Free VCE and PDF Exam Dumps from PassLeader
Vendor: Cisco Exam Code: 300-206 Exam Name: Implementing Cisco Edge Network Security Solutions New Questions And Answers Visit PassLeader and Download Full Version 300-206 Exam Dumps NEW QUESTION 133 You have installed a web server on a private network. Which type of NAT must you implement to enable access to the web server for public Internet users? A. B. C. D.
static NAT dynamic NAT network object NAT twice NAT
Answer: A NEW QUESTION 134 Refer to the exhibit. Which two statements about the SNMP configuration are true? (Choose two.)
A. B. C. D. E.
The router's IP address is 192.168.1.1. The SNMP server's IP address is 192.168.1.1. Only the local SNMP engine is configured. Both the local and remote SNMP engines are configured. The router is connected to the SNMP server via port 162.
Answer: BD NEW QUESTION 135 When you configure a Botnet Traffic Filter on a Cisco firewall, what are two optional tasks? (Choose two.) A. B. C. D.
Enable the use of dynamic databases. Add static entries to the database. Enable DNS snooping. Enable traffic classification and actions.
300-206 Exam Dumps
300-206 Exam Questions 300-206 PDF Dumps http://www.passleader.com/300-206.html
300-206 VCE Dumps
Free VCE and PDF Exam Dumps from PassLeader E. Block traffic manually based on its syslog information. Answer: BE NEW QUESTION 136 Refer to the exhibit. What is the effect of this configuration?
A. B. C. D.
The firewall will inspect IP traffic only between networks 192.168.1.0 and 192.168.2.0. The firewall will inspect all IP traffic except traffic to 192.168.1.0 and 192.168.2.0. The firewall will inspect traffic only if it is defined within a standard ACL. The firewall will inspect all IP traffic.
Answer: A NEW QUESTION 137 When you configure a Cisco firewall in multiple context mode, where do you allocate interfaces? A. B. C. D.
in the system execution space in the admin context in a user-defined context in the global configuration
Answer: A NEW QUESTION 138 At which layer does Dynamic ARP Inspection validate packets? A. B. C. D.
Layer 2 Layer 3 Layer 4 Layer 7
Answer: A NEW QUESTION 139 Which feature can suppress packet flooding in a network? A. B. C. D.
PortFast BPDU guard Dynamic ARP Inspection storm control
Answer: D NEW QUESTION 140 What is the default violation mode that is applied by port security? A. restrict 300-206 Exam Dumps
300-206 Exam Questions 300-206 PDF Dumps http://www.passleader.com/300-206.html
300-206 VCE Dumps
Free VCE and PDF Exam Dumps from PassLeader B. protect C. shutdown D. shutdown VLAN Answer: C NEW QUESTION 141 What are two security features at the access port level that can help mitigate Layer 2 attacks? (Choose two.) A. B. C. D. E.
DHCP snooping IP Source Guard Telnet Secure Shell SNMP
Answer: AB NEW QUESTION 142 At which layer does MACsec provide encryption? A. B. C. D.
Layer 1 Layer 2 Layer 3 Layer 4
Answer: B NEW QUESTION 143 What are two enhancements of SSHv2 over SSHv1? (Choose two.) A. B. C. D. E.
VRF-aware SSH support DH group exchange support RSA support keyboard-interactive authentication SHA support
Answer: AB NEW QUESTION 144 ……
Visit PassLeader and Download Full Version 300-206 Exam Dumps
300-206 Exam Dumps
300-206 Exam Questions 300-206 PDF Dumps http://www.passleader.com/300-206.html
300-206 VCE Dumps