containers...; Question 47: An organization has a Cisco ESA set up with policies and wou...; Question 48: Which Cisco Advanced Malware protection for Endpoints deploy...; Question 49: Based on the NIST 800-145 guide, which cloud architecture is...; Question 50: What is the Cisco API-based broker that helps reduce comprom...; Question 51: An administrator configures new authorization policies withi...; Question 52: Which Cisco security solution gives the most complete view o...; Question 53: Which two criteria must a certificate meet before the WSA us...; Question 54: An engineer is configuring Dropbox integration with Cisco Cl...; Question 55: Which ID store requires that a shadow user be created on Cis...; Question 56: A hacker initiated a social engineering attack and stole use...; Question 57: Which technology enables integration between Cisco ISE and o...; Question 58: An organization received a large amount of SPAM messages ove...; Question 59: Which algorithm provides asymmetric encryption?...; Question 60: Why is it important to patch endpoints consistently?...; Question 61: Which feature is leveraged by advanced antimalware capabilit...; Question 62: A network engineer is configuring DMVPN and entered the cryp...; Question 63: Which function is the primary function of Cisco AMP threat G...; Question 64: A large organization wants to deploy a security appliance in...; Question 65: (Exhibit) Refer to the exhibit. What is the result of using ...; Question 66: How does the Cisco WSA enforce bandwidth restrictions for we...; Question 67: When network telemetry is implemented, what is important to ...; Question 68: How does Cisco Workload Optimization portion of the network ...; Question 69: Which metric is used by the monitoring agent to collect and ...; Question 70: Drag and drop the cloud security assessment components from ...; Question 71: Which posture assessment requirement provides options to the...; Question 72: In which form of attack is alternate encoding, such as hexad...; Question 73: Which security product enables administrators to deploy Kube...; Question 74: Which two are valid suppression types on a Cisco Next Genera...; Question 75: An engineer is configuring IPsec VPN and needs an authentica...; Question 76: Which encryption algorithm provides highly secure VPN commun...; Question 77: An engineer wants to generate NetFlow records on traffic tra...; Question 78: (Exhibit) Refer to the exhibit. What does this Python script...; Question 79: What is the purpose of joining Cisco WSAs to an appliance gr...; Question 80: What is the role of an endpoint in protecting a user from a ...; Question 81: Which functions of an SDN architecture require southbound AP...; Question 82: Which method must be used to connect Cisco Secure Workload t...; Question 83: Which protocol provides the strongest throughput performance...; Question 84: An organization wants to reduce their attach surface for clo...; Question 85: Refer to the exhibit. (Exhibit) What will happen when this P...; Question 86: Which Cisco solution provides a comprehensive view of Intern...; Question 87: What is a difference between GRE over IPsec and IPsec with c...; Question 88: An engineer is implementing NTP authentication within their ...; Question 89: What are two benefits of Flexible NetFlow records? (Choose t...; Question 90: Refer to the exhibit. (Exhibit) A network engineer is testin...; Question 91: Why would a user choose an on-premises ESA versus the CES so...; Question 92: What are two recommended approaches to stop DNS tunneling fo...; Question 93: Which feature requires that network telemetry be enabled?...; Question 94: What is the concept of Cl/CD pipelining?...; Question 95: An organization is selecting a cloud architecture and does n...; Question 96: Where are individual sites specified to be blacklisted in Ci...; Question 97: Which two commands are required when configuring a flow-expo...; Question 98: (Exhibit) Refer to the exhibit. All servers are in the same ...; Question 99: What is a benefit of using Cisco Tetration?...; Question 100: Which threat involves software being used to gain unauthoriz...; Question 101: What is the purpose of a NetFlow version 9 template record?...; Question 102: An organization has two machines hosting web applications. M...; Question 103: Why is it important to implement MFA inside of an organizati...; Question 104: Which technology provides a combination of endpoint protecti...; Question 105: An administrator is adding a new switch onto the network and...; Question 106: What are two characteristics of the RESTful architecture use...; Question 107: What are two Trojan malware attacks? (Choose two)...; Question 108: Which benefit does endpoint security provide the overall sec...; Question 109: What is the purpose of CA in a PKI?...; Question 110: What is the process In DevSecOps where all changes In the ce...; Question 111: Which policy is used to capture host information on the Cisc...; Question 112: What is an attribute of the DevSecOps process?...; Question 113: What are two list types within AMP for Endpoints Outbreak Co...; Question 114: What is the term for when an endpoint is associated to a pro...; Question 115: An MDM provides which two advantages to an organization with...; Question 116: Which two prevention techniques are used to mitigate SQL inj...; Question 117: Which two services must remain as on-premises equipment when...; Question 118: Which service allows a user export application usage and per...; Question 119: Which RADIUS feature provides a mechanism to change the AAA ...; Question 120: Which two deployment modes does the Cisco ASA