Question 1mediummultiple choice
Read the full Content Security explanation →350-701 Content Security • Complete Question Bank
Complete 350-701 Content Security question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit.
ciscowsa# show accesspolicy detail PolicyName: Engineering
Policy: Engineering
Identification Profiles: Engineering_IP
User Identification: Transparent
Web Reputation:
Action: Block
Threshold: -6.0
URL Filtering:
Category: Malware
Action: Block
Category: Phishing
Action: Block
Category: Social Networking
Action: Monitor
Malware Scanning:
Action: Scan
File Types: exe, dll, zip, jar
HTTPS Decryption:
Action: Decrypt
Bypass Categories: Financial, HealthRefer to the exhibit. log: "Message 12345 from 192.0.2.10 to user@domain.com: DLP violation: Credit card pattern detected. Policy: 'Block Credit Cards' Action: Quarantine"
Refer to the exhibit. policy-map type inspect http OUTSIDE_INSPECT match request header host header-value ".*malicious.*" reset match request body regex ".*malware.*" reset match request uri regex ".*evil.*" reset ! class-map type inspect http match-all HTTP_CLASS match request header host header-value ".*example.com.*" match request uri regex ".*login.*" ! policy-map type inspect http INSIDE_INSPECT class HTTP_CLASS inspect !
Refer to the exhibit. Malware Event: 2024-03-15 10:23:45 UTC File Name: invoice_2024.exe SHA256: a1b2c3d4e5f6... Score: 100 (Cisco AMP) Disposition: Malicious Syslog from ESA: Mar 15 10:23:45 mail.esa.cisco.com CEF:0|Cisco|Email Security Appliance|13.0|ESA|EMAIL_MALWARE|5|act=blocked dvc=10.1.1.10 dst=192.168.1.100 msg=Attachment blocked: invoice_2024.exe cn1Label=AMP Verdict cn1=100 cs4Label=File SHA256 cs4=a1b2c3d4e5f6...
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Connects entire networks over the internet
Allows individual users to connect securely
Uses web browser for clientless access
Provides encrypted tunnels using IPsec
Dynamic multipoint VPN for hub-and-spoke topologies
Refer to the exhibit. ``` # show accesspolicy summary Policy Name: Marketing-Policy User/Group: marketing_group URL Category: Social Networking -> Block Action: Monitor Policy Name: Default-Policy User/Group: Everyone URL Category: Social Networking -> Monitor Action: Monitor # show urlfiltering categories Social Networking: facebook.com, twitter.com, instagram.com ```
Refer to the exhibit. ``` ! Cisco ESA Mail Flow Policy ! Policy: Outbound_Finance ! DLP: Enabled ! DLP Policy: PCI-DSS ! Action: Continue (with disclaimer) ! Encryption: None ! (DLP rules: credit card numbers, SSN) ! Log entry: From: user@finance.company.com To: vendor@external.com Subject: Updated pricing DLP verdict: CC_NUMBERS - credit card: 4111-1111-1111-1111 Policy action: Continue (with disclaimer) Delivery: Delivered ```
Refer to the exhibit. ! --- show running-config excerpt from WSA --- ! access policy: Policy_A ! ... ! objects: ! custom-url-category: trusted_sites ! ! file-type-filter: ! file-type-category: executables ! action: monitor ! include-subcategories: true ! ! access-policy: Policy_A ! url-category: trusted_sites ! file-reputation: use-default ! file-type-filter: executables ! action: allow ! ...