Latest Braindump2go 300-206 E-Book PDF Free Download (61-70)

Cisco Official News: New Braindump2go 300-206 Exam Questions Updated Today! Want to know New Questions in 2015 300-206 Exam? Download Free Braindump2go 300-206 Exam Preparation Materials Now!

Vendor: Cisco
Exam Code: 300-206
Exam Name: Implementing Cisco Edge Network Security Solutions

Keywords: 300-206 Exam Dumps,300-206 Practice Tests,300-206 Practice Exams,300-206 Exam Questions,300-206 PDF,300-206 VCE Free,300-206 Book,300-206 E-Book,300-206 Study Guide,300-206 Braindump,300-206 Prep Guide

QUESTION 61
Which URL matches the regex statement "http"*/"www.cisco.com/"*[^E]"xe"?

A.    https://www.cisco.com/ftp/ios/tftpserver.exe
B.    https://cisco.com/ftp/ios/tftpserver.exe
C.    http:/www.cisco.com/ftp/ios/tftpserver.Exe
D.    https:/www.cisco.com/ftp/ios/tftpserver.EXE

Answer: A

QUESTION 62
Which two statements about Cisco IOS Firewall are true? (Choose two.)

A.    It provides stateful packet inspection.
B.    It provides faster processing of packets than Cisco ASA devices provide.
C.    It provides protocol-conformance checks against traffic.
D.    It eliminates the need to secure routers and switches throughout the network.
E.    It eliminates the need to secure host machines throughout the network.

Answer: AC

QUESTION 63
Which two VPN types can you monitor and control with Cisco Prime Security Manager? (Choose two.)

A.    AnyConnect SSL
B.    site-to-site
C.    clientless SSL
D.    IPsec remote-access

Answer: AB

QUESTION 64
What are three attributes that can be applied to a user account with RBAC? (Choose three.)

A.    domain
B.    password
C.    ACE tag
D.    user roles
E.    VDC group tag
F.    expiry date

Answer: BDF

QUESTION 65
Which command is used to nest objects in a pre-existing group?

A.    object-group
B.    network group-object
C.    object-group network
D.    group-object

Answer: D

QUESTION 66
Which threat-detection feature is used to keep track of suspected attackers who create connections to too many hosts or ports?

A.    complex threat detection
B.    scanning threat detection
C.    basic threat detection
D.    advanced threat detection

Answer: B

QUESTION 67
What is the default behavior of an access list on the Cisco ASA security appliance?

A.    It will permit or deny traffic based on the access-list criteria.
B.    It will permit or deny all traffic on a specified interface.
C.    An access group must be configured before the access list will take effect for traffic control.
D.    It will allow all traffic.

Answer: C

QUESTION 68
What is the default behavior of NAT control on Cisco ASA Software Version 8.3?

A.    NAT control has been deprecated on Cisco ASA Software Version 8.3.
B.    It will prevent traffic from traversing from one enclave to the next without proper access configuration.
C.    It will allow traffic to traverse from one enclave to the next without proper access configuration.
D.    It will deny all traffic.

Answer: A

QUESTION 69
Which three options are hardening techniques for Cisco IOS routers? (Choose three.)

A.    limiting access to infrastructure with access control lists
B.    enabling service password recovery
C.    using SSH whenever possible
D.    encrypting the service password
E.    using Telnet whenever possible
F.    enabling DHCP snooping

Answer: ACD

QUESTION 70
What command alters the SSL ciphers used by the Cisco Email Security Appliance for TLS sessions and HTTPS access?

A.    sslconfig
B.    sslciphers
C.    tlsconifg
D.    certconfig

Answer: A

http://www.braindump2go.com/300-206.html