[Free] 2017(Nov) Dumps4cert Testinsides Cisco 300-206 Dumps with VCE and PDF Download 101-110

Dumps4cert 2017 Nov Cisco Official New Released 300-206
100% Free Download! 100% Pass Guaranteed!
http://www.Dumps4cert.com/300-206.html

Implementing Cisco Edge Network Security Solutions

Question No: 101

Which three commands can be used to harden a switch? (Choose three.)

  1. switch(config-if)# spanning-tree bpdufilter enable

  2. switch(config)# ip dhcp snooping

  3. switch(config)# errdisable recovery interval 900

  4. switch(config-if)# spanning-tree guard root

  5. switch(config-if)# spanning-tree bpduguard disable

  6. switch(config-if)# no cdp enable

Answer: B,D,F

Question No: 102

Which of the following would need to be created to configure an application-layer inspection of SMTP traffic operating on port 2525?

  1. A class-map that matches port 2525 and applying an inspect ESMTP policy-map for that class in the globalinspection policy

  2. A policy-map that matches port 2525 and applying an inspect ESMTP class-map for that policy

  3. An access-list that matches on TCP port 2525 traffic and applying it on an interface with the inspect option

  4. A class-map that matches port 2525 and applying it on an access-list using the inspect option

Answer: A

Question No: 103

Which feature is a limitation of a Cisco ASA 5555-X running 8.4.5 version with multiple contexts?

  1. Deep packet inspection

  2. Packet tracer

  3. IPsec

  4. Manual/auto NAT

  5. Multipolicy packet capture

Answer: C

Question No: 104

Refer to the exhibit.

Dumps4Cert 2017 PDF and VCE

Server A is a busy server that offers these services:

– World Wide Web – DNS

Which command captures http traffic from Host A to Server A?

  1. capture traffic match udp host 10.1.1.150 host 10.2.2.100

  2. capture traffic match 80 host 10.1.1.150 host 10.2.2.100

C. capture traffic match ip 10.2.2.0 255.255.255.192 host 10.1.1.150

  1. capture traffic match tcp host 10.1.1.150 host 10.2.2.100

  2. capture traffic match tcp host 10.2.2.100 host 10.1.1.150 eq 80

Answer: D

Question No: 105

Which technology can be deployed with a Cisco ASA 1000V to segregate Layer 2 access within a virtual cloud environment?

  1. Cisco Nexus 1000V

  2. Cisco VSG

  3. WSVA

  4. ESVA

Answer: A

Question No: 106

You have installed a web server on a private network. Which type of NAT must you implement to enable access to the web server for public Internet users?

  1. static NAT

  2. dynamic NAT

  3. network object NAT

  4. twice NAT

Answer: A

Question No: 107

What are the three types of private VLAN ports? (Choose three.)

  1. promiscuous

  2. isolated

  3. community

  4. primary

  5. secondary

  6. trunk

Answer: A,B,C

Question No: 108

Which two options are purposes of the packet-tracer command? (Choose two.)

  1. to filter and monitor ingress traffic to a switch

  2. to configure an interface-specific packet trace

  3. to simulate network traffic through a data path

  4. to debug packet drops in a production network

  5. to automatically correct an ACL entry in an ASA

Answer: C,D

Question No: 109

Cisco Security Manager can manage which three products? (Choose three.)

  1. Cisco IOS

  2. Cisco ASA

  3. Cisco IPS

  4. Cisco WLC

  5. Cisco Web Security Appliance

  6. Cisco Email Security Appliance

  7. Cisco ASA CX

  8. Cisco CRS

Answer: A,B,C

Question No: 110

At which layer does MACsecprovide encryption?

  1. Layer 1

  2. Layer 2

  3. Layer 3

  4. Layer 4

Answer: B

100% Free Download!
Download Free Demo:300-206 Demo PDF
100% Pass Guaranteed!
Download 2017 Dumps4cert 300-206 Full Exam PDF and VCE

Dumps4cert ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Dumps4cert IT Certification PDF and VCE