IBM C2150-561 Dumps

Exam: IBM Security Network Intrusion Prevention System V4.3 Implementation

Play IBM C2150-561 VCE files with Avanset VCE Simulator
 

IBM C2150-561 Exam Tutorial

Showing 1-20 of 89 Questions   (Page 1 out of 5)


Question No : 1

A system backup is recommended before which action?

A. updates to firmware
B. configuring security events
C. updates to security content
D. changes to network configuration


Question No : 2

Where is the IBM Security Network Intrusion Prevention System V4.3 (Network IPS)
Management Interface IPv6 address and gateway set in IBM SecuritySiteProtector
System?

A. in the properties for the Network IPS agent under the Management Interface
B. open the Security Interfaces Policy under Agent-Specific Policies for the Network IPS
C. right-click on the Network IPS agent in the Agent view andselect Management Settings
D. open the Management and TCP Reset Interfaces policy under Agent-Specific Policies for the Network IPS


Question No : 3

Which area of the IBM Protocol Analysis Module technology prevents Skype from using
enterprise network bandwidth?

A. Data Security
B. Application Control
C. Threat Detection and Prevention
D. Client-side ApplicationProtection


Question No : 4

What is the purpose of a Connection Events Policy?

A. to identify failed network connections
B. to identify intermittentnetwork connections
C. to provide a secure connection between servers
D. to provide security alerts on network connection events


Question No : 5

Where can the logs for IBM Security NetworkIntrusion Prevention System be downloaded?

A. in the IBM Security SiteProtector System (SiteProtector) Agent View right-click Select Properties
B. in the SSH Configuration menu select Appliance Management
C. in the SiteProtector Console select theSystem Log Download Utility
D. in the Local Management Interface select the Review Analysis tab and select Logs and Packet Captures


Question No : 6

What does an offline status for an IBM Security Network Intrusion Prevention System V4.3
(Network IPS) in IBM Security SiteProtector System (SiteProtector) mean?

A. The Network IPS has not sent a heartbeat to the Event Collector in an amount of time specified by the unresponsive agent threshold settings in SiteProtector.
B. The Network IPS has not sent a heartbeat to the Agent Manager in an amount of time specified by the unresponsive agent threshold settings in SiteProtector.
C. The Network IPS has not sent a security event to the Event Collector in an amount of time specified by the unresponsive agent threshold settings in SiteProtector.
D. The Network IPS has not sent a security event to the Agent Manager in an amount of time specified by the unresponsive agent threshold settings in SiteProtector.


Question No : 7

While logged in as root into an IBM Security Network Intrusion Prevention System V4.3
appliance, which command allows real time viewing of log file activity?

A. vi <path/to/file>
B. tail -f <path/to/file>
C. search-e <path/to/file>
D. grep 'error' <path/to/file>


Question No : 8

The customer has reinstalled their Agent Manager in IBM Security SiteProtector System
without first unregistering the IBM Security Network Intrusion Prevention System V4.3.
Thedevice is now offline. What is the best next step to restore it to an active state?

A. If the Agent Manager's encryption key archive is available, reboot the device.
B. If the Agent Manager encryption key archive is unavailable, reboot the device.
C. If the Agent Manager encryption key archive is unavailable, restart the iss-spa process.
D. If the Agent Manager's encryption key archive is available, restore the encryption key archive.


Question No : 9

Where are securityupdates installed through the Local Management Interface?

A. Secure tab, select Security Events
B. Manage tab, select Update Settings
C. Secure tab, select Manage Updates page
D. Manage tab, select Updates and Licensing Administration page


Question No : 10

What are two valid IBM Security Network Intrusion Prevention System application modes?
(Choose two.)

A. Monitoring
B. Inline Monitor
C. InlineCapture
D. Inline Protection
E. Active Protection


Question No : 11

Where is the segment's mode configured in the Local Management Interface?

A. from the Manage Systems Settings, select Security Interfaces
B. from the Secure Protection Settings, select Security Interfaces
C. from the Home Dashboard, right-click on the segment, select Mode, and click Save
D. from the Network Dashboard, right-click on the segment, select Mode, and click Deploy


Question No : 12

What is the default password after using the LCD panel to configurean IBM Security
Network Intrusion Prevention System V4.3 appliance for the first time?

