An engineer receives an incident ticket with hundreds of intrusion alerts that require investigation. An analysis of the incident log shows that the alerts are from trusted IP addresses and internal devices. The final incident report stated that these alerts were false positives and that no intrusions were detected. What action should be taken to harden the network? A. Move the IPS to after the firewall facing the internal network B. Move the IPS to before the firewall facing the outside network C. Configure the proxy service on the IPS D. Configure reverse port forwarding on the IPS Â Suggested Answer: C This question is in 350-201 Performing CyberOps Using Cisco Security Technologies (CBRCOR) Exam For getting Cisco Certified CyberOps Professional Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Cisco. Trademarks, certification & product names are used for reference only and belong to Cisco. The website does not contain actual questions and answers from Cisco's Certification Exam.
Please login or Register to submit your answer