Use CSA MC to configure rules

Posted on
Like what you see? Share it.Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

Questions derived from the Cisco Security Agent Guide, Chapter 4: Understanding CSA Policies, Modules, and Rules, CSA Rules, pp. 94-96. 642-513 – Securing Hosts Using Cisco Security Agent.

Objective: Use CSA MC to configure rules
SubObjective: Describe and configure the Network Shield Rule

 

Item Number: 642-513.3.7.4
Multiple Answer, Multiple Choice

 

In the Network Shield Rule Configuration screen, which of the following checks are displayed under the IP Security Checks section? (Choose two.)

 

 

  1. Trace route
  2. Malicious packet
  3. ICMP covert channel
  4. Source routed packet
  5. Unrestricted network connectivity during boot

 

Answer:
A. Trace route
D. Source routed packet

 

Tutorial:
In the Network Shield Rule Configuration screen, the following checks are displayed under the IP Security Checks section:

 

 

  • Invalid IP header: Ensures a consistent IP header
  • Invalid IP address: Protects against invalid IP addresses.
  • Source routed packet: Source routed packets are matched.
  • Trace route: Traceroute packets are matched.

 

Reference:
For more information, see Available Rule Types
http://cisco.com/en/US/products/sw/secursw/ps5057/products_configuration_guide_chapter09186a008066eb30.html#wp1169688

Like what you see? Share it.Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone
cmadmin

ABOUT THE AUTHOR

Posted in Archive|

Comment: