Cisco 210-260 Online Practice Questions and Exam Preparation

Cisco 210-260 Online Questions & Answers

• Question 171:

  What causes a client to be placed in a guest or restricted (cant remember) VLAN on an 802.1x enabled network?

  A. client entered wrong credentials multiple times.
  B. client entered wrong credentials First time.
  A. client entered wrong credentials multiple times.

• Question 172:

  Which actions can a promiscuous IPS take to mitigate an attack?

  A. modifying packets
  B. requesting connection blocking
  C. denying packets
  D. resetting the TCP connection
  E. requesting host blocking
  F. denying frames
  B. requesting connection blocking
  D. resetting the TCP connection
  E. requesting host blocking

• Question 173:

  On an ASA, which maps are used to identify traffic?

  A. Policy maps
  B. Class maps
  C. Route maps
  D. Service maps
  B. Class maps

• Question 174:

  What is a valid implicit permit rule for traffic that is traversing the ASA firewall?

  A. Unicast IPv6 traffic from a higher security interface to a lower security interface is permitted in transparent mode only
  B. Only BPDUs from a higher security interface to a lower security interface are permitted in routed mode.
  C. ARPs in both directions are permitted in transparent mode only
  D. Unicast IPv4 traffic from a higher security interface to a lower security interface is permitted in routed mode only
  E. Only BPDUs from a higher security interface to a lower security interface are permitted in transparent mode.
  C. ARPs in both directions are permitted in transparent mode only

• Question 175:

  Which standard is a hybrid protocol that uses Oakley and Skeme key exchanges in an ISAKMP framework?

  A. IPSec
  B. SHA
  C. DES
  D. IKE
  D. IKE

• Question 176:

  When is "Deny all" policy an exception in Zone Based Firewall

  A. traffic traverses 2 interfaces in same zone
  B. traffic sources from router via self zone
  C. traffic terminates on router via self zone
  D. traffic traverses 2 interfaces in different zones
  E. traffic terminates on router via self zone
  A. traffic traverses 2 interfaces in same zone

• Question 177:

  Refer to the below. Which statement about this debug output is true?

  

  A. The requesting authentication request came from username GETUSER.
  B. The TACACS+ authentication request came from a valid user.
  C. The TACACS+ authentication request passed, but for some reason the user's connection was closed immediately.
  D. The initiating connection request was being spoofed by a different source address.
  B. The TACACS+ authentication request came from a valid user.

• Question 178:

  Refer to the exhibit. You have configured R1 and R2 as shown, but the routers are unable to establish a site-to-site VPN tunnel. What action can you take to correct the problem?

  

  A. Edit the crypto keys on R1 and R2 to match.
  B. Edit the crypto isakmp key command on each router with the address value of its own interface
  C. Edit the ISAKMP policy sequence numbers on R1 and R2 to match.
  D. set a valid value for the crypto key lifetime on each router.
  A. Edit the crypto keys on R1 and R2 to match.

• Question 179:

  Which two characteristics of symmetric encryption are true? (Choose two)

  A. It uses digital certificates.
  B. It uses a public key and a private key to encrypt and decrypt traffic.
  C. it requires more resources than asymmetric encryption
  D. it is faster than asymmetric encryption
  E. It uses the same key to encrypt and decrypt the traffic.
  D. it is faster than asymmetric encryption
  E. It uses the same key to encrypt and decrypt the traffic.

• Question 180:

  DRAG DROP

  Drag the recommendations on the left to the Cryptographic Algorithms on the right. Options will be used more than once.

  Select and Place:

  

  ---