Which Network Address Translation (NAT) is necessary to enable NAT for a Managed Host?
A. Static NAT translation
B. Active NAT translation
C. Variable NAT translation
D. Dynamic NAT translation
Which Security Profile Permission Precedence should be applied so the users of that profile can only see the flows related to the "Windows Servers" network?
A. Network Only
B. No Restrictions
C. Log Sources Only
D. Network AND Log Source
Which TCP port must be open to allow communication between the primary and secondary HA hosts?
A. 7709
B. 7788
C. 7789
D. 7790
Which offboard storage solution utilizes Ethernet infrastructure rather than a dedicated SAN network?
A. FTP
B. NFS
C. iSCSI
D. Fibre Channel
Which proxy option can be set in the QRadar Auto Update Advanced settings?
A. Proxy Type
B. Proxy Name
C. Proxy Schedule
D. Proxy Password
A user of QRadar wishes to have a report showing the total bytes seen on their Internet connection. The user decides to create a Custom Flow Property to add the bytes sent and bytes received together.
Which type of custom property is required for this to be accomplished?
A. Regex Custom Property
B. Computed Custom Property
C. Arithmetic Based Custom Property
D. Calculation Based Custom Property
Which tab can used to create, edit, distribute and manage reports?
A. Admin
B. Assets
C. Reports
D. Dashboard
Which operating system is supported for creating a bootable flash drive for recovery?
A. IBM AIX
B. MAC OS X
C. Ubuntu Linux
D. Windows OS
A QRadar administrator is sizing a distributed deployment. The deployment has approximately 25,000 events per second and needs at least 7 terabytes of storage.
Which architecture is correct?
A. One 1605 event processor
B. One 1624 event processor
C. Two 1605 event processors
D. Two 1624 event processors
Assuming a Squid Proxy has logs in the following format:
time elapsed remotehost code/status bytes method URL rfc931 peerstatus/peerhost type And these are some sample logs from Squid server:
1286536310.075 452 192.168.0.227 TCP_MISS/200 5067 GET http://www.test.com/vi/VfnuY/default.jpgDIRECT/10.20.153.118 image/jpeg 1286536310.524 935 192.168.0.68 TCP_MISS/200 1021 POST http://www.test.com/services DIRECT/172.16.41.128 application/xml 1286536310.550 495 192.168.0.227 TCP_MISS/204 406 GET http://test.com/get_video? DIRECT/10.12.231.1.136 text/html 1153239176.287 632 172.16.10.92 TCP_IMS_HIT/304 215 GET http:// www.test.com/index.html - NONE/-text/html
Which regular expression would you use to pull out the bytes field into custom property?
A. \w+/\d+\s+(\d+)\s+(POST|GET)
B. \w+/\d+\S+(\d+)\S+(POST|GET)
C. \w+/\d+\s+(\d+)\s+^(POST|GET)
D. \W+/\D+\D+(\D+)\D+(POST|GET)
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only IBM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your C2150-400 exam preparations and IBM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.