ITCertKing is a website that specializes in providing IT exam information. The pass rate can achieve 100%. Which is one of the reasons that most candidates willing to believe the ITCertKing. ITCertKing have been always concerned about the needs of the majority of candidates. We always with the greatest ability to meet the needs of the candidates . ITCertKing's HP HP0-Y16 exam training materials is an unprecedented IT certification training materials. With it, your future career will be rain or shine.
The certification of HP HP0-Y16 exam is what IT people want to get. Because it relates to their future fate. HP HP0-Y16 exam training materials are the learning materials that each candidate must have. With this materials, the candidates will have the confidence to take the exam. Training materials in the ITCertKing are the best training materials for the candidates. With ITCertKing's HP HP0-Y16 exam training materials, you will pass the exam easily.
ITCertKing is a professional website. It focuses on the most advanced HP HP0-Y16 for the majority of candidates. With ITCertKing, you no longer need to worry about the HP HP0-Y16 exam. ITCertKing exam questions have good quality and good service. As long as you choose ITCertKing, ITCertKing will be able to help you pass the exam, and allow you to achieve a high level of efficiency in a short time.
Exam Code: HP0-Y16
Exam Name: HP (ProCurve Network Immunity Solutions)
One year free update, No help, Full refund!
Total Q&A: 88 Questions and Answers
Last Update: 2014-01-27
Now in such society with a galaxy of talents, stabilizing your job position is the best survival method. But stabilizing job position is not so easy. When others are fighting to improve their vocational ability, if you still making no progress and take things as they are, then you will be eliminated. In order to stabilize your job position, you need to constantly improve your professional ability and keep up with the pace of others to let you not fall far behind others.
ITCertKing provide you with the most authoritative and the fullest HP HP0-Y16 exam dumps, thus the hit rate is very high. All questions that may appear in the exam are included in our exam dumps. With the changes of exam outline, we also update our exam dumps at any time. ITCertKing pdf real questions and answers can prevent you from wasting lots of time and efforts on preparing for the exam and can help you sail through you exam with ease and high efficiency. But even you fail the exam, we assure we will give you FULL REFUND. Opportunities always for those who are well prepared and we wish you not to miss the good opportunities.
HP HP0-Y16 is one of the important certification exams. ITCertKing's experienced IT experts through their extensive experience and professional IT expertise have come up with IT certification exam study materials to help people pass HP Certification HP0-Y16 exam successfully. ITCertKing's providing learning materials can not only help you 100% pass the exam, but also provide you a free one-year update service.
HP0-Y16 Free Demo Download: http://www.itcertking.com/HP0-Y16_exam.html
NO.1 From which NBAD event should you often exclude your servers?
A. DNS Tunneling
B. TCP/UDP Fanout
C. Protocol Anomaly
D. Packet Size Deviation
Answer: B
HP braindump HP0-Y16 test HP0-Y16 HP0-Y16 HP0-Y16
NO.2 What is a reason to create a custom group for a server zone and set that group as the source for a NIM
policy?
A. Servers handle more mission-critical traffic, so you set less drastic actions.
B. Servers trigger more false positives, so you set the NBAD sensitivities lower.
C. Threats are targeted to servers at all times, so you set the policy to any time.
D. Threats that are targeted to servers are more serious, so you set harsher actions.
Answer: A
HP HP0-Y16 HP0-Y16 exam HP0-Y16 HP0-Y16 study guide
NO.3 Which action can help you troubleshoot a policy in realtime from PCM?
A. Port Mirror
B. Notify (Email)
C. Message Dialog
D. Traffic Sampling
Answer: C
HP HP0-Y16 HP0-Y16 HP0-Y16 HP0-Y16 answers real questions HP0-Y16 test questions
NO.4 A network already has an Intrusion Prevention System (IPS) that is installed between a group of
servers and the rest of the network. Which benefits does ProCurve NIM add in a NIM + IPS deployment?
(Select two.)
A. deep packet inspection
B. signature-based detection
C. remediation of infected endpoints
D. protection for other resources throughout the network
E. applies actions closer to the point of origin of the attack
Answer: DE
HP pdf HP0-Y16 exam dumps HP0-Y16 HP0-Y16 pdf HP0-Y16
NO.5 ProCurve NIM was registering few TCP/UDP Fanout events. You have raised the sensitivity, and
many false positive TCP/UDP Fanout events are now triggered throughout the network. What should you
do next? (Select two.)
A. Lower the sensitivity to the previous level.
B. Remove the TCP/UDP alert from all policies.
C. Plan and create a Policy Manager policy to deal with false positive events.
D. Exclude the devices triggering the false positive events from the TCP/UDP fanout.
Answer: AD
HP HP0-Y16 exam dumps HP0-Y16 dumps HP0-Y16 HP0-Y16 test HP0-Y16
NO.6 Which threat mitigation action is supported on ProCurve wireless devices?
