Cisco 350-701: How should customer block websites based on custom list

Question

For a given policy in Cisco Umbrella, how should a customer block websites based on a custom list?

A. by adding the website IP addresses to the Cisco Umbrella blocklist
B. by adding the websites to a blocked type destination list
C. by specifying blocked domains in the policy settings
D. by specifying the websites in a custom blocked category

Answer

B. by adding the websites to a blocked type destination list

Explanation

The correct answer is B. by adding the websites to a blocked type destination list.

A destination list is a custom list of domains or URLs that you want to allow or block for your identities. You can create destination lists through the Policy Components > Destination Lists page, or within the policy wizard when creating or editing a policy. To block websites based on a custom list, you need to create a blocked type destination list and add the websites you want to block to it. Then, you need to apply the destination list to a policy that matches the identities you want to protect. You can also specify the block page behavior and bypass options for the destination list.

The other options are incorrect because:

• A. by adding the website IP addresses to the Cisco Umbrella blocklist. This is not a valid option because Cisco Umbrella does not allow customers to add IP addresses to the blocklist. The blocklist is a predefined security category that contains known malicious IP addresses that are blocked by default.
• C. by specifying blocked domains in the policy settings. This is not a valid option because Cisco Umbrella does not allow customers to specify blocked domains in the policy settings. The policy settings only allow customers to select security categories, content categories, and applications to block or allow.
• D. by specifying the websites in a custom blocked category. This is not a valid option because Cisco Umbrella does not allow customers to create custom blocked categories. The content categories are predefined by Cisco Umbrella and cannot be modified by customers.

Reference

• Manage Policies (umbrella.com)
• Policy Settings (umbrella.com)
• Configure Policies (umbrella.com)
• Manage Security Settings (umbrella.com)

Implementing and Operating Cisco Security Core Technologies 350-701 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Implementing and Operating Cisco Security Core Technologies 350-701 exam and earn Implementing and Operating Cisco Security Core Technologies 350-701 certification.