★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW 300-207 Exam Dumps (PDF & VCE):
Available on: https://www.certleader.com/300-207-dumps.html


Exam Code: 300-207 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Implementing Cisco Threat Control Solutions (SITCS)
Certification Provider: Cisco
Free Today! Guaranteed Training- Pass 300-207 Exam.

2021 Feb cisco 300-207 book:

Q41. Refer to the exhibit. 

What CLI command generated the output? 

A. smtproutes 

B. tophosts 

C. hoststatus 

D. workqueuestatus 

Answer:


Q42. Which command disables SSH access for administrators on the Cisco ESA? 

A. interfaceconfig 

B. sshconfig 

C. sslconfig 

D. systemsetup 

Answer:


Q43. Which antispam technology assumes that email from server A, which has a history of distributing spam, is more likely to be spam than email from server B, which does not have a history of distributing spam? 

A. Reputation-based filtering 

B. Context-based filtering 

C. Cisco ESA multilayer approach 

D. Policy-based filtering 

Answer:


Q44. Which four statements are correct regarding management access to a Cisco Intrusion Prevention System? (Choose four.) 

A. The Telnet protocol is enabled by default 

B. The Telnet protocol is disabled by default 

C. HTTP is enabled by default 

D. HTTP is disabled by default 

E. SSH is enabled by default 

F. SSH is disabled by default 

G. HTTPS is enabled by default 

H. HTTPS is disabled by default 

Answer: B,D,E,G 


Q45. A system administrator wants to know if the email traffic from a remote partner will activate special treatment message filters that are created just for them. Which tool on the Cisco Email Security gateway can you use to debug or emulate the flow that a message takes through the work queue? 

A. the message tracker interface 

B. centralized or local message tracking 

C. the CLI.findevent command 

D. the trace tool 

E. the CLI.grep command 

Answer:


Far out robertshaw 300-207 manual:

Q46. Which two options are characteristics of router-based IPS? (Choose two.) 

A. It supports custom signatures 

B. It supports virtual sensors. 

C. It supports multiple VRFs. 

D. It uses configurable anomaly detection. 

E. Signature definition files have been deprecated. 

Answer: C,E 


Q47. A network engineer can assign IPS event action overrides to virtual sensors and configure 

which three modes? (Choose three.) 

A. Anomaly detection operational mode 

B. Inline TCP session tracking mode 

C. Normalizer mode 

D. Load-balancing mode 

E. Inline and Promiscuous mixed mode 

F. Fail-open and fail-close mode 

Answer: A,B,C 


Q48. Which three options are IPS signature classifications? (Choose three.) 

A. tuned signatures 

B. response signatures 

C. default signatures 

D. custom signatures 

E. preloaded signatures 

F. designated signatures 

Answer: A,C,D 


Q49. Which Cisco technology prevents targeted malware attacks, provides data loss prevention and spam protection, and encrypts email? 

A. SBA 

B. secure mobile access 

C. IPv6 DMZ web service 

D. ESA 

Answer:


Q50. Which two conditions must you configure in an event action override to implement a risk rating of 70 or higher and terminate the connection on the IPS? (Choose two.) 

A. Configure the event action override to send a TCP reset. 

B. Set the risk rating range to 70 to 100. 

C. Configure the event action override to send a block-connection request. 

D. Set the risk rating range to 0 to 100. 

E. Configure the event action override to send a block-host request. 

Answer: A,B