When deploying Network Monitor, an administrator needs to implement monitoring of port-based protocols. Which protocol is supported by Network Monitor?
A. secure tunneling
B. IP
C. TCP
D. UDP
Which two protocols are available by default and recognized by Network Monitor based on their individual signatures? (Select two.)
A. FTP
B. HTTPS
C. IM: AIM
D. SNMP
E. IM: Google Talk
Which response rule action will be ignored when using an Exact Data Matching (EDM) policy?
A. Network Prevent: Remove HTTP/HTTPS Content
B. All: Send Email Notification
C. Network Protect: Copy File
D. Endpoint Prevent: Notify
Which action is available for use in Smart Response rules and Automated Response rules?
A. modify SMTP message
B. block email message
C. limit incident data retention
D. post log to a syslog server
A company needs to implement Data Owner Exception so that incidents are avoided when employees send or receive their own personal information. Which underlying technology should the company use?
A. Vector Machine Learning (VML)
B. Described Content Matching (DCM)
C. Indexed Document Matching (IDM)
D. Exact Data Matching (EDM)
An incident responder needs to change the status of an incident to 'Escalate and Notify'. Which two places in the user interface can this Smart Response rule be invoked? (Select two.)
A. Policy page
B. Incident List
C. Incident Snapshot
D. Incident Summary
E. Response Rules page
A software company needs to protect its source code including new source code between indexing times.
Which detection method should the company use to meet this requirement?
A. Exact Data Matching (EDM)
B. Described Content Matching (DCM)
C. Indexed Document Matching (IDM)
D. Vector Machine Learning (VML)
An organization needs to determine whether at least 50% of a sensitive document is being sent outside the organization. Which action should the company take to accomplish this?
A. use a whitelisted.txt document
B. use match on selected fields
C. use match count
D. use minimum document exposure
You are not able to find a physical device corresponding to the disk ID in the disk media record when one of the subdisks associated with the plex fails. You need to check the plex state to solve the problem. What will be the status of the plex in this situation?
A. UNENABLED
B. NODEVICE
C. DISCONNECTED
D. INACTIVE
A policy template called Customer Credit Card Numbers is being imported into the system. What is the default result for this action?
A. the policy template will be listed under US Regulatory Enforcement Templates and be available
B. the policy template will be enabled by default
C. the policy template will be available after logging off and on to Enforce
D. the policy template will be listed under Imported Templates
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ST0-237 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.