[Free] 2017(Apr) Ensurepass Braindumps Cisco 300-209 Latest Dumps 131-140

Ensurepass
2017 April Cisco Official New Released 300-209 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/300-209.html

Implementing Cisco Secure Mobility Solutions (SIMOS)

QUESTION 131

Which option is an example of an asymmetric algorithm?

 

A.

3DES

B.

IDEA

C.

AES

D.

RSA

 

Correct Answer: D

 

 

QUESTION 132

A user is unable to establish an AnyConnect VPN connection to an ASA. When using the Real-Time Log viewer within ASDM to troubleshoot the issue, which two filter options would the administrator choose to show only syslog messages relevant to the VPN connection? (Choose two.)

 

A.

Client’s public IP address

B.

Client’s operating system

C.

Client’s default gateway IP address

D.

Client’s username

E.

ASA’s public IP address

 

Correct Answer: AD

 


 

QUESTION 133

Which transform set is contained in the IKEv2 default proposal?

 

A.

aes-cbc-192, sha256, group 14

B.

3des, md5, group 7

C.

3des, sha1, group 1

D.

aes-cbc-128, sha, group 5

 

Correct Answer: D

 

 

QUESTION 134

Which algorithm provides both encryption and authent
ication for plane communication?

 

A.

RC4

B.

SHA-384

C.

AES-256

D.

SHA-96

E.

3DES

F.

AES-GCM

 

Correct Answer: F

QUESTION 135

When initiating a new SSL or TLS session, the client receives the server SSL certificate and validates it. After validating the server certificate, what does the client use the certificate for?

 

A.

The client and server use the server public key to encrypt the SSL session data.

B.

The server creates a separate session key and sends it to the client. The client decrypts the session key by using the server public key.

C.

The client and server switch to a DH key exchange to establish a session key.

D.

The client generates a random session key, encrypts it with the server public key, and then sends it to the server.

 

Correct Answer: D

 

 

QUESTION 136

Which two statements about the Cisco ASA Clientless SSL VPN smart tunnels feature are true? (Choose two.)

 

A.

Smart tunnels are enabled on the secure gateway (Cisco ASA) for specific applications that run on the end client and work irrespective of which transport protocol the application uses.

B.

Smart tunnels require Administrative privileges to run on the client machine.

C.

A smart tunnel is a DLL that is pushed from the headend to the client machine after SSL VPN portal authentication and that is attached to smart-tunneled processes to route traffic through the SSL VPN session with the gateway.

D.

Smart tunnels offer better performance than the client-server plugins.

E.

Smart tunnels are supported on Windows, Mac, and Linux.

 

Correct Answer: CD

 

 

QUESTION 137

Refer to the exhibit. Which VPN solution does this configuration represent?

 

clip_image002

A.

DMVPN

B.

GETVPN

C.

FlexVPN

D.

site-to-site

 

Correct Answer: B

 

 

QUESTION 138

Which equation describes an elliptic curve?

 

A.

y3 = x3 + ax + b

B.

x3 = y2 + ab + x

C.

y4 = x2 + ax + b

D.

y2 = x3 + ax + b

E.

y2 = x2 + ax + b2

 

Correct Answer: D

 

 

QUESTION 139

A company has decided to migrate an existing IKEv1 VPN tunnel to IKEv2. Which two are valid configuration constructs on a Cisco IOS router? (Choose two.)

 

A.

crypto ikev2 keyring keyring-name

peer peer1

address 209.165.201.1 255.255.255.255

pre-shared-key local key1

pre-shared-key remote key2

B.

crypto ikev2 transform-set transform-set-name

esp-3des esp-md5-hmac

esp-aes esp-sha-hmac

C.

crypto ikev2 map crypto-map-name

set crypto ikev2 tunnel-group tunnel-group-name

set crypto ikev2 transform-set transform-set-name

D.

crypto ikev2 tunnel-group tunnel-group-name

match identity remote address 209.165.201.1

authentication local pre-share

authentication remote pre-share

E.

crypto ikev2 profile profile-name

match identity remote address 209.165.201.1

authentication local pre-share

authentication remote pre-share

 

Correct Answer: AE

 

 

QUESTION 140

What are two benefits of DMVPN Phase 3? (Choose two.)

 

A.

Administrators can use summarization of routing protocol updates from hub to spokes.

B.

It introduces hierarchical DMVPN deployments.

C.

It introduces non-hierarchical DMVPN deployments.

D.

It supports L2TP over IPSec as one of the VPN protocols.

 

Correct Answer: AB

100% Free Download!
—Download Free Demo:300-209 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 300-209 Full Exam PDF and VCE Q&As:267
—Get 10% off your purchase! Copy it:8GTC-8UIE-M1SC [2017.04.01-2017.04.30]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE

HOT EXAM!
Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com