A. admin
B. issadmin
C. password is blank
D. randomly system generated


Question No : 13

Which administration tool is used when unregistering an IBM Security NetworkIntrusion
Prevention System appliance managed by IBM Security SiteProtector System
(SiteProtector)?

A. LCD Panel
B. IPS Setup Wizard
C. SiteProtector Console
D. Local Management Interface (LMI)


Question No : 14

Which two Web browsers are supported for connecting to an IBM Security Network
Intrusion Prevention System V4.3 appliance? (Choose two.)

A. Opera
B. Apple Safari
C. Mozilla Firefox
D. Google Chrome
E. Microsoft Internet Explorer


Question No : 15

Which three IBM Security NetworkIntrusion Prevention System models require a network
bypass unit to support a Fail Open state? (Choose three.)

A. GX7800
B. GX6116
C. GX5204
D. GX5208-V2
E. GX4004-V2
F. GX4004-V2-200


Question No : 16

What are two characteristics of inline protection mode? (Choose two.)

A. It allows active block responses.
B. It does not allow block responses.
C. Traffic is inspectedand forwarded through the appliance.
D. Traffic is inspected but does not forward through the appliance.
E. It does not actively block traffic but logs what would have been blocked.


Question No : 17

What is the best Attack Prevention Method that identifies and stops malicious code based
on behavior rather than matching a particular attack signature or pattern?

A. Flow Assembly
B. Content Analysis
C. TCP Reassembly
D. Shellcode Heuristics


Question No : 18

A company is having network issues and the administrator suspects it is related to the
interface settings. Where in the IBM Security Network Intrusion Prevention System V4.3
Local Management Interface would interface setting issues be updated?

A. under Network Settings tab, select TCP/IP settings
B. under Manage Systems Settings, select Security Interfaces, select Port Speed/Duplex settings
C. under Home Appliance Dashboard, locate the interface with issues and right-click on it to select Port Settings
D. under Home Appliance Dashboard, click on the Network Health Dashboard link, select the segment with the issue, right-click on the interface, and select the port settings


Question No : 19

The SOC has reported that a GX5108 IBM Security Network Intrusion Prevention System
V4.3 (Network IPS) has gone offline. As part of initial troubleshooting steps, which test
verifies if the Network IPS appliance can communicate to the Agent Manager?

A. Open a command prompt and perform a ping test over port 2998 using the IP address of the Agent Manager
B. Open a command prompt and perform a telnet test over port 2998 using the IP address ofthe Agent Manager
C. Open a command prompt and perform a ping test over port 3995 using the IP address of the Agent Manager
D. Open a command prompt and perform a telnet test over port 3995 using the IP address of the Agent Manager


Question No : 20

An administrator has two user defined events with identical names. One is assigned to a
global protection domain and the other is assigned to a custom protection domain. Which
protection domain reports the generated event?

A. The event would be generated from the global protection domain because it overridesthe custom protection domain policy.
B. The event would be generated from the custom protection domain because it overrides the global protection domain policy.
C. The event would not fire because the appliance would not know how to parse conflicting protection domain policy user-defined events.
D. The event would generate two separate events, one from the global protection domain and the other from the custom protection domain.


Showing 1-20 of 89 Questions   (Page 1 out of 5)

Close

Close
LIMITED OFFER: 30% DISCOUNT

Exam-Labs PREMIUM Files

Get 30% Discount on all Exam-Labs.com PREMIUM files!



Enter Your Email Address to Receive Your 30% Discount Code

A Confirmation Link will be sent to this email address to verify your login

We value your privacy.
We will not rent or sell your email address

Close
Download Free Demo of VCE
Exam Simulator

Experience Avanset VCE Exam Simulator for yourself.


Simply submit your e-mail address below to get started with our interactive software demo of your free trial.


Enter Your Email Address

Free Demo Limits: In the demo version you will be able to access only first 5 questions from exam.