Cisco Updated 200-201 Exam Questions and Answers by adriel

The operation described is characteristic of the fork() system call in Linux, which is used to create a new process. The fork() system call generates a new process by duplicating the calling (parent) process. If the fork() is successful, the PID of the child process is returned to the parent process, and a 0 value is returned to the child process. If unsuccessful, a negative value is returned2.

References :=

• How to create a process in Linux? - Online Tutorials Library

 ARP cache poisoning is a type of attack that intercepts traffic on a switched network by sending spoofed ARP messages to associate the attacker’s MAC address with the IP address of a legitimate host or gateway. This way, the attacker can redirect the traffic intended for the legitimate host or gateway to his own device and perform a man-in-the-middle attack. References := Cisco Cybersecurity Operations Fundamentals

• A: Stateful inspection tracks the state of network connections, such as TCP streams, to determine if a packet is part of an established connection.
• B: Deep packet inspection examines the data part (payload) of a packet and can identify, block, or reroute packets with specific types of malware. Stateful inspection does not inspect the payload for malware.