400-251 Exam Dumps | Which type of header attack is detected by Cisco ASA basic threat detector?

Home
Cisco
CCIE Security Written Exam (v5.0)
Cisco.400-251.v2019-06-27.q159
Question 137

Valid 400-251 Dumps shared by EduDump.com for Helping Passing 400-251 Exam! EduDump.com now offer the newest 400-251 exam dumps, the EduDump.com 400-251 exam questions have been updated and answers have been corrected get the newest EduDump.com 400-251 dumps with Test Engine here:

Access 400-251 Dumps Premium Version
(125 Q&As Dumps, 35%OFF Special Discount Code: freecram)

<< Prev Question Next Question >>

Question 137/159

Which type of header attack is detected by Cisco ASA basic threat detector?

A. failed application inspection

B. connection limit exceeded

C. bad packet format

D. denial by access list

Correct Answer: C

Explanation/Reference:
Explanation:
Using basic threat detection statistics, the ASA monitors the rate of dropped packets and security events
due to the following reasons:
* Denial by access lists
* Bad packet format (such as invalid-ip-header or invalid-tcp-hdr-length)
* Connection limits exceeded (both system-wide resource limits, and limits set in the configuration)
* DoS attack detected (such as an invalid SPI, Stateful Firewall check failure)
* Basic firewall checks failed (This option is a combined rate that includes all firewall-related packet drops
in this bulleted list. It does not include non-firewall-related drops such as interface overload, packets failed
at application inspection, and scanning attack detected.)
* Suspicious ICMP packets detected
* Packets failed application inspection
* Interface overload
Reference: http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/
conns_threat.html#wp1067533

