Manualshelf

Datasheet

ManualsBrandsCisco ManualsComputer equipmentIDS 4210 - Intrusion Detection Sys 4210 Sensor
21222324252627282930
9E0 - 100
Leading the way in IT testing and certification tools, www.testking.com
- 24 -
Explanation:
Valid Service Pack upgrade
idsm(config)# apply ftp://user@10.0.0.1//IDSMk9-sp-3.0-3-S10.exe
Reference:
Cisco Intrusion Detection System - Upgrading the Intrusion Detection System Module
I am not sure about answer D. I really cant find anything that supports it. In the new course
the command is update. I think that the answer may be E using the apply command as shown
in the explanation.
QUESTION NO: 42
Which network management product is used to deploy configurations to groups of IDS
devices?
A. IDM
B. IDS Management Center
C. Security Monitoring
D. IEV
Answer: B
Explanation:
The Management Center for IDS Sensors is a tool with a scalable architecture for configuring
Cisco network sensors, switch IDS sensors, and IDS network modules for routers.
Uses a
web-based interface.
Reference:
CiscoWorks Management Center for IDS Sensors
QUESTION NO: 43
A hospital’s security policy states that any e-mail messages with the words SSN or Social
Security must be detected by the IDS Sensor.
Which Cisco IDS signature micro-engine should be used to create the signature?
A. Atomic.TCP
B. Atomic.UDP
C. String.ICMP
D. String.TCP
E. String.UDP
Answer: E (or D)
Note: I am not sure why the original person who answered this question picked tcp but I think
that most email is delivered via tcp. However he/she is correct in that it is a string signature.
Off hand I have a slight doubt if most email is delivered via UDP or TCP. If you think that
most email is UDP pick E if you don’t then stay with the given answer.
ICMP is wrong.
Atomic is one packet and wrong.
The course manual does not give examples of String signatures.