今天考的350-701, 用的是q225的题库。大概一半新题一半旧题。) U4 {; ?4 r% {4 v
7 V- x7 \9 X( s V! Y0 w' ~, e网上能找到些新题:
- D# D J/ k' l7 A1.organizationhas a Cisco ESA set up with policies and would like to customize the actionassigned for violations. The organization wants a copy of the message to bedelivered with a message added to flag it as a DLP violation.
- v6 O( m+ a9 `' m
+ M8 F1 D" s$ z3 M: h( n& ?9 FWhich actions must be performed in order to provide this capability? ! T) ~0 O0 m8 ~3 B
- quarantine and alter the subject header with a DLP violation
. f) c' Y: T! g0 a2 w. H. ? - deliver and add disclaimer text2 W. H% A6 n9 `' G1 O
- deliver and send copies to other recipients) g5 I" i" L9 k8 H
- quarantine and send a DLP violation notification; D9 H9 B: s1 m9 u2 }% I/ z
2 t. G2 Z) o, E5 E0 j0 c# p. l
2. Anorganization recently installed a Cisco WSA and would like to take advantage ofthe AVC engine to allow the organization to create a policy to controlapplication specific activity.
0 }* f" s B( Y6 o5 h. U3 ?; ^3 X* X
After enabling the AVC engine, what must be done to implement this?
2 `) P( {0 n# V/ i2 r; ~" T. ~4 k - Use security services to configure the traffic monitor.
* K% v0 |: o$ {/ Q5 l( G3 f. z - Use web security reporting to validate engine functionality.. g3 `; Z- n# c, x) o' T* p
- Use URL categorization to prevent the application traffic.
! v4 }, L+ U3 a# D2 X - Use an access policy group to configure application control settings.
7 l% } h+ X* ^. \" t
) s8 n3 q1 z! Y$ Z7 u2 C' ]7 K2 e
3. Whichfactor must be considered when choosing the on-premise solution over thecloud-based one? 0 o$ h# R9 R' E+ D A7 v' H0 W+ o
- With a cloud-based solution, the provider is responsible for the installation, but the customer is responsible for the maintenance of the product
/ f! }1 f7 _, Q" P& \! I - With an on-premise solution, the customer is responsible for the installation and maintenance of the product, whereas with a cloud-based solution, the provider responsiblefor it.
* K! u8 }/ k2 x+ T- A - With an on-premise solution, the provider is responsible for the installation and maintenance of the product, whereas with a Cloud-based solution, the customer is responsible for it.
( X K% e4 q7 p4 O2 M - With an on-premise solution, the provider is responsible for the installation, but the customer is responsible for the maintenance of the product.2 A8 R- }* X% Q( Q7 d
2 \6 L" o7 E+ w1 V7 J. n
4. Whileusing Cisco Firepower's Security Intelligence policies, which two criteria isFirepower block based upon? (Choose two) + Y- B+ @3 R* i' \& u6 t2 W
- URLs
$ ?6 ]4 ]4 W4 i" G. @ - port numbers
: B& U: k1 W w" i- H - protocol IDs
+ ^* y# s: b6 A( J" ~ - MAC addresses
* g7 q! ^' e* N4 b5 t5 w8 ? - IP addresses4 o6 t k) e l: Q/ ~/ o+ v1 D2 e
" i" ~$ r s2 j6 Q" M' c
5. Refer to theexhibit. Anadministrator is adding a new Cisco FTD device to their network and wants tomanage it with Cisco FMG. The Cisco FTD is not behind a NAT device.* |, V8 ?" ^6 ^: n w$ O `
/ u% d+ x! [9 t* {& J4 kWhich command is needed to enable this on the Cisco FTD?
% i; H: H# s0 v* i/ n# P - configure manager add DONTRESOLVE kregistration key>
2 Q) y' x( _2 L+ |6 t/ A) R" f. U# S3 q - configure manager add <FMC IP address> <registration key> 16& v. [7 B5 E9 A: O% h
- configure manager add DONTRESOLVE <registration key> FTD123
2 O* _$ f. n4 K1 _" b - configure manager add <FMC IP address> <registration key>
5 @6 o# B& m: y9 [3 z 7 h! ~" d; D" X" O9 |5 w
9 }7 b# f% z1 l4 Z6 j
|