[Free] 2017(Nov) Dumps4cert Testinsides Cisco 300-209 Dumps with VCE and PDF Download 71-80

Dumps4cert 2017 Nov Cisco Official New Released 300-209
100% Free Download! 100% Pass Guaranteed!
http://www.Dumps4cert.com/300-209.html

Implementing Cisco Secure Mobility Solutions

Question No: 71

A company needs to provide secure access to its remote workforce. The end users use public kiosk computers and a wide range of devices. They will be accessing only an internal web application. Which VPN solution satisfies these requirements?

  1. Clientless SSLVPN

  2. AnyConnect Client using SSLVPN

  3. AnyConnect Client using IKEv2

  4. FlexVPN Client

  5. Windows built-in PPTP client

Answer: A

Question No: 72

Which command will prevent a group policy from inheriting a filter ACL in a clientless SSL VPN?

  1. vpn-filter none

  2. no vpn-filter

  3. filter value none

  4. filter value ACLname

Answer: C

Reference:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/T- Z/cmdref4/v.html#pgfId-1842564

Question No: 73

A network engineer is troubleshooting a site VPN tunnel configured on a Cisco ASA and wants to validate that the tunnel is sending and receiving traffic. Which command accomplishes this task?

  1. show crypto ikev1 sa peer

  2. show crypto ikev2 sa peer

  3. show crypto ipsec sa peer

  4. show crypto isakmp sa peer

Answer: C

Question No: 74

In a spoke-to-spoke DMVPN topology, which type of interface does a branch router require?

  1. Virtual tunnel interface

  2. Multipoint GRE interface

  3. Point-to-point GRE interface

  4. Loopback interface

Answer: B

Question No: 75

Refer to the exhibit.

Dumps4Cert 2017 PDF and VCE

Which statement about the given IKE policy is true?

  1. The tunnel will be valid for 2 days, 88 minutes, and 00 seconds.

  2. It will use encrypted nonces for authentication.

  3. It has a keepalive of 60 minutes, checking every 5 minutes.

  4. It uses a 56-bit encryption algorithm.

Answer: B

Question No: 76

When troubleshooting established clientless SSL VPN issues, which three steps should be taken? (Choose three.)

  1. Clear the browser history.

  2. Clear the browser and Java cache.

  3. Collect the information from the computer event log.

  4. Enable and use HTML capture tools.

  5. Gather crypto debugs on the adaptive security appliance.

  6. Use Wireshark to capture network traffic.

Answer: B,E,F

Question No: 77

Which technology must be installed on the client computer to enable users to launch applications from a Clientless SSL VPN?

  1. Java

  2. QuickTime plug-in

  3. Silverlight

  4. Flash

Answer: A

Question No: 78

A Cisco IOS SSL VPN gateway is configured to operate in clientless mode so that users can access file shares on a Microsoft Windows 2003 server. Which protocol is used between the Cisco IOS router and the Windows server?

  1. HTTPS

  2. NetBIOS

  3. CIFS

  4. HTTP

Answer: C

Question No: 79

Where is split-tunneling defined for remote access clients on an ASA?

  1. Group-policy

  2. Tunnel-group

  3. Crypto-map

  4. Web-VPN Portal

  5. ISAKMP client

Answer: A

Question No: 80

After adding a remote-access IPsec tunnel via the VPN wizard, an administrator needs to tune the IPsec policy parameters. Where is the correct place to tune the IPsec policy parameters in Cisco ASDM?

  1. IPsec user profile

  2. Crypto Map

  3. Group Policy

  4. IPsec Policy

  5. IKE Policy

Answer: B

100% Free Download!
Download Free Demo:300-209 Demo PDF
100% Pass Guaranteed!
Download 2017 Dumps4cert 300-209 Full Exam PDF and VCE

Dumps4cert ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Dumps4cert IT Certification PDF and VCE