Embed Size (px)
DESCRIPTION
Our Exam 300-207 Preparation Material provides you everything you will need to take your 300-207 Exam. The 300-207 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you pass test in your first try, and also save your valuable time.
Citation preview
Exam Number/Code:300-207
Exam Name:Implementing CiscoThreat Control Solutions
Version: Demo
http://cert24.com/
QUESTION NO: 1During initial configuration, the Cisco ASA can be configured to drop all traffic if the ASACX SSP fails by using which command in a policy-map?
A. cxsc failB. cxsc fail-closeC. cxsc fail-openD. cxssp fail-close
Answer: B
QUESTION NO: 2A network engineer may use which three types of certificates when implementing HTTPSdecryption services on the ASA CX? (Choose three.)
A. Self Signed Server CertificateB. Self Signed Root CertificateC. Microsoft CA Server CertificateD. Microsoft CA Subordinate Root CertificateE. LDAP CA Server CertificateF. LDAP CA Root CertificateG. Public Certificate Authority Server CertificateH. Public Certificate Authority Root Certificate
Answer: B,D,F
QUESTION NO: 3Cisco’s ASA CX includes which two URL categories? (Choose two.)
A. Proxy AvoidanceB. DropboxC. Hate SpeechD. FacebookE. Social NetworkingF. Instant Messaging and Video Messaging
Answer: C,E
QUESTION NO: 4A Cisco Web Security Appliance's policy can provide visibility and control of which twoelements?
(Choose two.)
A. Voice and Video ApplicationsB. Websites with a reputation between -100 and -60C. Secure websites with certificates signed under an unknown CAD. High bandwidth websites during business hours
Answer: C,D
QUESTION NO: 5Which Cisco Web Security Appliance design requires minimal change to endpointdevices?
A. Transparent ModeB. Explicit Forward ModeC. Promiscuous ModeD. Inline Mode
Answer: A
QUESTION NO: 6What step is required to enable HTTPS Proxy on the Cisco Web Security Appliance?
A. Web Security Manager HTTPS Proxy click EnableB. Security Services HTTPS Proxy click EnableC. HTTPS Proxy is enabled by defaultD. System Administration HTTPS Proxy click Enable
Answer: B
QUESTION NO: 7Which two statements about Cisco Cloud Web Security functionality are true? (Choosetwo.)
A. It integrates with Cisco Integrated Service Routers.B. It supports threat avoidance and threat remediation.C. It extends web security to the desktop, laptop, and PDA.D. It integrates with Cisco ASA Firewalls.
Answer: A,D
QUESTION NO: 8Which Cisco Cloud Web Security tool provides URL categorization?
A. Cisco Dynamic Content Analysis EngineB. Cisco ScanSafeC. ASA Firewall ProxyD. Cisco Web Usage Control
Answer: D
QUESTION NO: 9Which three functions can Cisco Application Visibility and Control perform? (Choosethree.)
A. Validation of malicious trafficB. Traffic controlC. Extending Web Security to all computing devicesD. Application-level classificationE. MonitoringF. Signature tuning
Answer: B,D,E
QUESTION NO: 10Which two options are features of the Cisco Email Security Appliance? (Choose two.)
A. Cisco Anti-Replay ServicesB. Cisco Destination RoutingC. Cisco Registered Envelope ServiceD. Cisco IronPort SenderBase Network
Answer: C,D
