nerdexam
Exams200-201Questions#117
CiscoCisco

200-201 · Question #117

200-201 Question #117: Real Exam Question with Answer & Explanation

The correct answer is D: IPFIX. IPFIX (IP Flow Information Export) is an IETF standard that specifies the format for exporting network flow information, which is crucial for monitoring network traffic, detecting anomalies, and analyzing potential security incidents.

Submitted by saadiq_pk· Mar 6, 2026Security Monitoring

Question

Which IETF standard technology is useful to detect and analyze a potential security incident by recording session flows that occurs between hosts?

Options

  • ASFlow
  • BNetFlow
  • CNFlow
  • DIPFIX

Explanation

IPFIX (IP Flow Information Export) is an IETF standard that specifies the format for exporting network flow information, which is crucial for monitoring network traffic, detecting anomalies, and analyzing potential security incidents.

Common mistakes.

  • A. sFlow is a sampling technology for network monitoring, but it is a multi-vendor standard initially developed by InMon, not an IETF standard like IPFIX, and relies on sampled data rather than comprehensive flow records.
  • B. NetFlow is a Cisco-proprietary technology for collecting IP traffic information, while widely adopted, it is not an IETF standard itself; IPFIX is the IETF standard based on NetFlow concepts.
  • C. NFlow is not a recognized or standard network flow technology; it appears to be a fictitious option.

Concept tested. Network flow monitoring standards (IPFIX)

Reference. https://datatracker.ietf.org/doc/html/rfc5101

Topics

#IPFIX#NetFlow#network flow data#network monitoring standards

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 200-201 PracticeBrowse All 200-201 Questions