nerdexam
Exams200-201Questions#542
CiscoCisco

200-201 · Question #542

200-201 Question #542: Real Exam Question with Answer & Explanation

The correct arrangement maps data sources to their corresponding data types based on what kind of network or security data each tool produces. NetFlow provides session/flow data (metadata about network conversations), IPS generates alert/event data (threat detections and rule tri

Submitted by suresh_in· Mar 6, 2026CompTIA Security+ / CySA+ - Security Operations: Identify and utilize appropriate data sources and tools for threat detection and network analysis

Question

Drag and Drop Question Drag and drop the data sources from the left onto the corresponding data types on the right. Answer:

Explanation

The correct arrangement maps data sources to their corresponding data types based on what kind of network or security data each tool produces. NetFlow provides session/flow data (metadata about network conversations), IPS generates alert/event data (threat detections and rule triggers), Wireshark captures full packet data (complete network packet captures for deep inspection), and server logs produce log/application data (recorded events from operating systems or applications). Each tool is uniquely suited to its data type by design and primary function.

Topics

#data sources#network monitoring#security tools#log analysis

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 200-201 PracticeBrowse All 200-201 Questions