300-206 Premium Bundle

300-206 Premium Bundle

Implementing Cisco Edge Network Security Solutions Certification Exam

4.5 
(31665 ratings)
0 QuestionsPractice Tests
0 PDFPrint version
November 23, 2024Last update

Introducing The New!

Surepassexam Collection

Get Unlimited Access to all
Surepassexam's PREMIUM files

DOWNLOAD NOW
Download Quality. Itexamlabs.com Certified
  1. Home
  2. Cisco
  3. 300-206 Exam

Cisco 300-206 Free Practice Questions

Q1. Which two TCP ports must be open on the Cisco Security Manager server to allow the server to communicate with the Cisco Security Manager client? (Choose two.) 

A. 1741 

B. 443 

C. 80 

D. 1740 

E. 8080 

Answer: A,B 

Q2. Which two VPN types can you monitor and control with Cisco Prime Security Manager? (Choose two.) 

A. AnyConnect SSL 

B. site-to-site 

C. clientless SSL 

D. IPsec remote-access 

Answer: A,D 

Explanation: http://www.cisco.com/c/en/us/td/docs/security/asacx/9-1/user/guide/b_User_Guide_for_ASA_CX_and_PRSM_9_1.pdf 

Q3. Which two parameters must be configured before you enable SCP on a router? (Choose two.) 

A. SSH 

B. authorization 

C. ACLs 

D. NTP 

E. TACACS+ 

Answer: A,B 

Q4. When a Cisco ASA is configured in multicontext mode, which command is used to change between contexts? 

A. changeto config context 

B. changeto context 

C. changeto/config context change 

D. changeto/config context 2 

Answer:

Q5. Which.URL downloads a copy of packet-capture named "security" residing on a Cisco ASA adaptive security appliance with IP 10.10.100.11? 

A. https://10.10.100.11/capture/security/pcap 

B. https://10.10.100.11/capture/security.pcap 

C. https://10.10.100.11/security.pcap/download 

D. https://10.10.100.11/asa/security/pcap 

Answer:

Q6. hich option must be configured on a transparent Cisco ASA adaptive security appliance for it to be managed over Layer 3 networks? 

A. Static routes 

B. Routed interface 

C. Security context 

D. BVI 

Answer:

Q7. A network administrator is creating an ASA-CX administrative user account with the following parameters: 

The user will be responsible for configuring security policies on network devices. 

The user needs read-write access to policies. 

The account has no more rights than necessary for the job. 

What role will be assigned to the user? 

A. Administrator 

B. Security administrator 

C. System administrator 

D. Root Administrator 

E. Exec administrator 

Answer:

Q8. What are two high-level task areas in a Cisco Prime Infrastructure life-cycle workflow? (Choose two.) 

A. Design 

B. Operate 

C. Maintain 

D. Log 

E. Evaluate 

Answer: A,B 

Q9. Which two voice protocols can the Cisco ASA inspect? (Choose two.) 

A. MGCP 

B. IAX 

C. Skype 

D. CTIQBE 

Answer: A,D 

Q10. Refer to the exhibit. 

What traffic is being captured by the Cisco ASA adaptive security appliance? 

A. UDP traffic sourced from host 10.10.0.12 on port 80 

B. TCP traffic destined to host 10.10.0.12 on port 80 

C. TCP traffic sourced from host 10.10.0.12 on port 80 

D. UDP traffic destined to host 10.10.0.12 on port 80 

Answer:

Q11. IPv6 addresses in an organization's network are assigned using Stateless Address Autoconfiguration. What is a security concern of using SLAAC for IPv6 address assignment? 

A. Man-In-The-Middle attacks or traffic interception using spoofed IPv6 Router Advertisements 

B. Smurf or amplification attacks using spoofed IPv6 ICMP Neighbor Solicitations 

C. Denial of service attacks using TCP SYN floods 

D. Denial of Service attacks using spoofed IPv6 Router Solicitations 

Answer:

Q12. What is the default behavior of an access list on the Cisco ASA security appliance? 

A. It will permit or deny traffic based on the access-list criteria. 

B. It will permit or deny all traffic on a specified interface. 

C. An access group must be configured before the access list will take effect for traffic control. 

D. It will allow all traffic. 

Answer:

Q13. In a Cisco ASAv failover deployment, which interface is preconfigured as the failover interface? 

A. GigabitEthernet0/2 

B. GigabitEthernet0/4 

C. GigabitEthernet0/6 

D. GigabitEthernet0/8 

Answer:

Q14. Refer to the exhibit. 

Server A is a busy server that offers these services: 

. World Wide Web 

. DNS 

Which command captures http traffic from Host A to Server A? 

A. capture traffic match udp host 10.1.1.150 host 10.2.2.100 

B. capture traffic match 80 host 10.1.1.150 host 10.2.2.100 

C. capture traffic match ip 10.2.2.0 255.255.255.192 host 10.1.1.150 

D. capture traffic match tcp host 10.1.1.150 host 10.2.2.100 

E. capture traffic match tcp host 10.2.2.100 host 10.1.1.150 eq 80 

Answer:

Q15. For which management session types does ASDM allow a maximum simultaneous connection limit to be set? 

A. ASDM, Telnet, SSH 

B. ASDM, Telnet, SSH, console 

C. ASDM, Telnet, SSH, VTY 

D. ASDM, Telnet, SSH, other 

Answer:

START 300-206 EXAM
© All pages Copyright to 2024 by itexamlabs.com. All rights reserved. testpreplab.com certstest.com