Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 103

Which data format is the most efficient to build a baseline of traffic seen over an extended period of time?

Answer options

Correct answer: C

Explanation

NetFlow is particularly effective for analyzing traffic patterns over time as it summarizes flow data, making it easier to establish baselines. In contrast, syslog messages and firewall event logs are more focused on specific events and not ideal for long-term traffic analysis, while full packet capture provides too much detail, making it less efficient for this purpose.