Life is full of choices. Selection does not necessarily bring you happiness, but to give you absolute opportunity. Once missed selection can only regret. IT-Tests.com's Symantec 251-501 exam training materials are necessary to every IT person. With this materials, all of the problems about the Symantec 251-501 will be solved. IT-Tests.com's Symantec 251-501 exam training materials have wide coverage, and update speed. This is the most comprehensive training materials. With it, all the IT certifications need not fear, because you will pass the exam.
Symantec 251-501 is a certification exam to test IT professional knowledge. IT-Tests.com is a website which can help you quickly pass the Symantec certification 251-501 exams. Before the exam, you use pertinence training and test exercises and answers that we provide, and in a short time you'll have a lot of harvest.
Exam Code: 251-501
Exam Name: Symantec (Intrusion protection solutions)
IT-Tests.com is a professional website. It focuses on the most advanced Symantec 251-501 for the majority of candidates. With IT-Tests.com, you no longer need to worry about the Symantec 251-501 exam. IT-Tests.com exam questions have good quality and good service. As long as you choose IT-Tests.com, IT-Tests.com will be able to help you pass the exam, and allow you to achieve a high level of efficiency in a short time.
Now it is a society of abundant capable people, and there are still a lot of industry is lack of talent, such as the IT industry is quite lack of technical talents. Symantec certification 251-501 exam is one of testing IT technology certification exams. IT-Tests.com is a website which provide you a training about Symantec certification 251-501 exam related technical knowledge.
251-501 (Intrusion protection solutions) Free Demo Download: http://www.it-tests.com/251-501.html
NO.1 Which type of device is associated with passive intrusion detection strategies?
A. firewall
B. packet filter
C. network sniffer
D. management console
Answer: C
Symantec braindump 251-501 251-501
NO.2 Where are Symantec Host IDS events recorded?
A. the DataStore
B. the Directory
C. the Local Agent log
D. the Symantec Host IDS Manager
Answer: A
Symantec test answers 251-501 practice test 251-501 test answers 251-501 exam simulations 251-501 251-501 test
NO.3 Which two methods might you use to create custom policies? (Choose two.)
A. build from scratch
B. use the policy template
C. import system registry settings
D. export and modify a stock policy
Answer: AD
Symantec 251-501 test questions 251-501 251-501 251-501
NO.4 Which activity compromises the integrity of forensic data collected during an incident response
investigation of HostA?
A. modification of firewall settings to collect additional forensic data
B. modification of the system files on HostA to block further intrusions
C. modification of the network intrusion detection system's signature files
D. modification of the intrusion policy at HostA's IPS sensor to block further intrusions
Answer: B
Symantec test 251-501 original questions 251-501 exam dumps 251-501 251-501
NO.5 To which mode must you set the network interface on a network intrusion detection sensor to collect all
packets?
A. report
B. receive
C. transfer
D. promiscuous
Answer: D
Symantec 251-501 original questions 251-501 exam prep 251-501 test 251-501 exam simulations
NO.6 Which three organizations actively monitor the release of patches and upgrades from vendors?
(Choose three.)
A. CERT
B. Microsoft
C. Symantec
D. Security Focus
E. Sun Microsystems
Answer: ACD
Symantec 251-501 certification 251-501 test answers 251-501 251-501 braindump
NO.7 Which Symantec Security Management System view displays Symantec Host IDS events?
A. Symantec Host IDS Events folder, Intrusion Detection Events view
B. Symantec Host IDS Events folder, Intrusion Detection Attack view
C. Intrusion Detection Family folder, Symantec Host IDS Events view
D. Intrusion Detection Reports folder, Symantec Host IDS Attack view
Answer: C
Symantec test 251-501 test answers 251-501 251-501 certification training 251-501 exam simulations 251-501
NO.8 What is a possible risk of operating a decoy-based intrusion detection system on your network?
A. Attackers could use the decoy to compromise another system making you liable.
B. Attackers learn how to circumvent your perimeter defense through the decoy.
C. The decoy reduces network performance by generating broadcast traffic on the network.
D. The decoy may give away information about your network and other legitimate systems
Answer: A
Symantec exam simulations 251-501 exam dumps 251-501
NO.9 Which two types of policies are supported by Symantec Host IDS? (Choose two.)