Your email address will not be published. Required fields are marked *

Comment: *

Name: *

Email: *

Rating: *

Verification: *

Question List (159q): Question 1: Which Cisco ISE profiler service probe can collect informati...; Question 2: Which three EAP protocols are supported in WPA and WPA2? (Ch...; Question 3: View the Exhibit. (Exhibit) Refer to the exhibit. Which thre...; Question 4: Which statement is correct regarding the SenderBase function...; Question 5: Which option best describes RPL?...; Question 6: When TCP Intercept is enabled in its default mode, how does ...; Question 7: Which statement about MDM with the Cisco ISE is true?...; Question 8: Which two events can cause a failover event on an active/sta...; Question 9: Which of the following is true regarding OSPFv2 configuratio...; Question 10: Which statement about NMAP scanning on the Cisco Firepower S...; Question 11: In your network, you require all guests to authenticate to t...; Question 12: (Exhibit) Refer to the exhibit. R2 is configured as a WCCP r...; Question 13: In which type of multicast does the Cisco ASA forward IGMP m...; Question 14: Which two protocols are used by the management plane in a Ci...; Question 15: Which description of Cisco Virtual Topology System is true?...; Question 16: Which command disables an interface on Cisco Nexus 9000 Swit...; Question 17: What is the purpose of the BGP TTL security check?...; Question 18: Which three transports have been defined for SNMPv3? (Choose...; Question 19: Which statement about the SDN framework environment is true?...; Question 20: When applying MD5 route authentication on routers running RI...; Question 21: (Exhibit) Refer to the exhibit. Looking at the configuration...; Question 22: Which of the following is true regarding ASA clustering requ...; Question 23: Refer to the exhibit. (Exhibit) One of the Windows machines ...; Question 24: Which two statements about Cisco AMP for Web Security are tr...; Question 25: Which three statements about 802.1x multiauthentication mode...; Question 26: Which statement is true regarding Private VLAN?...; Question 27: Which of the following is one of the requirements for the FT...; Question 28: A device on your internal network is hard-coded with two DNS...; Question 29: View the Exhibit. monitor session 1 source interface gigabit...; Question 30: Which statement is true regarding Dynamic ARP inspection (DA...; Question 31: Refer to the exhibit. (Exhibit) Firewall ASA1 and router R2 ...; Question 32: Which statement about the failover link when ASAs are config...; Question 33: Which effect of the ip nhrp map multicast dynamic command is...; Question 34: Which two statements about SPAN sessions are true? (Choose t...; Question 35: Which option is a data modeling language used to model confi...; Question 36: Which effect of the crypto pki authenticate command is true?...; Question 37: As an enterprise, you have decided to use Cisco Umbrella (Op...; Question 38: All your remote users use Cisco AnyConnect VPN to connect in...; Question 39: Which three statements about PKI on Cisco IOS Software are t...; Question 40: Which two statements about the MACsec security protocol are ...; Question 41: Which statement is true regarding SSL policy implementation ...; Question 42: Refer to the exhibit. (Exhibit) R9 is running FLEXVPN with p...; Question 43: (Exhibit) Refer to the exhibit. FMC with address 161.1.7.15 ...; Question 44: Refer to the exhibit. (Exhibit) R15 is building a site-to-si...; Question 45: View the Exhibit. (Exhibit) Refer to the exhibit. A user aut...; Question 46: View the Exhibit. (Exhibit) Refer to the exhibit. Which leve...; Question 47: Which two options are benefits of global ACLs? (Choose two.)...; Question 48: View the Exhibit. (Exhibit) Refer to the exhibit. After you ...; Question 49: Which two statements about NVGRE are true? (Choose two.)...; Question 50: From the list below, which one is the major benefit of AMP T...; Question 51: In FMC, which two elements can the correlation rule be based...; Question 52: Which encryption type is used by ESA for implementing the Em...; Question 53: Which two statements about uRPF are true? (Choose two.)...; Question 54: (Exhibit) Refer to the exhibit. R3 is the Key Server in GETV...; Question 55: Which of the following could be an evasion technique used by...; Question 56: Which three statements about the keying methods used by MACS...; Question 57: Which three commands can you use to configure VXLAN on a Cis...; Question 58: What are the three scanning engines that the Cisco IronPort ...; Question 59: View the Exhibit. (Exhibit) Refer to the exhibit Which effec...; Question 60: Which two statements about MPP (Management Plane Protection)...; Question 61: Which description of Jenkins is true?...; Question 62: (Exhibit) Refer to the exhibit. Which address is visible to ...; Question 63: What are three features that are enabled by generating Chang...; Question 64: You are considering using RSPAN to capture traffic between s...; Question 65: Which statement about deploying policies with the Firepower ...; Question 66: (Exhibit) Refer to the exhibit. What are two effects of the ...; Question 67: (Exhibit) Refer to the exhibit. AMP cloud is configured to r...; Question 68: Which two statements about role-based access control are tru...; Question 69: What are three technologies that can be used to trace the so...; Question 70: Which statement about the Traffic Substitution and Insertion...; Question 71: Which three ISAKMP SA Message States can be output from the ...; Question 72: Which statement correctly describes AES encryption algorithm...; Question 73: Which entity is responsible for the Stealthwatch Management ...; Question 74: A server with IP address 209.165.202.150 is protected behind...; Question 75: Your organization is deploying an ESA for email security for...; Question 76: Which are two important guidelines to follow when implementi...; Question 77: Which two statements about MAB are true? (Choose two.)