Cisco.ActualTests.700-270.v2015-12 · PDF fileA service policy redirects traffic from the...

http://www.gratisexam.com/

700-270

Number: 000-000Passing Score: 800Time Limit: 120 minFile Version: 1.0


Cisco

700-270

NGFW Express for Account Managers


Exam A

QUESTION 1Which FirePOWER services capability supports seamless processing after an adaptive security appliance stateful failover event?

A. midsession pickupB. TCP interceptC. SFR stateful failoverD. FireSIGHT central policy distribution

Correct Answer: ASection: (none)Explanation

Explanation/Reference:

QUESTION 2What is the minimum Cisco ASA software version that is required to support FirePOWER services?

A. 9.1.2B. 8.6C. 9.2.2D. 9.4

Correct Answer: CSection: (none)Explanation


QUESTION 3Which three options are important when positioning a next-generation firewall solution? (Choose three.)

A. performanceB. resistance to evasionC. current install base


D. interoperabilityE. stabilityF. nonproprietary

Correct Answer: ABESection: (none)Explanation


QUESTION 4How is traffic forwarded from the Cisco ASA to the FirePOWER services module for analysis?

A. The SFR is transparent and automatically sees all traffic.B. A service policy redirects traffic from the Cisco ASA packet-processing path to the SFRC. The SFR has a dedicated data interfaceD. The SFR is a standalone appliance that is inserted inline in the data path

Correct Answer: BSection: (none)Explanation


QUESTION 5NGIPS rulesets are configured using which management application?


A. FireSIGHT Management CenterB. Cisco IDM


C. Cisco IMED. Cisco ASDM



QUESTION 6In a stateful firewall application, inspection occurs at which layer of the OSI model?

A. 7B. 3C. 4D. 2



QUESTION 7A customer wants to block instant-messaging traffic within Facebook Chat for its employees. Which feature licensing option provides this capability'?

A. default FirePOWER servicesB. IPSC. URLD. AVCE. botnet filtering

Correct Answer: DSection: (none)Explanation



QUESTION 8Which mode of IPS deployment enforces blocking actions on malicious traffic?

A. out-of-bandB. inlineC. monitorD. passive



QUESTION 9A file-type embedded attack is an example of which loC event category?


A. security intelligenceB. IPSC. malwareD. firewall




QUESTION 10Which subscription license terms are available for FirePOWER services features?

A. 1 and 2 yearsP ag e | 4P ag e | 4We also offer PRACTICE TEST SOFTWARE with Actual Exam Questions - Try free demo from our Website

B. 1 and 3 yearsC. 1 and 5 yearsD. 1, 2, and 3 years



QUESTION 11Cisco FirePOWER services has been extended to which SMB-focused product?

A. Cisco ASA 5506-XB. Cisco ASA 5505-XC. Cisco ASA 5510-XD. Cisco ASA 5600-X



QUESTION 12Which impact flag indicates that action is to be taken immediately?

A. 1B. 0


C. 5D. 4



QUESTION 13Which option is an attribute of a day-zero attack?


A. It can be mitigated with content inspection that is based on static rulesetsB. It can be prevented through RFC application-level compliance checks.C. It consists of a set of known threat vectorsD. It can be mitigated through the external intelligence and contextual awareness



QUESTION 14When deploying the Cisco ASA with FirePOWER services module, which two functions are performed by the Cisco ASA? (Choose two.)

A. file disposition checksB. NATC. TCP intercept


D. file capturingE. application visibility and control

Correct Answer: BCSection: (none)Explanation


QUESTION 15What are two challenges that are faced by traditional defense-in-depth security solutions? (Choose two.)

A. Applying security policy is generally by manual and static methodsB. They require that all components be provided by a single vendorC. Large amounts of logged data lead to poor threat visibility.D. They mandate network change controlE. Security services must be outsourced.



QUESTION 16Which security feature can be applied in the "after" stage of the attack continuum'?

A. NGIPSB. advanced malware protectionC. VPNsD. stateful firewall installation




QUESTION 17A file that was previously marked as "clean" has its disposition changed to "malware " Which FirePOWER feature license is required to enable analysis of the filepropagation path within the network?

A. IPSB. AVCC. URLD. AMP



QUESTION 18Which FirePOWER services feature is associated with FireSIGHT recommendations that may be automatically applied as policy?

A. URL filteringB. AMPC. AVCD. IPS



QUESTION 19Which version of AMP is available on the Cisco ASA with FirePOWER services module?

A. networkB. content


C. endpointD. applications



QUESTION 20What are the two requirements for conducting a customer on-site evaluation? (Choose two.)

A. FirePOWER services module deployed in monitor-only modeB. access to Cisco dCloudC. FirePOWER services module deployed in inline modeD. switch with a SPAN portE. switch with SVI in the same subnet as the adaptive security appliance

Correct Answer: ABSection: (none)Explanation


QUESTION 21What is the maximum number of Cisco ASA 5585-X appliances that are supported in a cluster?


A. 16B. 8


C. 2D. 20



QUESTION 22Connections to known CnC sites are an example of which loC event category?

A. firewallB. IPSC. security intelligenceD. malware



QUESTION 23File trajectory services are configured using which management application?

A. Cisco Prime InfrastructureB. Cisco Security ManagerC. Cisco ASDMD. FireSIGHT Management Center




QUESTION 24Which two options are objectives that are defined as part of the "before" stage of the attack continuum? {Choose two.)

A. hardenB. retrospectionC. enforceD. detectE. shun

Correct Answer: ACSection: (none)Explanation


QUESTION 25Which management application can be deployed as a physical or virtual appliance to configure security policy for the FirePOWER services module?

