Free Access to Cisco.200-201.v2024-05-09.q156 with Valid Practice Test (Page 25)

Request Exam Contact

Home
View All Exams
New QA's
Upload

PRACTICE EXAMS:

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
ISC
SAP
EMC
PMI
HP
Salesforce
Other

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
ISC
SAP
EMC
PMI
HP
Salesforce

Home
Cisco Certification
200-201 Exam
Cisco.200-201.v2024-05-09.q156 Dumps

««
«
…
20
21
22
23
24
25
26
27
28
29
…
»
»»

Question 116

Refer to the exhibit.

What is the potential threat identified in this Stealthwatch dashboard?

A.A policy violation is active for host 10.10.101.24.
B.A host on the network is sending a DDoS attack to another inside host.
C.There are three active data exfiltration alerts.
D.A policy violation is active for host 10.201.3.149.

Correct Answer: C

Explanation
"EX" = exfiltration
And there are three.
Also the "suspect long flow" and "suspect data heading" suggest, for example, DNS exfiltration
https://www.cisco.com/c/dam/en/us/td/docs/security/stealthwatch/management_console/smc_users_guide/SW_6 page 177.

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 117

Which data type is necessary to get information about source/destination ports?

A.session data
B.connectivity data
C.statistical data
D.alert data

Correct Answer: B

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 118

Which principle is being followed when an analyst gathers information relevant to a security incident to determine the appropriate course of action?

A.data mining
B.due diligence
C.rapid response
D.decision making

Correct Answer: C

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 119

Refer to the exhibit.

What is shown in this PCAP file?

A.Timestamps are indicated with error.
B.The protocol is TCP.
C.The User-Agent is Mozilla/5.0.
D.The HTTP GET is encoded.

Correct Answer: C

The PCAP file shows a network packet capture of an HTTP GET request from a client to a server. The User-Agent header field identifies the type and version of the client software that generated the request. In this case, the User-Agent is Mozilla/5.0, which indicates that the client is using a Mozilla-based browser or application. The User-Agent can help the server to customize the response based on the client's capabilities and preferences. References: Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) v1.0, Module 3: Network Protocols and Services, Lesson 3.2: HTTP and HTTPS, Topic 3.2.1: HTTP Headers.
1of30

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 120

Which data type is necessary to get information about source/destination ports?

A.statistical data
B.session data
C.connectivity data
D.alert data

Correct Answer: B

Session data provides information about the five tuples; source IP address/port number, destination IP address/port number and the protocol What is Connectivity Data? According to IBM - Connectivity data defines how entities are connected in the network. It includes connections between different devices, and VLAN-related connections within the same devicehttps://www.ibm.com/docs/en/networkmanager/4.2.0?topic=relationships-connectivity-data

Comment: *

Name: *

Email: *

Verification: *

insert code

««
«
…
20
21
22
23
24
25
26
27
28
29
…
»
»»

[×]

Download PDF File

Enter your email address to download Cisco.200-201.v2024-05-09.q156 Dumps

Email:

Our website provides the Largest and the most Latest vendors Certification Exam materials around the world.

Using dumps we provide to Pass the Exam, we has the Valid Dumps with passing guranteed just which you need.

DMCA
About
Contact Us
Privacy Policy
Terms & Conditions

©2026 FreeQAs

www.freeqas.com materials do not contain actual questions and answers from Cisco's certification exams.

Web Analytics Made Easy - Statcounter