New 600-199 exam questions from PassLeader 600-199 dumps! Welcome to download the newest PassLeader 600-199 VCE and PDF dumps: http://www.passleader.com/600-199.html (60 Q&As)
P.S. Free 600-199 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpR0ozaTdjbGpid28
QUESTION 1
Which describes the best method for preserving the chain of evidence?
A. Shut down the machine that is infected, remove the hard drive, and contact the local authorities.
B. Back up the hard drive, use antivirus software to clean the infected machine, and contact the local authorities.
C. Identify the infected machine, disconnect from the network, and contact the local authorities.
D. Allow user(s) to perform any business-critical tasks while waiting for local authorities.
Answer: C
QUESTION 2
Which will be provided as output when issuing the show processes cpu command on a Cisco IOS router?
A. router configuration
B. CPU utilization of device
C. memory used by device processes
D. interface processing statistics
Answer: B
QUESTION 3
Refer to the exhibit. Which protocol is used in this network traffic flow?
A. SNMP
B. SSH
C. DNS
D. Telnet
Answer: B
QUESTION 4
Which two types of data are relevant to investigating network security issues? (Choose two.)
A. NetFlow
B. device model numbers
C. syslog
D. routing tables
E. private IP addresses
Answer: AC
QUESTION 5
In the context of a network security device like an IPS, which event would qualify as having the highest severity?
A. remote code execution attempt
B. brute force login attempt
C. denial of service attack
D. instant messenger activity
Answer: A
New 600-199 exam questions from PassLeader 600-199 dumps! Welcome to download the newest PassLeader 600-199 VCE and PDF dumps: http://www.passleader.com/600-199.html (60 Q&As)
P.S. Free 600-199 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpR0ozaTdjbGpid28
