“Tuning” IPS protections to suit the specific needs of an environment can be accomplished by all of the fo
“Tuning” IPS protections to suit the specific needs of an environment can be accomplished
by all of the following EXCEPT:
OF the following, which is NOT a kernel parameter relating to the IPS “Bypass Under Load” settings:
OF the following, which is NOT a kernel parameter relating to the IPS “Bypass Under Load”
settings:
which of the following “Bypass under Load” setting kernel parameters?
“If the machine is under stress, we do not want to leave the stress condition due to a single
measurement (which could be an anomaly), but rather wait for a given length of time, before
changing the condition.” …describes which of the following “Bypass under Load” setting
kernel parameters?
what factor do you think is contributing most to the high amount of false positives Jerry is receiving?
Jerry is a network administrator for ACME Co. Their network contains 5 gateways all
managed by a single Management Server. They are currently receiving an exorbitant
amount of false positive for traffic traversing their network. Based on this information, what
factor do you think is contributing most to the high amount of false positives Jerry is
receiving?
What is the best process for making this change on the Enterprise gateway only?
You have created a number of profiles and activated the relevant protections. Afterwards,
you decide that the ‘Enterprise gateway’ should allow instant messaging. The current profile
enabled for Enterprise gateway blocks instant messaging. The profile for the Enterprise
gateway is currently being used on the Voyager gateway and the Bird of Prey gateway.
What is the best process for making this change on the Enterprise gateway only?
What steps can be taken if IPS is causing a High Performance Impact?
What steps can be taken if IPS is causing a High Performance Impact?
which of the following occurs?
When the IPS ‘Bypass under Load’ mechanism detects that the certain CPU and memory
usage thresholds have been reached, which of the following occurs?
Which of the following IPS Layers is responsible for ensuring that only valid retransmission packets are allow
Which of the following IPS Layers is responsible for ensuring that only valid retransmission
packets are allowed to proceed to destinations?
Which component is responsible for these functions?
One of IPS Layers’ main functions are to ensure compliance to well-defined protocol
standards, detect anomalies if any exist, and assemble the data for further inspection by
other components of the IPS engine. Which component is responsible for these functions?
Which of the following IPS Layers is a set of signatures and/or handlers, where: ?
Which of the following IPS Layers is a set of signatures and/or handlers, where: ? Signature
is a malicious pattern that is searched for. ? Handler is the INSPECT code that performs
more complex inspection.