Manualshelf

Datasheet

ManualsBrandsCisco ManualsOtherIDS-4230-FE - Intrusion Detection Sys Fast Ethernet Sensor
71727374757677787980
642 -531
Leading the way in IT testing and certification tools, www.testking.com
- 79 -
Which type of ACL is allowed when implementing the Cisco IDS IP blocking feature
using post-shun ACLs?
A. Numbered IP extended
B. Named IPX extended
C. Numbered IP standard
D. Numbered IPX standard
Answer: A
Explanation: Extended ACLs enable you to create fine-tuned filtering policies.
Reference: Cisco Secure Intrusion Detection System (Ciscopress) page 464
Section 3: Configure a Sensor to perform blocking with a Cisco
IDS device (2 questions)
QUESTION NO: 1
A Cisco IDS Sensor has been configured to perform IP Blocking.
Which Cisco IDS service must be running on the Sensor?
A. Logged
B. Eventd
C. Blocked
D. Managed
E. Shunned
Answer: D
Explanation:
Managed - The managed daemon is responsible for managing and monitoring network
devices (routers and packet filters). For example, when packetd identifies that a certain type of
attack should be shunned, it sends a shun command to managed via the post office facility.
Reference: Cisco Secure IDS Internal Architecture
QUESTION NO: 2
The new TestKing trainee technician wants to know which command a PIX Firewall use
to block attacks, as directed by an IDS blocking Sensor. What would your reply be?
A. acl
B. shun
C. access
D. set security acl ip
E. conduit