FirePower modu...; Question 121: An organization uses Cisco FMC to centrally manage multiple ...; Question 122: A network administrator needs to find out what assets curren...; Question 123: An organization must add new firewalls to its infrastructure...; Question 124: An administrator is establishing a new site-to-site VPN conn...; Question 125: An organization is using Cisco Firepower and Cisco Meraki MX...; Question 126: II An engineer musi set up 200 new laptops on a network and ...; Question 127: What is the primary benefit of deploying an ESA in hybrid mo...; Question 128: What is a key difference between Cisco Firepower and Cisco A...; Question 129: Which technology provides the benefit of Layer 3 through Lay...; Question 130: What are two features of NetFlow flow monitoring? (Choose tw...; Question 131: Which VPN technology can support a multivendor environment a...; Question 132: Which two risks is a company vulnerable to if it does not ha...; Question 133: An engineer is configuring Cisco WSA and needs to enable a s...; Question 134: With regard to RFC 5176 compliance, how many IETF attributes...; Question 135: Which Cisco platform provides an agentless solution to provi...; Question 136: Which action controls the amount of URI text that is stored ...; Question 137: What are two reasons for implementing a multifactor authenti...; Question 138: What is a functional difference between Cisco AMP for Endpoi...; Question 139: What features does Cisco FTDv provide over ASAv?...; Question 140: What are two facts about WSA HTTP proxy configuration with a...; Question 141: An engineer is configuring AMP for endpoints and wants to bl...; Question 142: Which group within Cisco writes and publishes a weekly newsl...; Question 143: An engineer is trying to decide between using L2TP or GRE ov...; Question 144: What is the purpose of the My Devices Portal in a Cisco ISE ...; Question 145: Which security solution protects users leveraging DNS-layer ...; Question 146: Which system performs compliance checks and remote wiping?...; Question 147: An engineer used a posture check on a Microsoft Windows endp...; Question 148: Which threat intelligence standard contains malware hashes?...; Question 149: What are two ways that Cisco Container Platform provides val...; Question 150: An engineer is configuring device-hardening on a router in o...; Question 151: What can be integrated with Cisco Threat Intelligence Direct...; Question 152: Refer to the exhibit. (Exhibit) A network administrator conf...; Question 153: Which Cisco ASA deployment model is used to filter traffic b...; Question 154: What is a feature of the open platform capabilities of Cisco...; Question 155: An engineer must force an endpoint to re-authenticate an alr...; Question 156: A network administrator is configuring a role in an access c...; Question 157: Which public cloud provider supports the Cisco Next Generati...; Question 158: Refer to the exhibit. (Exhibit) What does the API do when co...; Question 159: A customer has various external HTTP resources available inc...; Question 160: A network engineer must migrate a Cisco WSA virtual applianc...; Question 161: Which Cisco platform ensures that machines that connect to o...; Question 162: Which two fields are defined in the NetFlow flow? (Choose tw...; Question 163: What is the primary difference between an Endpoint Protectio...; Question 164: What is the result of running the crypto isakmp key ciscXXXX...; Question 165: What is a characteristic of a bridge group in ASA Firewall t...; Question 166: An engineer needs to configure an access control policy rule...; Question 167: Which two configurations must be made on Cisco ISE and on Ci...; Question 168: (Exhibit) Refer to the exhibit. What is the result of the Py...; Question 169: Refer to the exhibit, (Exhibit) which command results in the...; Question 170: Refer to the exhibit. (Exhibit) Which statement about the au...; Question 171: An administrator configures a new destination list in Cisco ...; Question 172: When choosing an algorithm to us, what should be considered ...; Question 173: Which two descriptions of AES encryption are true? (Choose t...; Question 174: Which product allows Cisco FMC to push security intelligence...; Question 175: An engineer needs behavioral analysis to detect malicious ac...; Question 176: An engineer is adding a Cisco DUO solution to the current TA...; Question 177: Which option is the main function of Cisco Firepower impact ...; Question 178: Refer to the exhibit. (Exhibit) What is a result of the conf...; Question 179: Which type of data does the Cisco Stealthwatch system collec...; Question 180: Which direction do attackers encode data in DNS requests dur...; Question 181: Which baseline form of telemetry is recommended for network ...; Question 182: Refer to the exhibit. (Exhibit) What are two indications of ...; Question 183: Which Cisco security solution integrates with cloud applicat...; Question 184: Which technology limits communication between nodes on the s...; Question 185: Which statement describes a serverless application?...; Question 186: What are two benefits of using Cisco Duo as an MFA solution?...; Question 187: In which situation should an Endpoint Detection and Response...; Question 188: What is a characteristic of Firepower NGIPS inline deploymen...; Question 189: Why is it important for the organization to have an endpoint...; Question 190: Which command is used to log all events to a destination col...; Question 191: How does Cisco Umbrella archive logs to an enterprise owned ...; Question 192: What is the recommendation in a zero-trust model before gran...; Question 