A. Port Disable
B. MAC Lockout
C. Port Rate Limit
D. Quarantine VLAN
Answer: B
HP certification HP0-Y16 HP0-Y16 HP0-Y16 test questions HP0-Y16 HP0-Y16
NO.7 Click the Exhibit button.
Given the information shown in the exhibit, what do you know about alerts on the 10.1.1.1 device over the
last five hours? (Note: The orange color corresponds with Major severity.)
A. The device has received only Major alerts.
B. The majority of alerts on the device are Major alerts.
C. The highest severity for an alert on this device is Major.
D. The most recent alert received on the device was a Major alert.
Answer: C
HP HP0-Y16 exam simulations HP0-Y16 study guide HP0-Y16
NO.8 Click the Exhibit button.
Which port in the exhibit should you select in PCM+ and configure as the mirror destination?
A. 1
B. A6
C. X0
D. B16
E. 25-48
Answer: B
HP exam dumps HP0-Y16 HP0-Y16 practice test HP0-Y16 HP0-Y16
NO.9 Which statement is true about setting up an action for dynamic remote mirroring?
A. You should configure the mirror source before configuring the action.
B. You should configure the mirror destination before configuring the action.
C. You configure both the mirror source and destination as part of configuring the action.
D. You should configure both the mirror source and destination before configuring the action.
Answer: B
HP HP0-Y16 HP0-Y16 test HP0-Y16
NO.10 What should you do to set up your network infrastructure for remote mirroring?
A. Enable jumbo frames.
B. Enable frame fragmentation.
C. Raise the maximum transmit unit (MTU).
D. Reserve uplink ports for the mirroring session.
Answer: A
HP HP0-Y16 HP0-Y16 test HP0-Y16
NO.11 What must you do to configure a Port Rate Limit action?
A. Set the rate limit as a percentage.
B. Set the rate limit as a QoS priority value.
C. Set the rate limit as an absolute value in Kbps.
D. Enable the limit, leaving the rate to be determined by the switch configuration.
Answer: A
HP HP0-Y16 HP0-Y16 braindump HP0-Y16
NO.12 Click the Exhibit button.
You are configuring a Quarantine VLAN action.
Which area in the exhibit displays settings that allow ProCurve NIM to always place the offender in the
Quarantine VLAN?
A. a
B. b
C. c
D. d
Answer: D
HP dumps HP0-Y16 certification training HP0-Y16 HP0-Y16 exam dumps
NO.13 How does ProCurve NIM determine the severity level for a security alert?
A. from the violation count for the associated event
B. from the event, and the severity cannot be overridden
C. from the event, unless overridden by the alert configuration
D. from the event for trap events and from the alert configuration for other events
Answer: C
HP certification HP0-Y16 HP0-Y16 original questions HP0-Y16 HP0-Y16 test questions
NO.14 When should the unified NIM + IDS deployment option be used?
A. to take immediate action to protect key resources and also track threats to the source
B. to add threat protection to the features of ProCurve NIM, which include only threat detection
C. to allow ProCurve NIM to mirror suspicious traffic to an external device for additional analysis
D. to protect against threats from wireless devices, which ProCurve NIM is not able to do on its own
Answer: C
HP answers real questions HP0-Y16 HP0-Y16 demo HP0-Y16
NO.15 Which statement is true about the role that events play in ProCurve NIM?
A. When a particular event occurs, ProCurve NIM executes the corresponding alert.
B. When a particular event occurs, ProCurve NIM executes the corresponding policy.
C. When a particular number of events occur within a set time window, ProCurve NIM triggers the
corresponding alert.
D. When a particular number of events occur within a set time window, ProCurve NIM triggers the
corresponding policy.
Answer: C
HP exam simulations HP0-Y16 answers real questions HP0-Y16 HP0-Y16 demo HP0-Y16 study guide HP0-Y16
NO.16 You want to display and print a list of all events related to the Policy Manager. What should you do?
A. From the Reports menu, select the Policy Events report.
B. In Interconnect Devices, click the Events tab; filter for Policy Manager; click the Print button.
C. From the Reports menu, select the Events report; filter for Policy Manager in the Report Wizard.
D. In Network Management Home, click the Events tab; filter for Policy Manager; click the Print button.
Answer: D
HP HP0-Y16 HP0-Y16 test
NO.17 What is the intended purpose of the default traffic sampling action of ProCurve NIM?
A. to prevent ProCurve NIM from triggering false positives
B. to help PCM+/NIM periodically begin to monitor new ports
C. to send traffic for increased analysis to an Intrusion Detection System (IDS)
D. to allow ProCurve NIM to take immediate action against the most probable threats
Answer: B
HP exam dumps HP0-Y16 HP0-Y16 HP0-Y16
NO.18 Which alert can be triggered by SNMP traps sent by ProCurve switches?
