Free Access Cisco.200-201.v2024-06-19.q203 Practice Test (Page 34)

Question 161

What should a security analyst consider when comparing inline traffic interrogation with traffic tapping to determine which approach to use in the network?

A.Tapping interrogation replicates signals to a separate port for analyzing traffic

B.Tapping interrogations detect and block malicious traffic

C.Inline interrogation enables viewing a copy of traffic to ensure traffic is in compliance with security policies

D.Inline interrogation detects malicious traffic but does not block the traffic

Question 162

What is a difference between inline traffic interrogation and traffic mirroring?

A.Inline inspection acts on the original traffic data flow

B.Traffic mirroring passes live traffic to a tool for blocking

C.Traffic mirroring inspects live traffic for analysis and mitigation

D.Inline traffic copies packets for analysis and security

Question 163

What is the difference between inline traffic interrogation (TAPS) and traffic mirroring (SPAN)?

A.APS interrogation is more complex because traffic mirroring applies additional tags to data and SPAN does not alter integrity and provides full duplex network.

B.SPAN ports filter out physical layer errors, making some types of analyses more difficult, and TAPS receives all packets, including physical errors.

C.TAPS replicates the traffic to preserve integrity, and SPAN modifies packets before sending them to other analysis tools

D.SPAN results in more efficient traffic analysis, and TAPS is considerably slower due to latency caused by mirroring.

Question 164

Drag and drop the access control models from the left onto the correct descriptions on the right.

Question 165

Refer to the exhibit.

An engineer is analyzing a PCAP file after a recent breach An engineer identified that the attacker used an aggressive ARP scan to scan the hosts and found web and SSH servers. Further analysis showed several SSH Server Banner and Key Exchange Initiations. The engineer cannot see the exact data being transmitted over an encrypted channel and cannot identify how the attacker gained access How did the attacker gain access?

A.by using the buffer overflow in the URL catcher feature for SSH

B.by using an SSH Tectia Server vulnerability to enable host-based authentication

C.by using brute force on the SSH service to gain access

D.by using an SSH vulnerability to silently redirect connections to the local host

Other Version: 713Cisco.200-201.v2026-03-13.q446; 3661Cisco.200-201.v2022-10-01.q136; 4792Cisco.200-201.v2022-07-23.q146; 2127Cisco.200-201.v2022-05-06.q84; 3185Cisco.200-201.v2022-03-15.q128; 2116Cisco.200-201.v2021-10-07.q53; 53Cisco.Passtestking.200-201.v2021-09-23.by.hilary.105q.pdf

Latest Upload: 206PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 309Nokia.4A0-113.v2026-05-01.q69; 278EC-COUNCIL.312-49v11.v2026-04-30.q214; 231Microsoft.MB-820.v2026-04-30.q101; 213Salesforce.MC-202.v2026-04-30.q57; 212BICSI.INSTC_V8.v2026-04-29.q53; 341NMLS.MLO.v2026-04-28.q82; 246NCARB.Project-Management.v2026-04-28.q27; 466EMC.D-AV-DY-23.v2026-04-27.q184; 1128ServiceNow.CSA.v2026-04-27.q483

Question 161

Question 162

Question 163

Question 164

Question 165

Download PDF File