300-715 Question #242: Real Exam Question with Answer & Explanation

The correct answer is B: NETFLOW. To identify devices based on specific traffic characteristics like ToS bit and destination IP for profiling, Cisco ISE Profiling Services can leverage NetFlow. NetFlow provides flow-based data that Cisco ISE can analyze to profile endpoints.

Profiler

Question

An engineer needs to configure Cisco ISE Profiling Services to authorize network access for IP speakers that require access to the intercom system. This traffic needs to be identified if the ToS bit is set to 5 and the destination IP address is the intercom system. What must be configured to accomplish this goal?

Options

ANMAP
BNETFLOW
CpxGrid
DRADIUS

Explanation

To identify devices based on specific traffic characteristics like ToS bit and destination IP for profiling, Cisco ISE Profiling Services can leverage NetFlow. NetFlow provides flow-based data that Cisco ISE can analyze to profile endpoints.

Common mistakes.

A. NMAP is a network scanner used for host discovery and service identification, not for continuously monitoring traffic flows based on ToS bits and destination IPs.
C. pxGrid is Cisco's platform for sharing security context and data between different security products, not a method for collecting raw traffic flow data for profiling.
D. RADIUS is an authentication, authorization, and accounting protocol; while integral to ISE, it doesn't provide the granular traffic flow data required for this type of profiling directly.

Concept tested. Cisco ISE Profiling sources - NetFlow

Reference. https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_01100.html#concept_3C52D7F3BE834A83AF80237C56A41434

Topics

#ISE Profiling#NetFlow#Traffic Identification#QoS

Community Discussion

No community discussion yet for this question.

Full 300-715 Practice Browse All 300-715 Questions