Describe and configure Cisco IOS IPS

Posted on by
Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

These questions are derived from the Self Test Software Practice Test for Cisco exam #642-825 – Implementing Secure Converged Wide Area Networks.

 

Objective Sequence: Describe and configure Cisco IOS IPS
SubObjective Sequence: Configure Cisco IOS IPS using SD

 

Multiple Answer, Multiple Choice

 

What are the actions that can be configured for signature matches in the IPS while using the SDM? (Choose all that apply.)

 

 

  1. Alarm
  2. Drop
  3. Reset
  4. TCP_Spoof_Block
  5. TCP_Syn_Protect

 

Answer:

 

 

  1. Alarm
  2. Drop
  3. Reset

 

Tutorial:

 

There are three possible actions the IPS can perform as a result of a signature match. Alarm sends an alert message of the match. Drop causes the matching packets to be dropped. Reset causes the connection of the offending host to be dropped. The other options are not valid for IPS actions.

 

Reference:
http://www.cisco.com/en/US/products/sw/secursw/ps5318/products_user_guide_chapter09186a008065cd50.html

Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone
cmadmin

ABOUT THE AUTHOR

Posted in Archive|

Comment: