Online Access Free Cisco.200-201.v2022-02-15.q130 Practice Test (Page 25)

200-201 Exam Question 116

An analyst is investigating a host in the network that appears to be communicating to a command and control server on the Internet. After collecting this packet capture, the analyst cannot determine the technique and payload used for the communication.

Which obfuscation technique is the attacker using?

A.ROT13 encryption

B.Base64 encoding

C.SHA-256 hashing

D.transport layer security encryption

200-201 Exam Question 117

Refer to the exhibit.

What is the potential threat identified in this Stealthwatch dashboard?

A.There are three active data exfiltration alerts.

B.A host on the network is sending a DDoS attack to another inside host.

C.A policy violation is active for host 10.10.101.24.

D.A policy violation is active for host 10.201.3.149.

200-201 Exam Question 118

A company is using several network applications that require high availability and responsiveness, such that milliseconds of latency on network traffic is not acceptable. An engineer needs to analyze the network and identify ways to improve traffic movement to minimize delays. Which information must the engineer obtain for this analysis?

A.total throughput on the interface of the router and NetFlow records

B.deep packet captures of each application flow and duration

C.running processes on the applications and their total network usage

D.output of routing protocol authentication failures and ports used

200-201 Exam Question 119

An analyst is investigating a host in the network that appears to be communicating to a command and control server on the Internet. After collecting this packet capture the analyst cannot determine the technique and payload used for the communication.
Which obfuscation technique is the attacker using?

A.transport layer security encryption

B.SHA-256 hashing

C.ROT13 encryption

D.Base64 encoding

200-201 Exam Question 120

What is a difference between data obtained from Tap and SPAN ports?

A.SPAN improves the detection of media errors, while Tap provides direct access to traffic with lowered data visibility.

B.Tap sends traffic from physical layers to the monitoring device, while SPAN provides a copy of network traffic from switch to destination

C.Tap mirrors existing traffic from specified ports, while SPAN presents more structured data for deeper analysis.

D.SPAN passively splits traffic between a network device and the network without altering it, while Tap alters response times.

Other Version: 287Cisco.200-201.v2025-07-31.q155; 668Cisco.200-201.v2025-02-28.q243; 632Cisco.200-201.v2024-06-02.q207; 104Cisco.Testkingpdf.200-201.v2022-03-05.by.mavis.130q.pdf; 2340Cisco.200-201.v2022-01-19.q100; 113Cisco.Braindumpspass.200-201.v2021-08-02.by.angela.102q.pdf

Latest Upload: 123SAP.C_HRHPC_2411.v2025-10-04.q53; 122Oracle.1z1-076.v2025-10-04.q60; 134USGBC.LEED-AP-Homes.v2025-10-03.q34; 134SAP.C_C4H56_2411.v2025-10-03.q54; 113Oracle.1Z0-1126-1.v2025-10-03.q30; 112Microsoft.AZ-305.v2025-10-02.q159; 122PythonInstitute.PCET-30-01.v2025-10-02.q29; 125RAPS.RAC-US.v2025-10-02.q35; 119Acquia.Acquia-Certified-Site-Builder-D8.v2025-10-02.q20; 156PaloAltoNetworks.PCNSE.v2025-10-01.q252

200-201 Exam Question 116

200-201 Exam Question 117

200-201 Exam Question 118

200-201 Exam Question 119

200-201 Exam Question 120

Download PDF File