CCIE Security Practice Exam 3 Which of the following policy assigned to Zone pair sdm-zp-out-IN? ccp-policy-ccp-cls-1 OUT_SERVICE ccp-policy-ccp-cls-2 sdm-cls-http The higher level policy is a VPN security policy categorized in ________. remote access policy compliance policy corporate WAN policy application policy Which of the following protocol secure router management session traffic? SSH Telnet SSTP POP3 Which of the following is the feature of Cisco scan safe technology? consistent cloud based policy RSA Email DLP spam protection None To match multiple entities in a single statement, which type of Cisco ASA access list will be configured? Class map Nested object Object group None Which of the following command will enable Cisco IOS image resilience on a Cisco’s router? Secure boot-image Secure boot on Secure boot-start None Which of the following protocol are included in the inspection Class Map-Out_Service? HTTP SMTP ICMP HTTPs All of the above Which of the following two features are supported by Cisco IronPort Security Gateway? Email encryption HTTPs scanning DDos Protection Span protection When applying a access list on a router, It only filters traffic that passes through the router. True False Which of the following are the charactrics of TACACS+ protocol? (Choose that applies) separates AAA functions offers extensive accounting capabilities encrypts the body of every packet uses UDP ports 1645 or 1812 Loading … Question 1 of 10
