Datasheet
9E0 - 100
Leading the way in IT testing and certification tools, www.testking.com
- 20 -
Which Cisco IDS Sensor configuration parameter affects the source and destination
values included in an IDS alarm event?
A. Data source
B. IP fragment reassembly
C. External network definition
D. Internal network definition
E. TCP reassembly
F. Sensor IP address
Answer: D
Explanation:
You can use the source and destination location to alter your response to specific alarms.
Traffic coming from a system within your network to another internal host that generates an
alarm may be acceptable, whereas, you might consider this same traffic, originating from an
external host or the Internet, totally unacceptable.
Reference: Cisco Secure Intrusion Detection System (Ciscopress) page 183
QUESTION NO: 33
Which TCP session reassembly configuration parameter enforces that a valid TCP
session be establish before the Cisco IDS Sensor’s sensing engine analyzes the traffic
associated with the session?
A. TCP open establish timeout
B. TCP embryonic timeout
C. TCP closed timeout
D. TCP three way handshake
E. TCP sequence timeout
Answer: D
Explanation:
Select the TCP three way handshake if you want the sensor to tack only those sessions for
which the three-way handshake is completed. The other options for reassembly are:
No reassembly
Loose reassembly
Strict reassembly
Reference: Cisco Secure Intrusion Detection System (Ciscopress) page 419
QUESTION NO: 34
Which common command are you going to use to clear the contents of the translation
slots when needed?
A. clear xlate
B. clear translate
C. clear all