Real 2B0-018 exam answers
New 2B0-018 trainning materials
Exam Number/Code: 2B0-018
Questions and Answers:50 Q&As
Updated Time: 2009-09-14
Register for Exam: Prometric/Pearson VUE
Exam Name:ES Dragon IDS
The following are the 2B0-018 exam answers we get from all of the world company exams vendors include : examsoon 2B0-018 exam ,Testinside 2B0-018 braindumps, Pass4sure 2B0-018 practice exam , Testking 2B0-018 study guides, exam4sure trainning materials. after you read the following 2B0-018 exam demo questions and answers, you will see the high quanity of the exam
The 2B0-018 exam products are designed to maximize your learning productivity and focus only on the important aspects that will help you to pass your 2B0-018 test. We will provide you with 2B0-018 exam questions and verified answers, that reflect the actual exam. These questions and answers provide you with the experience of taking the 2B0-018 actual test. 2B0-018 exam guides are not just questions and answers. 2B0-018 questions have detailed for every answer, ensuring that you fully understand the questions and the concept behind the questions.
Free 640-802 Demo Download
Free demo for Enterasys Networks Enterasys Networks Certification 2B0-018 exam (ES Dragon IDS). You can check out the interface, question quality and usability of our practice exams
Free Download 640-802 Exam Pdf Demo
Free Download 640-802 Exam iEngine Demo
Exam : Enterasys Networks 2B0-018
Title : ES Dragon IDS
1. What is the method that Dragon uses to secure the communication between the remote management host and Dragon Policy Manager?
A. SSH
B. SSL
C. IPSec
D. MD5
Answer: B
2. Which of the following does NOT describe Dragon Host Sensors Multi-Detection methods?
A. Monitors output to a hosts system and audit logs
B. Monitors a hosts files via MD5 integrity-checking
C. Monitors a hosts specified network interface promiscuously for anomalous activity
D. Monitors a hosts specific file attributes for changes to owner, group, permissions and file size
E. Monitors a Windows hosts Registry for attributes that should not be accessed and/or modified
Answer: C
3. Which of the following is NOT a function of Dragon Forensics Console?
A. Allows for central configuration of Active Response mechanisms to deter network attacks
B. Centrally analyzes activity as it is occurring or has occurred over time
C. Correlates events together across Network Sensor, Host Sensor, and any other infrastructure system (e.g., firewall, router) for which messages have been received (via Host Sensor log forwarding)
D. Provides the tools for performing a forensics level analysis and reconstructing an attackers session
Answer: A
4. What is the primary and default source of event data for Dragon RealTime Console?
A. dragon.log.xxx
B. dragon.db
C. Ring Buffer
D. Dragon Workbench
Answer: C
5. Which of the following is NOT a valid detection method used by Dragon Network Sensor?
A. Signature detection
B. Protocol detection
C. Policy detection
D. Anomaly detection
Answer: C
6. Which best describes a type of attack that aims to prevent the use of a service or host?
A. Reconnaissance
B. Denial of Service
C. IP Spoofing
D. Exploit
Answer: B
7. Which best describes a SYN Flood attack?
A. Attacker redirects unusually large number of SYN/ACK packets
B. Attacker sends relatively large number of altered SYN packets
C. Attacker floods a host with a relatively large number of unaltered SYN packets
D. Attacker floods a host with an unusually large number of legitimate ACK packets
Answer: B
8. Which of the following is NOT a typical function of an Intrusion Detection System?
A. Monitors segment traffic to detect suspicious activity
B. Monitors network traffic and corrects attacks
C. Monitors traffic patterns to report on malicious events
D. Monitors individual hosts (HIDS) or network segments (NIDS)
Answer: B
No related posts.
Related posts brought to you by Yet Another Related Posts Plugin.