A. FirePOWER services module CLIB. Cisco Security ManagerC. Cisco ASDMD. FireSIGHT Management Center



QUESTION 26What is the level of granularity that is supported by application visibility and control?



A. filtering of instant messaging within an HTTP packetB. filtering by TCP/UDP portsC. filtering by IP addressD. filtering of HTTP packets



QUESTION 27Which FirePOWER services feature is included by default with the base software?

A. AMPB. URLC. IPSD. AVC



QUESTION 28Which Cisco ASA model provides integrated wireless access-point capabilities that are ideal for branch offices'?


A. Cisco ASA 55010W-XB. Cisco ASA 5507W-XC. Cisco ASA 5505W-XD. Cisco ASA 5506W-X



QUESTION 29What are two benefits that are provided by file trajectory services? (Choose two)

A. identifies malware point of entryB. highlights attack propagation pathsC. provides endpoint operating system patchesD. publishes malware gateways on a blacklistE. pushes personal firewall updates to endpoints



QUESTION 30When deploying the Cisco ASA with the FirePOWER services module, which two functions are performed by the FirePOWER services module? (Choose two)

A. file type filteringB. application inspectionC. botnet filteringD. TCP normalizationE. application visibility and control

Correct Answer: AE


Section: (none)Explanation


QUESTION 31Which standout capabilities of FirePOWER services are not available in other next-generation firewall solutions?

A. URL filteringB. AVCC. firewall high availabilityD. file trajectory and retrospection



QUESTION 32Which FireSIGHT Management Center appliance is required to support up to 100 managed devices?


A. 4000B. 2000C. 750D. 500

Correct Answer: ASection: (none)


Explanation


QUESTION 33Which product supports the FirePOWER services hardware module?

A. Cisco ASA 5525-XB. Cisco ASA 5555-XC. Cisco ASA 5800-XD. Cisco ASA 5585-X



QUESTION 34What is the advantage of leveraging an external intelligence source for security policy?

A. provision of industry-best practices documentB. provision of software upgrades and bug fixesC. provision of real-time dynamic analyticsD. provision of outsourced security personnel



QUESTION 35Which two network visibility categories are supported by FirePOWER services beyond a typical next- generation firewall solution? (Choose two.)

A. mobile devices


B. applicationsC. usersD. file transfersE. operating systems



QUESTION 36Detection of an exploit kit that is installed on a device is an example of which loC event category?

A. firewallB. malwareC. security intelligenceD. IPS



QUESTION 37Which statement is true when describing the current threat landscape?

A. Threats can be prevented by not enabling BYOD servicesB. Threats can be prevented using proactive static policies.C. All companies connect to domains that host malicious files or services.D. If a threat is discovered within the first 24 hours, it can be contained.




QUESTION 38Which method of discovery is used during impact assessment?

A. passiveB. statistical analysisC. inlineD. heuristic analysis



QUESTION 39Which activity leads to better network visibility?


A. adding time stamps to log eventsB. enabling all IPS signaturesC. adding user context to eventsD. forwarding all events to a syslog server




QUESTION 40Which type of Cisco services offering is aimed at helping customers to plan and upgrade new FirePOWER deployments?

A. Cisco Advanced ServicesB. Cisco Managed ServicesC. Cisco SMARTnetD. Cisco Migration Services



QUESTION 41Which security technique should be implemented to remediate after a threat is discovered?

A. application controlB. web security deploymentC. retrospectionD. NGIPS ruleset



QUESTION 42Where are files that are awaiting a disposition check held during file analysis?

A. cloud-based, company-specific repositoryB. cloud-based sandboxC. Cisco ASA SSD drive


D. isolated VLAN



QUESTION 43A customer wants to implement FirePOWER services with AVC and IPS on its Cisco ASA 5515-X. This device is currently deployed with a legacy IPS module.Which three steps may be required to upgrade? (Choose three.)

A. Discuss a Cisco ASA upgrade to maintain performanceB. Purchase a subscription license for IPS.C. Remove the SSD drive.D. Purchase a subscription license for AVC and IPS.E. Remove the legacy IPS moduleF. Purchase the SFR hardware module

Correct Answer: ADESection: (none)Explanation


QUESTION 44Which AMP feature provides continuous analysis capabilities?

A. retrospection



B. file reputationC. file analysisD. sandboxing



QUESTION 45Which ruleset is used to define FirePOWER services NGIPS policies?

A. TalosB. ClamC. SnortD. Sniffer



QUESTION 46Which two guidelines are important when showing proof of value using Cisco dCloud? (Choose two.)

A. Have demonstration screens open and prepopulated with dataB. Prepare primary customer takeawaysC. Ensure that the correct software versions are installed on demonstration equipment.D. Ensure that the customer has Cisco SIO cloud access.E. Install FireSIGHT Management Center on a demonstration workstation




QUESTION 47What does the NSS Labs Next Generation Firewall Security Value Map measure?

A. security effectiveness versus total cost of ownershipB. security effectiveness versus total system downtimeC. total cost of ownership versus advertised maximum throughputD. security effectiveness versus advertised maximum throughput



QUESTION 48Which two high-availability deployment modes support FirePOWER services? (Choose two.)

A. monitor modeB. clusteringC. active/standbyD. multicontextE. active/active



QUESTION 49Which two deployment options are available for FireSIGHT Management Center? (Choose two )

A. on-box application for Cisco ASA


B. Windows serverC. dedicated applianceD. module embedded in Cisco Prime InfrastructureE. virtual machine

Correct Answer: CESection: (none)Explanation



Cisco.ActualTests.700-270.v2015-12 · PDF fileA service policy redirects traffic from the...

Documents

Transcript of Cisco.ActualTests.700-270.v2015-12 · PDF fileA service policy redirects traffic from the...