Dumps4cert.com : Latest Dumps with PDF and VCE Files
2018 Aug Cisco Official New Released 200-120
100% Free Download! 100% Pass Guaranteed!
Securing Cisco Networks with Open Source Snort
Question No: 21
Which application can read Barnyard log_pcap output plug-in files?
-
SnortReport
-
BASE or ACID
-
tcpdump
-
Snorby
Answer: C
Question No: 22
To accept input from Snort and produce various forms of output, the Barnyard architecture consists of which components?
-
preprocessors and reassemblers
-
preprocessors and detection engine
-
data processors and output plug-ins
-
data processors and reassemblers
Answer: C
Question No: 23
Barnyard has a mode of operation that reads the most current unified log file and processes new unified files as they become available. What is this mode called?
-
one-shot
-
continual
-
continual with checkpoint
-
unified
Answer: B
Question No: 24
What does the log_dump output plug-in do?
-
converts data into a format similar to Snort ASCII packet dump mode
-
converts data into a format similar to Snort fast alert mode
-
converts log data to PCAP-formatted output
-
converts data to CVS format
Answer: A
Question No: 25
Which output method is the fastest for Snort?
-
unified2
-
database
-
binary (tcpdump)
-
CSV
Answer: A
Question No: 26
Which command-line argument can you use with Snort to produce a binary output file?
-
-B
-
-b
-
-u
-
-U
Answer: B
Question No: 27
Which command-line argument can you use with Snort to read a previously created file?
-
-O
-
-o
-
-p
-
-r
Answer: D
Question No: 28
What must you do to produce ASCII-formatted output from Snort?
-
Do nothing because Snort produces ASCII output by default.
-
Use the -K ascii switch when you start Snort from the command line.
-
Compile Snort with the -K ascii flag in the configure command.
-
Use a third-party application to convert native Snort output to ASCII.
Answer: B
Question No: 29
For which application is Snort output suitable?
-
tcpdump
-
Wireshark
-
any application that can read PCAP format
-
NMap
Answer: C
Question No: 30
When you instruct Snort to place ASCII-formatted log data in a specific directory, what does Snort use to organize the alert data?
-
IP address
-
port number
-
packet
-
interface
Answer: A
100% Dumps4cert Free Download!
–200-120 PDF
100% Dumps4cert Pass Guaranteed!
–200-120 Dumps
| Dumps4cert | ExamCollection | Testking | |
|---|---|---|---|
| Lowest Price Guarantee | Yes | No | No |
| Up-to-Dated | Yes | No | No |
| Real Questions | Yes | No | No |
| Explanation | Yes | No | No |
| PDF VCE | Yes | No | No |
| Free VCE Simulator | Yes | No | No |
| Instant Download | Yes | No | No |