Download Implementing Cisco Edge Network Security Solutions.passguide.300-206.2019-04-04.1e.196q.vcex

Download Exam

File Info

Exam Implementing Cisco Edge Network Security Solutions
Number 300-206
File Name Implementing Cisco Edge Network Security Solutions.passguide.300-206.2019-04-04.1e.196q.vcex
Size 5.91 Mb
Posted April 04, 2019
Downloads 116
Download Implementing Cisco Edge Network Security Solutions.passguide.300-206.2019-04-04.1e.196q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%


Demo Questions

Question 1

A network printer has a DHCP server service that cannot be disabled. How can a layer 2 switch be configured to prevent the printer from causing network issues?

  • A: Remove the ip helper-address
  • B: Configure a Port-ACL to block outbound TCP port 68
  • C: Configure DHCP snooping
  • D: Configure port-security

Correct Answer: C

Question 2

A switch is being configured at a new location that uses statically assigned IP addresses. Which will ensure that ARP inspection works as expected?

  • A: Configure the 'no-dhcp' keyword at the end of the ip arp inspection command
  • B: Enable static arp inspection using the command 'ip arp inspection static vlan vlan-number
  • C: Configure an arp access-list and apply it to the ip arp inspection command
  • D: Enable port security

Correct Answer: C

Question 3

Which of the following would need to be created to configure an application-layer inspection of SMTP traffic operating on port 2525?

  • A: A class-map that matches port 2525 and applying an inspect ESMTP policy-map for that class in the global inspection policy
  • B: A policy-map that matches port 2525 and applying an inspect ESMTP class-map for that policy
  • C: An access-list that matches on TCP port 2525 traffic and applying it on an interface with the inspect option
  • D: A class-map that matches port 2525 and applying it on an access-list using the inspect option

Correct Answer: A

Question 4

What is the default behavior of an access list on the Cisco ASA security appliance?

  • A: It will permit or deny traffic based on the access-list criteria.
  • B: It will permit or deny all traffic on a specified interface.
  • C: An access group must be configured before the access list will take effect for traffic control.
  • D: It will allow all traffic.

Correct Answer: C

Question 5

Which three options are hardening techniques for Cisco IOS routers? (Choose three.)

  • A: limiting access to infrastructure with access control lists
  • B: enabling service password recovery
  • C: using SSH whenever possible
  • D: encrypting the service password
  • E: using Telnet whenever possible
  • F: enabling DHCP snooping

Correct Answer: ACD

Question 6

Which three commands can be used to harden a switch? (Choose three.)

  • A: switch(config-if)# spanning-tree bpdufilter enable
  • B: switch(config)# ip dhcp snooping
  • C: switch(config)# errdisable recovery interval 900
  • D: switch(config-if)# spanning-tree guard root
  • E: switch(config-if)# spanning-tree bpduguard disable
  • F: switch(config-if)# no cdp enable

Correct Answer: BDF

Question 7

What are three features of the Cisco ASA 1000V? (Choose three.)

  • A: cloning the Cisco ASA 1000V
  • B: dynamic routing
  • C: the Cisco VNMC policy agent
  • D: IPv6
  • E: active/standby failover
  • F: QoS

Correct Answer: ACE

Question 8

If the Cisco ASA 1000V has too few licenses, what is its behavior?

  • A: It drops all traffic.
  • B: It drops all outside-to-inside packets.
  • C: It drops all inside-to-outside packets.
  • D: It passes the first outside-to-inside packet and drops all remaining packets.

Correct Answer: D

Question 9

A network administrator is creating an ASA-CX administrative user account with the following parameters: 
The user will be responsible for configuring security policies on network devices. 
The user needs read-write access to policies.  
The account has no more rights than necessary for the job.  
What role will the administrator assign to the user?

  • A: Administrator
  • B: Security administrator
  • C: System administrator
  • D: Root Administrator
  • E: Exec administrator

Correct Answer: B

Question 10

What command alters the SSL ciphers used by the Cisco Email Security Appliance for TLS sessions and HTTPS access?

  • A: sslconfig
  • B: sslciphers
  • C: tlsconifg
  • D: certconfig

Correct Answer: A





You can buy ProfExam with a 20% discount!


Use ProfExam Simulator to open VCEX and EXAM files