Download Implementing Cisco Edge Network Security Solutions.passguide.300-206.2019-04-04.1e.196q.vcex

Download Exam

File Info

Exam Implementing Cisco Edge Network Security Solutions
Number 300-206
File Name Implementing Cisco Edge Network Security Solutions.passguide.300-206.2019-04-04.1e.196q.vcex
Size 5.91 Mb
Posted April 04, 2019
Downloads 116

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Coupon: EXAM_HUB

Discount: 20%


Demo Questions

Question 1
A network printer has a DHCP server service that cannot be disabled. How can a layer 2 switch be configured to prevent the printer from causing network issues?

  • A: Remove the ip helper-address
  • B: Configure a Port-ACL to block outbound TCP port 68
  • C: Configure DHCP snooping
  • D: Configure port-security

Question 2
A switch is being configured at a new location that uses statically assigned IP addresses. Which will ensure that ARP inspection works as expected?

  • A: Configure the 'no-dhcp' keyword at the end of the ip arp inspection command
  • B: Enable static arp inspection using the command 'ip arp inspection static vlan vlan-number
  • C: Configure an arp access-list and apply it to the ip arp inspection command
  • D: Enable port security

Question 3
Which of the following would need to be created to configure an application-layer inspection of SMTP traffic operating on port 2525?

  • A: A class-map that matches port 2525 and applying an inspect ESMTP policy-map for that class in the global inspection policy
  • B: A policy-map that matches port 2525 and applying an inspect ESMTP class-map for that policy
  • C: An access-list that matches on TCP port 2525 traffic and applying it on an interface with the inspect option
  • D: A class-map that matches port 2525 and applying it on an access-list using the inspect option

Question 4
What is the default behavior of an access list on the Cisco ASA security appliance?

  • A: It will permit or deny traffic based on the access-list criteria.
  • B: It will permit or deny all traffic on a specified interface.
  • C: An access group must be configured before the access list will take effect for traffic control.
  • D: It will allow all traffic.

Question 5
Which three options are hardening techniques for Cisco IOS routers? (Choose three.)

  • A: limiting access to infrastructure with access control lists
  • B: enabling service password recovery
  • C: using SSH whenever possible
  • D: encrypting the service password
  • E: using Telnet whenever possible
  • F: enabling DHCP snooping

Question 6
Which three commands can be used to harden a switch? (Choose three.)

  • A: switch(config-if)# spanning-tree bpdufilter enable
  • B: switch(config)# ip dhcp snooping
  • C: switch(config)# errdisable recovery interval 900
  • D: switch(config-if)# spanning-tree guard root
  • E: switch(config-if)# spanning-tree bpduguard disable
  • F: switch(config-if)# no cdp enable

Question 7
What are three features of the Cisco ASA 1000V? (Choose three.)

  • A: cloning the Cisco ASA 1000V
  • B: dynamic routing
  • C: the Cisco VNMC policy agent
  • D: IPv6
  • E: active/standby failover
  • F: QoS

Question 8
If the Cisco ASA 1000V has too few licenses, what is its behavior?

  • A: It drops all traffic.
  • B: It drops all outside-to-inside packets.
  • C: It drops all inside-to-outside packets.
  • D: It passes the first outside-to-inside packet and drops all remaining packets.

Question 9
A network administrator is creating an ASA-CX administrative user account with the following parameters: 
The user will be responsible for configuring security policies on network devices. 
The user needs read-write access to policies.  
The account has no more rights than necessary for the job.  
What role will the administrator assign to the user?

  • A: Administrator
  • B: Security administrator
  • C: System administrator
  • D: Root Administrator
  • E: Exec administrator

Question 10
What command alters the SSL ciphers used by the Cisco Email Security Appliance for TLS sessions and HTTPS access?

  • A: sslconfig
  • B: sslciphers
  • C: tlsconifg
  • D: certconfig



You can buy ProfExam with a 20% discount..

Get Now!


Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen


Use VCE Exam Simulator to open VCE files