Which three items are main components of Cisco Modular Policy Framework? (Choose three.)

Study the exhibit carefully. Apply the HTTP inspection map named HTTP_POLICY to the
partnernet interface of the security appliance. Which step will be taken by the security appliance
as a result of its configuration for HTTP traffic that enters its partnernet interface?

DAP is short for Dynamic Access Policies. You are configuring a DAP for SSL VPN connections to
your Cisco ASA security appliance. You add an Endpoint Attribute Type of “File” and select the
Endpoint ID of “10,” according to the presented configuration. Within which area of the Cisco ASA
security appliance configuration is this endpoint attribute defined?

An SSL VPN (Secure Sockets Layer virtual private network) is a form of VPN that can be used
with a standard Web browser. SSL VPNs can provide increased flexibility over IPsec VPNs, on the
basis of the location of the client and ownership of the endpoint. But, security of the endpoint is a
potential problem. Which three potential security issues could the Cisco ASA security appliance
address through SSL VPN policies or features? (Select three.)

While implementing QoS, which two types of queues are available on the Cisco ASA security
appliance? (Choose two.)

The following exhibit shows a Cisco ASA security appliance configured to participate in a VPN
cluster. According to the exhibit, to which value will you set the priority to increase the chances of
this Cisco ASA security appliance becoming the cluster master?

On the basis of the following information. Applying the HTTP inspection map named
MY_HTTP_MAP to the outside interface of the security appliance. Because of this configuration,
which action will be taken by the security appliance on HTTP traffic entering its outside interface?

NOTE: The CLI version of this configuration is provided here.
regex URL_ABC “.+abc\.com”
regex URL_DEF “.+def\.com”
regex URL_XYZ “.+xyz\.com”
. . .
class-map OUTSIDE_CLASS
match any
class-map type regex match-any URLs
match regex URL_ABC
match regex URL_XYZ
class-map type inspect http match-all
RESTRICTED_HTTP
match request body length gt 1000
match not request uri regex class URLs
. . .
policy-map type inspect http MY_HTTP_MAP
parameters
protocol-violation action drop-connection
class RESTRICTED_HTTP
drop-connection
policy-map OUTSIDE_POLICY
class OUTSIDE_CLASS
inspect http MY_HTTP_MAP
. . .
service-policy OUTSIDE_POLICY interface outside

In your company, you are responsible for administrating a Cisco ASA security appliance with a
Cisco ASA CSC-SSM. You use a new version of software to upgrade the CSC-SSM. After
finishing the upgrade, you issue the show module 1 detail command; The following exhibit displays
the results of this command. What is the reason that the status of the CSC-SSM is “Up” when it is
not activated?

You work as a network administrator for your company. You are in charge of a Cisco ASA security
appliance for remote access IPsec VPNs, you are assisting a user who has a digital certificate
configured for the Cisco VPN Client. How to find the MD5 and SHA-1 thumb print of the certificate
on the basis of the following exhibit?

Charles is a network administrator for his company. He has configured Cisco ASA security
appliance for SSL VPNs. What will happen when the remote user has successfully authenticated
according to the following exhibit?