193: What is a benefit of using GET VPN over FlexVPN within a VPN...; Question 194: Which exfiltration method does an attacker use to hide and e...; Question 195: Which type of algorithm provides the highest level of protec...; Question 196: When NetFlow is applied to an interface, which component cre...; Question 197: Which action must be taken in the AMP for Endpoints console ...; Question 198: Which feature within Cisco ISE verifies the compliance of an...; Question 199: What is a difference between Cisco AMP for Endpoints and Cis...; Question 200: Refer to the exhibit. (Exhibit) What will occur when this de...; Question 201: Which Cisco security solution protects remote users against ...; Question 202: What is a commonality between DMVPN and FlexVPN technologies...; Question 203: Refer to the exhibit. (Exhibit) Refer to the exhibit. A Cisc...; Question 204: An engineer needs a solution for TACACS+ authentication and ...; Question 205: Refer to the exhibit. (Exhibit) What is the function of the ...; Question 206: An engineer is implementing Cisco CES in an existing Microso...; Question 207: An engineer is configuring their router to send NetfFow data...; Question 208: Drag and drop the Firepower Next Generation Intrusion Preven...; Question 209: Which Cisco product provides proactive endpoint protection a...; Question 210: Which type of encryption uses a public key and private key?...; Question 211: What is the difference between a vulnerability and an exploi...; Question 212: What does the Cloudlock Apps Firewall do to mitigate securit...; Question 213: Which two parameters are used to prevent a data breach in th...; Question 214: Which type of protection encrypts RSA keys when they are exp...; Question 215: An engineer needs to configure a Cisco Secure Email Gateway ...; Question 216: Refer to the exhibit. (Exhibit) Which configuration item mak...; Question 217: A network engineer is trying to figure out whether FlexVPN o...; Question 218: Drag and drop the descriptions from the left onto the encryp...; Question 219: Drag and drop the capabilities of Cisco Firepower versus Cis...; Question 220: Which Cisco command enables authentication, authorization, a...; Question 221: Which Dos attack uses fragmented packets to crash a target m...; Question 222: A company is experiencing exfiltration of credit card number...; Question 223: What are two Detection and Analytics Engines of Cognitive Th...; Question 224: An engineer is configuring Cisco WSA and needs to deploy it ...; Question 225: Which term describes when the Cisco Firepower downloads thre...; Question 226: Which capability is exclusive to a Cisco AMP public cloud in...; Question 227: Which two capabilities of Integration APIs are utilized with...; Question 228: An organization uses Cisco FMC to centrally manage multiple ...; Question 229: An engineer is trying to decide whether to use Cisco Umbrell...; Question 230: Which category includes DoS Attacks?...; Question 231: Which statement describes a traffic profile on a Cisco Next ...; Question 232: Which type of data exfiltration technique encodes data in ou...; Question 233: A company recently discovered an attack propagating througho...; Question 234: Refer to the exhibit. (Exhibit) An engineer configured wired...; Question 235: Which Cisco solution does Cisco Umbrella integrate with to d...; Question 236: An engineer must modify a policy to block specific addresses...; Question 237: On Cisco Firepower Management Center, which policy is used t...; Question 238: Which two application layer preprocessors are used by Firepo...; Question 239: What are two ways a network administrator transparently iden...; Question 240: Which feature is used in a push model to allow for session i...; Question 241: An engineer enabled SSL decryption for Cisco Umbrella intell...; Question 242: A company has 5000 Windows users on its campus. Which two pr...; Question 243: A Cisco Firepower administrator needs to configure a rule to...; Question 244: When wired 802.1X authentication is implemented, which two c...; Question 245: When web policies are configured in Cisco Umbrella, what pro...; Question 246: An organization configures Cisco Umbrella to be used for its...; Question 247: Refer to the exhibit. (Exhibit) Consider that any feature of...; Question 248: Which open source tool does Cisco use to create graphical vi...; Question 249: What is the default action before identifying the URL during...; Question 250: Drag and drop the suspicious patterns for the Cisco Tetratio...; Question 251: Which parameter is required when configuring a Netflow expor...; Question 252: Which Cisco solution extends network visibility, threat dete...; Question 253: Which method of attack is used by a hacker to send malicious...; Question 254: A network engineer has entered the snmp-server user andy myv...; Question 255: Which information is required when adding a device to Firepo...; Question 256: What is a function of Cisco AMP for Endpoints?...; Question 257: An engineer configures new features within the Cisco Umbrell...; Question 258: Which solution should be leveraged for secure access of a CI...; Question 259: What is a benefit of using Cisco FMC over Cisco ASDM?...; Question 260: Drag and drop the descriptions from the left onto the correc...; Question 261: What does endpoint isolation in Cisco AMP for Endpoints secu...; Question 262: Which two capabilities does an MDM provide? (Choose two.)...; Question 263: In which type of attack does the attacker insert their machi...; Question 264: Which Cisco Firewall solution requires zone definition?...

Question 175/264

LEAVE A REPLY

Download PDF File