IBM Security Network Protection (XGS) V5.3.2 System Administration

Here you have the best IBM C2150-620 practice exam questions

You have 60 total questions to study from
Each page has 5 questions, making a total of 12 pages
You can navigate through the pages using the buttons at the bottom
This questions were last updated on January 1, 2026
This site is not affiliated with or endorsed by IBM.

Question 1 of 60

A System Administrator has been seeing a lot of SSLv2-Weak_Cipher attacks reported on the network and wants to increase the severity of the events.
How can this be accomplished?

Modify the Threat Level of the signature.

Create an Incident in SiteProtector for SSLv2_Weak Cipher.

Modify the Event Log response for the Intrusion Preventions Object.

increase the X-Force Protection Level for the Intrusion Prevention Object.

Correct Answer:

Question 2 of 60

A System Administrator wants to configure an XGS so that when the SSH_Brute_Force security event is triggered against machine Server1, any further traffic from the source IP address contained in the security event alert is dropped for a timed period.
How should the System Administrator configure the XGS to perform this?

Edit the properties of the SSH_Brute_Force security event and create a quarantine response to block the source IP.

Create a Network Access policy object to drop all traffic from the source IP contained in the security event alert to Server1.

Create a Network Access policy object with a quarantine rule to block the source IP when the security event is triggered against Server1.

Create an IPS Filter policy object for the SSH_Brute_Force security event with a Victim address of Server1 and a quarantine response to block the source IP

Correct Answer: C

Question 3 of 60

A System Administrator is preparing to manage an XGS appliance using the SiteProtector System.
Which three management actions can be performed? (Choose three.)

Apply a snapshot.

Restart the appliance.

Configure Static Routes.

Create a Firmware backup.

Manage the Appliance SSL Certificate.

Change the Flexible Performance Level.

Correct Answer: A, D, E

Question 4 of 60

A Security Administrator wants to enable a block page to alert users when they attempt to access HTTP websites that are blocked due to a Network Access policy
(NAP) rule.
How should the Administrator achieve this?

Add a NAP rule with an action of Drop.

Add a NAP rule with an action of Reject.

Add a NAP rule that has an action of Do Not inspect and then set the response object to Block Page.

Add a NAP rule with an action of Reject (Authenticate) and then create a special user group that has default action of Block HTTP.

Correct Answer: C

Question 5 of 60

The System Administrator has discovered the XGS device is overloaded and is dropping legitimate traffic.
Which setting is likely responsible for this behavior?

Unanalyzed policy configuration

TCP resets- TCP reset interface

Fail Closed hardware bypass mode

LogDB response enabled on NAP rules

Correct Answer: A