An engineer wants to review the packet overviews of SNORT alerts. When printing the SNORT alerts, all the packet headers are included, and the file is too large to utilize. Which action is needed to correct this problem? A. Modify the alert rule to ג€output alert_syslog: output logג€ B. Modify the output module rule to ג€output alert_quick: output filenameג€ C. Modify the alert rule to ג€output alert_syslog: output headerג€ D. Modify the output module rule to ג€output alert_fast: output filenameג€ Suggested Answer: A Reference: https://snort-org-site.s3.amazonaws.com/production/document_files/files/000/000/249/original/snort_manual.pdf?X-Amz-Algorithm=AWS4-HMAC- SHA256&X-Amz-Credential=AKIAIXACIED2SPMSC7GA%2F20201231%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20201231T141156Z&X-Amz- Expires=172800&X-Amz-SignedHeaders=host&X-Amz-Signature=e122ab6eb1659e13b3bc6bb2451ce693c0298b76c1962c3743924bc5fd83d382 This question is in 350-201 Performing CyberOps Using Cisco Security Technologies (CBRCOR) Exam For getting Cisco Certified CyberOps Professional Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Cisco. Trademarks, certification & product names are used for reference only and belong to Cisco. The website does not contain actual questions and answers from Cisco's Certification Exam.
Please login or Register to submit your answer