300-207 Exam Questions - Online Test

300-207 Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

Cause all that matters here is passing the Cisco 300-207 exam. Cause all that you need is a high score of 300-207 Implementing Cisco Threat Control Solutions (SITCS) exam. The only one thing you need to do is downloading Exambible 300-207 exam study guides now. We will not let you down with our money-back guarantee.

Q21. Which Cisco ESA command is used to edit the ciphers that are used for GUI access? 

A. interfaceconfig 

B. etherconfig 

C. certconfig 

D. sslconfig 

Answer: D 

Q22. Which two commands are used to verify that CWS redirection is working on a Cisco ASA appliance? (Choose two.) 

A. show scansafe statistics 

B. show webvpn statistics 

C. show service-policy inspect scansafe 

D. show running-config scansafe 

E. show running-config webvpn 

F. show url-server statistics 

Answer: A,C 

Q23. With Cisco IDM, which rate limit option specifies the maximum bandwidth for rate-limited traffic? 

A. protocol 

B. rate 

C. bandwidth 

D. limit 

Answer: B 

Q24. Which statement about Cisco IPS Manager Express is true? 

A. It provides basic device management for large-scale deployments. 

B. It provides a GUI for configuring IPS sensors and security modules. 

C. It enables communication with Cisco ASA devices that have no administrative access. 

D. It provides greater security than simple ACLs. 

Answer: B 

Q25. Refer to the exhibit. 

What CLI command generated the output? 

A. smtproutes 

B. tophosts 

C. hoststatus 

D. workqueuestatus 

Answer: B 

Q26. Cisco AVC allows control of which three of the following? (Choose three.) 

A. Facebook 

B. LWAPP 

C. IPv6 

D. MySpace 

E. Twitter 

F. WCCP 

Answer: A,D,E 

Q27. What are three best practices for a Cisco Intrusion Prevention System? (Choose three.) 

A. Checking for new signatures every 4 hours 

B. Checking for new signatures on a staggered schedule 

C. Automatically updating signature packs 

D. Manually updating signature packs 

E. Group tuning of signatures 

F. Single tuning of signatures 

Answer: B,C,E 

Q28. Which three statements about Cisco ASA CX are true? (Choose three.) 

A. It groups multiple ASAs as a single logical device. 

B. It can perform context-aware inspection. 

C. It provides high-density security services with high availability. 

D. It uses policy-based interface controls to inspect and forward TCP- and UDP-based packets. 

E. It can make context-aware decisions. 

F. It uses four cooperative architectural constructs to build the firewall. 

Answer: B,E,F 

Q29. The Web Cache Communication Protocol (WCCP) is a content-routing protocol that can facilitate the redirection of traffic flows in real time. Your organization has deployed WCCP to redirect web traffic that traverses their Cisco Adaptive Security Appliances (ASAs) to their Cisco Web Security Appliances (WSAs). 

The simulator will provide access to the graphical user interfaces of one Cisco ASA and one Cisco WSA that are participating in a WCCP service. Not all aspects of the GUIs are implemented in the simulator. The options that have been implemented are sufficient to determine the best answer to each of the questions that are presented. 

Your task is to examine the details available in the simulated graphical user interfaces and select the best answer. 

How many Cisco ASAs and how many Cisco WSAs are participating in the WCCP service? 

A. One Cisco ASA or two Cisco ASAs configured as an Active/Standby failover pair, and one Cisco WSA. 

B. One Cisco ASA or two Cisco ASAs configured as an Active/Active failover pair, and one Cisco WSA. 

C. One Cisco ASA or two Cisco ASAs configured as an Active/Standby failover pair, and two Cisco WSAs. 

D. One Cisco ASA or two Cisco ASAs configured as an Active/Active failover pair, and two Cisco WSAs. 

E. Two Cisco ASAs and one Cisco WSA. 

F. Two Cisco ASAs and two Cisco WSAs. 

Answer: A 

Explanation: 

We can see from the output that the number of routers (ASA’s) is 1, so there is a single ASA or an active/ standby pair being used, and 1 Cache Engine. If the ASA’s were in a active/active role it would show up as 2 routers. 

Q30. A network engineer can assign IPS event action overrides to virtual sensors and configure 

which three modes? (Choose three.) 

A. Anomaly detection operational mode 

B. Inline TCP session tracking mode 

C. Normalizer mode 

D. Load-balancing mode 

E. Inline and Promiscuous mixed mode 

F. Fail-open and fail-close mode 

Answer: A,B,C