A. stock
B. update
C. custom
D. best practice
Answer: AC
Symantec 251-501 dumps 251-501 certification
NO.10 Which three types of network traffic should be considered suspicious by a deception-based intrusion
system running on your corporate Intranet? (Choose three. )
A. FTP connection
B. broadcast traffic
C. HTTP get request
D. SSL logon attempt
Answer: ACD
Symantec original questions 251-501 test answers 251-501 questions 251-501 test questions 251-501 exam simulations
NO.11 Which statement is true regarding Symantec Host IDS policy behavior?
A. Policies are collected from Symantec Host IDS Agent computers.
B. Policies are distributed to all Symantec Host IDS Agent computers.
C. Policies are based on application settings on all computers running Symantec Host IDS.
D. Policies are monitored on all computers running Symantec Host IDS Manager services.
Answer: B
Symantec 251-501 certification training 251-501 251-501
NO.12 Which type of attacks are anomaly-based intrusion detection systems primarily designed to detect?
A. novel
B. known
C. host-based
D. network-based
Answer: A
Symantec study guide 251-501 exam dumps 251-501 251-501
NO.13 Which two conditions affect the performance of network-based intrusion detection systems? (Choose
two.)
A. local area network traffic congestion
B. resource utilization on sensor nodes
C. presence of a host-based intrusion detection system
D. concurrent support for intrusion detection across multiple platforms
Answer: AB
Symantec 251-501 251-501 dumps
NO.14 What is a characteristic unique to a host-based intrusion protection solution?
A. service specific
B. protocol specific
C. topology specific
D. operating system specific
Answer: D
Symantec practice test 251-501 251-501 251-501 questions
NO.15 Which service is required to deploy a Symantec Enterprise Security Architecture Manager?
A. IBM HTTP Server
B. iPlanet Web Server
C. Netscape Web Server
D. Internet Information Server
Answer: A
Symantec 251-501 certification 251-501 practice test
NO.16 Which solution provides a robust management and reporting framework for Symantec Host IDS?
A. Symantec Security Management System
B. Symantec Host IDS Manager and Agent Tools
C. Symantec Intrusion Protection Enterprise Manager
D. Symantec Enterprise Security Management Console
Answer: A
Symantec certification training 251-501 pdf 251-501 251-501
NO.17 Click the Exhibit button. What is the minimum number of Symantec Security Management System
Console computers required to monitor the Boston office locally, while managing the entire Symantec
Host IDS deployment from New York?
A. 1
B. 2
C. 4
D. 15
Answer: B
Symantec 251-501 251-501 demo 251-501 251-501 test questions
NO.18 Which service facilitates the automatic update of Symantec Host IDS stock policies?
A. Symantec LiveUpdate
B. Symantec PolicyEditor
C. Symantec PolicyUpdate
D. Symantec Host IDSUpdate
Answer: A
Symantec 251-501 251-501 251-501
NO.19 Which two states are monitored by statistical anomaly filters to detect changes in network activity?
(Choose two.)
A. protocol traffic rates
B. changes in file sizes
C. user account misuse
D. users' activity over the network
Answer: AD
Symantec 251-501 251-501 demo 251-501
NO.20 Which two technologies act as intrusion protection sensors? (Choose two.)
A. routers
B. host agents
C. deception hosts
D. managed switches
Answer: BC
Symantec questions 251-501 pdf 251-501 dumps 251-501 questions
IT-Tests.com website is fully equipped with resources and the questions of Symantec 251-501 exam, it also includes the Symantec 251-501 exam practice test. Which can help candidates prepare for the exam and pass the exam. You can download the part of the trial exam questions and answers as a try. IT-Tests.com provide true and comprehensive exam questions and answers. With our exclusive online Symantec 251-501 exam training materials, you'll easily through Symantec 251-501 exam. Our site ensure 100% pass rate.
没有评论:
发表评论