[Free] 2017(Apr) Ensurepass Braindumps Cisco 300-209 Latest Dumps 41-50

Ensurepass
2017 April Cisco Official New Released 300-209 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/300-209.html

Implementing Cisco Secure Mobility Solutions (SIMOS)

QUESTION 41

Which three remote access VPN methods in an ASA appliance provide support for Cisco Secure Desktop? (Choose three.)

 

A.

IKEv1

B.

IKEv2

C.

SSL client

D.

SSL clientless

E.

ESP

F.

L2TP

 

Correct Answer: BCD

 

 

QUESTION 42

Refer to the exhibit. An administrator is adding IPv6 addressing to an already functioning tunnel. The administrator is unable to ping 2001:DB8:100::2 but can ping 209.165.200.226. Which configuration needs to be added or changed?

 

clip_image001

 

A.

No configuration change is necessary. Everything is working correctly.

B.

OSPFv3 needs to be configured on the interface.

C.

NHRP needs to be configured to provide NBMA mapping.

D.

Tunnel mode needs to be changed to GRE IPv4.

E.

Tunnel mode needs to be changed to GRE IPv6.

 

Correct Answer: E

 

 

QUESTION 43

A Cisco IOS SSL VPN gateway is configured to operate in clientless mode so that users can access file shares on a Microsoft Windows 2003 server. Which protocol is used between the Cisco IOS router and the Windows server?

 

A.

HTTPS

B.

NetBIOS

C.

CIFS

D.

HTTP

 

Correct Answer: C

 

 

QUESTION 44

The Cisco AnyConnect client fails to connect via IKEv2 but works with SSL. The following error message is displayed:

 

“Login Denied, unauthorized connection mechanism, contact your administrator”

 

What is the most possible cause of this problem?

 

A.

DAP is terminating the connection because IKEv2 is the protocol that is being used.

B.

The client endpoint does not have the correct user profile to initiate an IKEv2 connection.

C.

The AAA server that is being used does not authorize IKEv2 as the connection mechanism.

D.

The administrator is restricting access to this specific user.

E.

The IKEv2 protocol is not enabled in the group policy of the VPN headend.

Correct Answer: E

 

 

QUESTION 45

Which command can you use to monitor the phase 1 establishment of a FlexVPN tunnel?

 

A.

show crypto ipsec sa

B.

show crypto isakmp sa

C.

show crypto ikev2 sa

D.

show ip nhrp

 

Correct Answer: C

 

 

QUESTION 46

Refer to the exhibit. An engineer is troubleshooting a new GRE over IPSEC tunnel. The tunnel is established, but the engineer cannot ping from spoke 1 to spoke 2. Which type of traffic is being blocked?

 

clip_image002

 

A.

ESP packets from spoke1 to spoke2

B.

ISAKMP packets from spoke2 to spoke1

C.

ESP packets from spoke2 to spoke1

D.

ISAKMP packets from spoke1 to spoke2

 

Correct Answer: C

 

 

QUESTION 47

Which two options are purposes of the key server in Cisco IOS GETVPN? (Choose two.)

 

A.

to define group members.

B.

to distribute static routing information.

C.

to distribute dynamic routing information.

D.

to encrypt transit traffic.

 

Correct Answer: AD

 

QUESTION 48

Which cryptographic algorithms are a part of the Cisco NGE suite?

 

A.

HIPPA DES

B.

AES-CBC-128

C.

RC4-128

D.

AES-GCM-256

 

Correct Answer: D

 

 

QUESTION 49

Which configuration is used to build a tunnel between a Cisco ASA and ISR?

 

A.

crypto map

B.

DMVPN

C.

GET VPN

D.

GRE with IPsec

E.

GRE without IPsec

 

Correct Answer: A

 

 

QUESTION 50

Which command enables IOS SSL VPN Smart Tunnel support for PuTTY?

 

A.

appl ssh putty.exe win

B.

appl ssh putty.exe windows

C.

appl ssh putty

D.

appl ssh putty.exe

 

Correct Answer: B

100% Free Download!
—Download Free Demo:300-209 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 300-209 Full Exam PDF and VCE Q&As:267
—Get 10% off your purchase! Copy it:8GTC-8UIE-M1SC [2017.04.01-2017.04.30]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE

HOT EXAM!
Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com