[Free] 2017(Apr) Ensurepass Testking Cisco 300-206 Latest Dumps 41-50

Ensurepass
2017 April Cisco Official New Released 300-206 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/300-206.html

Implementing Cisco Edge Network Security Solutions

QUESTION 41

When configuring a new context on a Cisco ASA device, which command creates a domain for the context?

 

A.

domain config name

B.

domain-name

C.

changeto/domain name change

D.

domain context 2

 

Correct Answer: B

 

 

QUESTION 42

Which two options are two purposes of the packet-tracer command? (Choose two.)

 

A.

to filter and monitor ingress traffic to a switch

B.

to configure an interface-specific packet trace

C.

to inject virtual packets into the data path

D.

to debug packet drops in a production network

E.

to correct dropped packets in a production network

 

Correct Answer: CD

 

 

QUESTION 43

Which two web browsers are supported for the Cisco ISE GUI? (Choose two.)

 

A.

HTTPS-enabled Mozilla Firefox version 3.x

B.

Netscape Navigator version 9

C.

Microsoft Internet Explorer version 8 in Internet Explorer 8-only mode

D.

Microsoft Internet Explorer version 8 in all Internet Explorer modes

E.

Google Chrome (all versions)

 

Correct Answer: AC

 

 

QUESTION 44

Which two voice protocols can the Cisco ASA inspect? (Choose two.)

 

A.

MGCP

B.

IAX

C.

Skype

D.

CTIQBE

 

Correct Answer: AD

 

 

QUESTION 45

clip_image002

clip_image004

clip_image006

clip_image008

In your role as network security administrator, you have installed syslog server software on a server whose IP address is 10.10.2.40. According to the exhibits, why isn’t the syslog server receiving any syslog messages?

A.

Logging is not enabled globally on the Cisco ASA.

B.

The syslog server has failed.

C.

There have not been any events with a severity level of seven.

D.

The Cisco ASA is not configured to log messages to the syslog server at that IP address.

 

Correct Answer: B

Explanation:

By process of elimination, we know that the other answers choices are not correct so that only leaves us with the server must have failed. We can see from the following screen shots, that events are being generated with severity level of debugging and below, The 10.10.2.40 IP address has been configured as a syslog server, and that logging has been enabled globally:

 

clip_image010

clip_image012

clip_image014

 

 

QUESTION 46

Which Cisco TrustSec role does a Cisco ASA firewall serve within an identity architecture?

 

A.

Access Requester

B.

Policy Decision Point

C.

Policy Information Point

D.

Policy Administration Point

E.

Policy Enforcement Point

 

Correct Answer: E

 

 

QUESTION 47

Which set of commands creates a message list that includes all severity 2 (critical) messages on a Cisco security device?

 

A.

logging list critical_messages level 2

console logging critical_messages

B.

logging list critical_messages level 2

logging console critical_messages

C.

logging list critical_messages level 2

logging console enable critical_messages

D.

logging list enable critical_messages level 2

console logging critical_messages

 

Correct Answer: B

 

 

QUESTION 48

When it is configured in accordance to Cisco best practices, the switchport port-security maximum command can mitigate which two types of Layer 2 attacks? (Choose two.)

 

A.

rogue DHCP servers

B.

ARP attacks

C.

DHCP starvation

D.

MAC spoofing

E.

CAM attacks

F.

IP spoofing

 

Correct Answer: CE

 

 

QUESTION 49

What are two reasons to implement Cisco IOS MPLS Bandwidth-Assured Layer 2 Services? (Choose two.)

 

A.

guaranteed bandwidth and peak rates as well as low cycle periods, regardless of which systems access the device

B.

increased resiliency through MPLS FRR for AToM circuits and better bandwidth utilization through MPLS TE

C.

enabled services over an IP/MPLS infrastructure, for enhanced MPLS Layer 2 functionality

D.

provided complete proactive protection against frame and device spoofing

 

Correct Answer: BC

 

 

QUESTION 50

When a Cisco ASA is configured in transparent mode, how can ARP traffic be controlled?

 

A.

By enabling ARP inspection; however, it cannot be controlled by an ACL

B.

By enabling ARP inspection or by configuring ACLs

C.

By configuring ACLs; however, ARP inspection is not supported

D.

By configuring NAT and ARP inspection

 

Correct Answer: A

100% Free Download!
—Download Free Demo:300-206 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 300-206 Full Exam PDF and VCE Q&As:222
—Get 10% off your purchase! Copy it:8GTC-8UIE-M1SC [2017.04.01-2017.04.30]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE

HOT EXAM!
Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com