Professional Documents
Culture Documents
CCNP Q
CCNP Q
What is a feature of Cisco NetFlow Secure Event Logging for Cisco ASAs?
A. Multiple NetFlow collectors are supported.
B. Advanced NetFlow v9 templates and legacy v5 formatting are supported.
C. Flow-create events are delayed.
D. Secure NetFlow connections are optimized for Cisco Prime Infrastructure
How is data sent out to the attacker during a DNS tunneling attack?
A. as part of the UDP/53 packet payload
B. as part of the domain name
C. as part of the TCP/53 packet header
D. as part of the DNS response packet
Which benefit does endpoint security provide the overall security posture of an organization?
A. It streamlines the incident response process to automatically perform digital forensics on the
endpoint.
B. It allows the organization to mitigate web-based attacks as long as the user is active in
the domain.
C. It allows the organization to detect and respond to threats at the edge of the network.
D. It allows the organization to detect and mitigate threats that the perimeter security devices do
not detect.
Which two types of connectors are used to generate telemetry data from IPFIX records in a
Cisco Secure Workload implementation? (Choose two.)
A. ADC
B. ERSPAN
C. Cisco ASA
D. NetFlow
E. Cisco Secure Workload
What is a functional difference between a Cisco ASA and Cisco IOS router with Zone-Based
Policy Firewall?
A. The Cisco IOS router with Zone-Based Policy Firewall denies all traffic by default, whereas the
Cisco ASA starts out by allowing all traffic until rules are added.
B. The Cisco IOS router with Zone-Based Policy Firewall can be configured for high availability,
whereas the Cisco ASA cannot.
C. The Cisco ASA can be configured for high availability whereas the Cisco IOS router with Zone-
Based Policy Firewall cannot.
D. The Cisco ASA denies all traffic by default whereas the Cisco IOS router with Zone-Based Policy
Firewall starts out by allowing all traffic, even on untrusted interfaces
How does Cisco Umbrella protect clients when they operate outside of the corporate network?
A. by modifying the registry for DNS lookups
B. by using Active Directory group policies to enforce Cisco Umbrella DNS servers
C. by using the Cisco Umbrella roaming client
D. by forcing DNS queries to the corporate name servers
Email security has become a high priority task for a security engineer at a large multi-national
organization due to ongoing phishing campaigns. To help control this, the engineer has
deployed an Incoming Content Filter with a URL reputation of (-10.00 to -6.00) on the Cisco ESA
Which action will the system perform to disable any links in messages that match the filter?
A. Defang
B. Quarantine
C. FilterAction
D. ScreenAction
Which two VPN tunneling protocols support the use of IPsec to provide data
integrity, authentication, and data encryption? (Choose two.)
A. Secure Socket Tunneling Protocol
B. OpenVPN
C. Generic Routing Encapsulation Protocol
D. Layer 2 Tunneling Protocol
E. Point-to-Point Tunneling Protocol