...; Question 78: (Exhibit) There is no ICMP connectivity from VPN_PC to Serve...; Question 79: Which statement about NVGRE functionality is true?...; Question 80: Which statement is true regarding TLS security protocol?...; Question 81: A client computer at 10.10.7.4 is trying to access a Linux s...; Question 82: Which description of a Botnet attack is true?...; Question 83: Which statement currently describes Botnet attack?...; Question 84: Which three statements about EAP-Chaining are true? (Choose ...; Question 85: Which statement is true about Remote Triggered Black Hole Fi...; Question 86: If an ASA device is configured as a remote access IPsec serv...; Question 87: In OpenStack, which two statements about the NOVA component ...; Question 88: Which three VSA attributes are present in a RADIUS WLAN Acce...; Question 89: Which description of 3DES encryption algorithm is true?...; Question 90: Which statement is correct regarding password encryption and...; Question 91: Which statement about the wireless security technologies is ...; Question 92: (Exhibit) Refer to the exhibit. What feature must be impleme...; Question 93: A new computer is not getting its IPv6 address assigned by t...; Question 94: View the Exhibit. (Exhibit) Refer to the exhibit. Which effe...; Question 95: Which WEP configuration can be exploited by a weak IV attack...; Question 96: What are two features that help to mitigate man-in-the-middl...; Question 97: Which protocol does NX-API use as its transport?...; Question 98: In which three configurations can SSL VPN can be implemented...; Question 99: Which feature does Cisco VSG use to redirect traffic in a Ci...; Question 100: Which of these command sequences will send an email to holly...; Question 101: Which four types of traffic should be allowed during an unkn...; Question 102: Which two options are benefits of the Cisco ASA Identity Fir...; Question 103: Which three statements about SXP are true? (Choose three.)...; Question 104: Which statement about SenderBase reputation scoring on an ES...; Question 105: View the Exhibit. (Exhibit) Refer to the exhibit. Which two ...; Question 106: A sneaky employee using an Android phone on your network has...; Question 107: (Exhibit) Refer to the exhibit. What is the effect of the gi...; Question 108: What IOS feature can prevent header attacks by using packet-...; Question 109: How does Scavenger-class QoS mitigate DoS and worm attacks?...; Question 110: Witch two statements about ping flood attacks are true? (Cho...; Question 111: Which two protocols are used by the management plane in a Ci...; Question 112: View the Exhibit. %ASA-6-110001: No route to <desr_addres...; Question 113: Which description of a Docker file is true?...; Question 114: Which three types of addresses can the Botnet Traffic Filter...; Question 115: Which statement about zone-based policy firewall implementat...; Question 116: Which statement about OSPFv2 configuration on ASA is true?...; Question 117: Nexus 9000 platform supports the following configuration man...; Question 118: Which statement about enabling SMTP encryption on ESA is tru...; Question 119: Refer to the exhibit. The ASA at 150.1.7.43 is configured to...; Question 120: View the Exhibit. (Exhibit) Refer to the exhibit. Which two ...; Question 121: Which statement about Dynamic ARP inspection is true?...; Question 122: Which statement about the Cisco AMP Virtual Private Cloud Ap...; Question 123: (Exhibit) Refer to the exhibit. What could be the reason of ...; Question 124: In a Cisco ASA multiple-context mode of operation configurat...; Question 125: Which two statements about ICMP redirect messages are true? ...; Question 126: A university has hired you as a consultant to advise them on...; Question 127: View the Exhibit. (Exhibit) Refer to the exhibit. What is th...; Question 128: The SAML Single Sign-On on ISE is supported by which four po...; Question 129: Which command is used to enable 802.1x authorization on an i...; Question 130: Various methods are available for load-balancing across WSA ...; Question 131: Which three statements about RLDP are true? (Choose three.)...; Question 132: View the Exhibit. (Exhibit) Refer to the exhibit. Which effe...; Question 133: Which three options are fields in a CoA Request code packet?...; Question 134: Which two commands would enable secure logging on a Cisco AS...; Question 135: Which security control in PCI-DSS is responsible for restric...; Question 136: Which two statements about 802.1X components are true? (Choo...; Question 137: Which type of header attack is detected by Cisco ASA basic t...; Question 138: Which statement is true about the traffic substitution and i...; Question 139: Which requirement for the FTD high availability setup is tru...; Question 140: Which description of the AES encryption algorithm is true?...; Question 141: View the Exhibit. Switch-A (config)# cgmp leave-processing R...; Question 142: Which statement about ASA clustering requirements is true?...; Question 143: Which of the following Cisco products gives ability to inter...; Question 144: Which statement correctly represents the ACI security princi...; Question 145: Which three ESMTP extensions are supported by the Cisco ASA?...; Question 146: Which best practice can limit inbound TTL expiry attacks?...; Question 147: Which LDAP query is used by ESA to authenticate users loggin...; Question 148: View the Exhibit. (Exhibit) Refer to the exhibit. For which ...; Question 149: Which effect of the crypto key encrypt write rsa command on ...; Question 150: Which description of a hybrid SDN framework is true?...; Question 151: Which protocol does ISE use to secure connection through the...; Question 152: Which two options are unicast address types for IPv6 address...; Question 153: Which evasion technique is used by the attacker?...; Question 154: Which command on Cisco ASA you can enter to send debug messa...; Question 155: Which file extensions are supported on the Firesight Managem...; Question 156: Which statement is true regarding x.509 certificate?...; Question 157: Which of the following is part of DevOps Virtuous Cycle?...; Question 158: View the Exhibit. class-map match-any unknown match protocol...; Question 159: Which two statements about the SeND protocol are true? (Choo...

[×]

Download PDF File

Enter your email address to download Cisco.400-251.v2019-06-27.q159.pdf

Email:

Disclaimer:
Freecram doesn't offer Real GIAC Exam Questions. Freecram doesn't offer Real SAP Exam Questions. Freecram doesn't offer Real (ISC)² Exam Questions. Freecram doesn't offer Real CompTIA Exam Questions. Freecram doesn't offer Real Microsoft Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates.
Freecram material do not contain actual actual Oracle Exam Questions or material.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation.
Freecram Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc.
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Freecram does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Freecram does not own or claim any ownership on any of the brands.

Question 137/159

LEAVE A REPLY

Download PDF File