Cisco 210-260 Online Practice Questions and Exam Preparation

Cisco 210-260 Online Questions & Answers

• Question 201:

  Which option is the resulting action in a zone-based policy firewall configuration with these conditions?

  

  A. no impact to zoning or policy
  B. no policy lookup (pass)
  C. drop
  D. apply default policy
  C. drop

• Question 202:

  Which three statements about host-based IPS are true? (Choose three.)

  A. It can view encrypted files.
  B. It can have more restrictive policies than network-based IPS.
  C. It can generate alerts based on behavior at the desktop level.
  D. It can be deployed at the perimeter.
  E. It uses signature-based policies.
  F. It works with deployed firewalls.
  A. It can view encrypted files.
  B. It can have more restrictive policies than network-based IPS.
  C. It can generate alerts based on behavior at the desktop level.

• Question 203:

  Which command initializes a lawful intercept view?

  A. username cisco1 view lawful-intercept password cisco
  B. parser view cisco li-view
  C. li-view cisco user cisco1 password cisco
  D. parser view li-view inclusive
  C. li-view cisco user cisco1 password cisco

• Question 204:

  What type of security support is provided by the Open Web Application Security Project?

  A. Education about common Web site vulnerabilities
  B. A wb site security framework
  C. A security discussion forum for Web site developers
  D. Scoring of common vulnerabilities and exposures
  A. Education about common Web site vulnerabilities

• Question 205:

  Which information can you display by executing the show crypto ipsec sa command?

  A. proxy information for the connection between two peers
  B. IPsec SAs established between two peers
  C. recent changes to the IP address of a peer router
  D. ISAKMP SAs that are established between two peers
  C. recent changes to the IP address of a peer router

• Question 206:

  What is the Cisco preferred countermeasure to mitigate CAM overflows?

  A. Port security
  B. Dynamic port security
  C. IP source guard
  D. Root guard
  B. Dynamic port security

• Question 207:

  Which two features of Cisco Web Reputation tracking can mitigate web-based threats? (Choose Two)

  A. outbreak filter
  B. buffer overflow filter
  C. bayesian overflow filter
  D. web reputation filter
  E. exploit filtering
  A. outbreak filter
  E. exploit filtering

• Question 208:

  Which two functions can SIEM provide? (Choose Two)

  A. Correlation between logs and events from multiple systems.
  B. event aggregation that allows for reduced log storage requirements.
  C. proactive malware analysis to block malicious traffic.
  D. dual-factor authentication.
  E. centralized firewall management.
  A. Correlation between logs and events from multiple systems.
  B. event aggregation that allows for reduced log storage requirements.

• Question 209:

  DRAG DROP

  You need to place these 7 options into HIPS and NIPS. Each section has 4 choices which means one out of these 7 options goes into both.

  Select and Place:

  

  

• Question 210:

  How does the Cisco ASA use Active Directory to authorize VPN users?

  A. It queries the Active Directory server for a Specfic attribute for the specific user
  B. It sends the username and password to retire an ACCEPT or Reject message from the Active Directory server
  C. It downloads and stores the Active Directory databas to query for future authorization
  D. It redirects requests to the Active Directory server defined for the VPN group
  A. It queries the Active Directory server for a Specfic attribute for the specific user