A. default External
B. default IP Fanout
C. default IP Spoofing
D. default Virus Throttle
E. default ProCurve SNMP
Answer: D
HP HP0-Y16 test answers HP0-Y16 dumps HP0-Y16 pdf HP0-Y16
NO.19 Click the Exhibit button.
What are reasons to configure the policy settings shown in the exhibit? (Select two.)
A. You want the policy to respond to threats from offenders within this group.
B. You want ProCurve NIM to apply the policy for threats detected in this group.
C. You have set the policy to a source group, so you must set the target group to match.
D. You want to enable dynamic local port mirroring on set ports, which compose this group.
E. The policy action is MAC Lockout, and you want to lock the offender out of the entire group.
Answer: DE
HP dumps HP0-Y16 HP0-Y16 certification training HP0-Y16
NO.20 Which misconfiguration on PCM+ causes ProCurve NIM to fail to detect any anomalies in traffic?
A. the wrong sFlow version
B. an incorrect operator password
C. an incorrect manager password
D. an incorrect SNMP community name
Answer: D
HP practice test HP0-Y16 HP0-Y16 exam HP0-Y16 exam dumps HP0-Y16 certification HP0-Y16
NO.21 What might indicate that the sensitivity for IP fanout has been set too high?
A. IP Fanout events appear in the Events tab for almost every switch.
B. Although you do not see IP Fanout events, the IP Fanout alert triggers.
C. IP Fanout events appear in the Events tab for one switch but not others.
D. There are no IP Fanout events for days although you have configured an IP Fanout alert.
Answer: A
HP exam prep HP0-Y16 HP0-Y16 exam dumps HP0-Y16 HP0-Y16 test questions
NO.22 Which features are provided in a ProCurve NIM standalone deployment? (Select two.)
A. threat mitigation without the aid of PCM+
B. resetting of TCP sessions when threats are detected
C. signature-based detection of worms and other attacks
D. applying mitigation actions near the source of the threat
E. application of different policies based on the threat's place of origin
Answer: DE
HP HP0-Y16 HP0-Y16
NO.23 How do you configure PCM+ to generate periodic reports?
A. Select the Reports button in the global toolbar.
B. Enable the periodic reports setting in PCM+ Preferences.
C. Configure the schedule in the appropriate Reports Wizard.
D. Create policies with schedule-driven alerts and report actions.
Answer: D
HP demo HP0-Y16 original questions HP0-Y16 certification HP0-Y16 pdf
NO.24 Which events can be signs of an unauthorized port scan? (Select two.)
A. Port Anomaly
B. DNS Tunneling
C. TCP/UDP Fanout
D. UDP Protocol Anomaly
E. TCP Protocol Anomaly
Answer: CE
HP HP0-Y16 test HP0-Y16
NO.25 You want to set up different external alerts based on the specific type of threat. Which settings can
help you accomplish this task? (Select two.)
A. Trap ID
B. Severity
C. Description
D. Anomaly ID
E. Violation Count
Answer: AC
HP exam dumps HP0-Y16 HP0-Y16 answers real questions HP0-Y16 pdf HP0-Y16 test questions
NO.26 Which tab is added to PCM+ when you install ProCurve NIM?
A. Policy Events
B. Security Audit
C. Event Browser
D. Security Activity
Answer: D
HP dumps HP0-Y16 HP0-Y16 HP0-Y16 exam
NO.27 What is a feature of anomaly-based threat detection but not signature-based threat detection?
A. detecting worms
B. detecting DoS attacks
C. detecting protocol anomalies
D. detecting undocumented attacks
Answer: D
HP HP0-Y16 questions HP0-Y16 exam dumps HP0-Y16
NO.28 How does a ProCurve Network Immunity Solution protect a network?
A. It deals with threats from authorized users.
B. It stops unauthorized users from connecting.
C. It customizes users' rights based on their identity.
D. It filters Web content and email while searching for viruses.
Answer: A
HP HP0-Y16 HP0-Y16 answers real questions HP0-Y16 exam
NO.29 Your company's regulatory compliance group has asked you for a record of changes to the Policy
Manager policies. Which report should you generate?
A. Security Audit
B. Actions by Policy
C. Executed Policies
D. Automation (Policy) History
Answer: C
HP certification training HP0-Y16 test answers HP0-Y16 questions HP0-Y16 practice test HP0-Y16
NO.30 By default, which NBAD event will trigger traffic sampling on a port?
A. Duplicate IP
B. Virus Throttle
C. Protocol Anomaly
D. Packet Size Deviation
Answer: D
HP HP0-Y16 HP0-Y16 HP0-Y16 HP0-Y16 exam
ITCertKing offer the latest 644-068 exam material and high-quality 000-596 pdf questions & answers. Our LOT-927 VCE testing engine and LOT-410 study guide can help you pass the real exam. High-quality NS0-156 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.
Article Link: http://www.itcertking.com/HP0-Y16_exam.html
没有评论:
发表评论