CCNP Secure IPS FAQ: Verifying System Configuration
Q1. Which of the following is not provided in the output of the show version sensor CLI command?
A. Sensor uptime
B. Recovery partition software version
C. Sensor host name
D. Current sensor software version
E. Previous sensor software version
Q2. Which of the following is not one of the sections of the sensor configuration output?
A. event-action-rules
B. signature-definition
C. network-access
D. trusted-certificates
E. alarm-channel-configuration
Q3. Which of the following is not a valid event type for the show events CLI command?
A. error
B. debug
C. nac
D. status
E. log
Q4. Which of the following is true about viewing sensor statistics?
A. You can only use the sensor CLI to view sensor statistics.
B. You can use the sensor CLI to selectively view statistics based on various categories.
C. You can only use IDM to view sensor statistics.
D. You can use IDM to selectively view statistics based on various categories.
Q5. Which of the following is not a keyword used with the “|” symbol to limit the output of various sensor CLI commands?
A. start
B. begin
C. include
D. exclude
Q6. When you are choosing events to display through IDM, which of the following is not a configuration option?
A. Selecting all events in the Event Store
B. Selecting all high-severity alerts that happened in the last 2 hours
C. Selecting all informational alerts that happened between January 12, 2005, and January 14, 2005.
D. Selecting all NAC events that happened in the last 30 minutes
E. Selecting all log events that happened in the last 2 hours
Q7. Which sensor CLI command captures traffic for the GigabitEthernet0/0 interface and saves it to a file?
A. packet display GigabitEthernet0/0
B. display packet GigabitEthernet0/0
C. capture packet GigabitEthernet0/0
D. packet capture GigabitEthernet0/0
Q8. What does the password keyword do when added to the show tech-support CLI command?
A. password is not a valid option for the show tech-support command.
B. It removes sensitive information, such as passwords, from the tech-support output.
C. It includes sensitive information, such as passwords, in the tech-support output.
D. It is used with the destination keyword to specify login credentials for the destination system.
Q9. What is the tech-support output called in IDM?
A. Tech-support report
B. System report
C. Operational report
D. Diagnostic report
E. IDM does not provide tech-support output
Q10. Which sensor CLI command would you use to configure SNMP parameters on your sensor?
A. service snmp
B. service notification
C. service host
D. service logger
E. service network-access
Q11. Which sensor CLI command would you use to display the sensor uptime and previous sensor software version?
Q12. What are the sections of the sensor configuration file output?
Q13. What do the different sections of the sensor configuration file correspond to?
Q14. Which sensor CLI command displays the Product Evolution Program (PEP) information for your sensor?
Q15. What is the main difference between displaying sensor statistics via the CLI and displaying sensor statistics by using IDM?
Q16. In the sensor CLI, which command displays events, and which types of events can you display?
Q17. What are the three ways to specify the time frame for events when you use IDM to display events?
Q18. Which sensor CLI command enables you to view the operational status of the interfaces on the sensor?
Q19. Which CLI command captures network traffic to a tcpdump capture file?
Q20. Which CLI command captures network traffic and displays it in the screen for all Gigabit Ethernet interfaces?
Q21. Which sensor CLI command displays a comprehensive list of status and system information about your sensor?
Q22. What does the diagnostic report in IDM provide?
Q23. Which service notification option removes the size limit on SNMP traps?
Q24. What does the error-filter option of the service notification command do?