1. Home
  2. Cisco
  3. 210-260

Cisco 210-260 Online Practice Questions and Exam Preparation

210-260 Exam Details

  • Exam Code
    :210-260
  • Exam Name
    :Implementing Cisco Network Security
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :527 Q&As
  • Last Updated
    :Dec 12, 2021

Cisco 210-260 Online Questions & Answers

  • Question 261:

    On an ASA, the policy that indicates that traffic should not be translated is often referred to as which of the following?

    A. NAT zero
    B. NAT allow
    C. NAT null
    D. NAT forward

  • Question 262:

    What are purposes of the Internet Key Exchange in an IPsec VPN? (Choose two.)

    A. The Internet Key Exchange protocol establishes security associations
    B. The Internet Key Exchange protocol provides data confidentiality
    C. The Internet Key Exchange protocol provides replay detection
    D. The Internet Key Exchange protocol is responsible for mutual authentication Answer:

  • Question 263:

    Which IKE phase 1 parameter can you use to require the site-to-site VPN to us a pre-shared key?

    A. group
    B. hash
    C. authentication
    D. encryption

  • Question 264:

    When a switch has multiple links connected to a downstream switch, what is the first step that STP takes to prevent loops?

    A. STP elects the root bridge
    B. STP selects the root port
    C. STP selects the designated port
    D. STP blocks one of the ports

  • Question 265:

    Which term best describes the concept of preventing the modification of data in transit and in storage?

    A. Confidentiality
    B. Integrity
    C. Availability
    D. fidelity

  • Question 266:

    Which two types of firewalls work at Layer 4 and above? (Choose two.)

    A. application-level firewall
    B. static packet filter
    C. stateful inspection
    D. Network Address Translation
    E. circuit-level gateway

  • Question 267:

    Which description of the nonsecret numbers that are used to start a Diffie-Hellman exchange is true?

    A. They are large pseudorandom numbers.
    B. They are very small numbers chosen from a table of known values
    C. They are numeric values extracted from hashed system hostnames.
    D. They are preconfigured prime integers

  • Question 268:

    What is the default timeout interval during which a router waits for responses from a TACACS server before declaring a timeout failure?

    A. 5 seconds
    B. 10 seconds
    C. 15 seconds
    D. 20 seconds

  • Question 269:

    If a switch receives a superior BPDU and goes directly into a blocked state, what mechanism must be in use?

    A. BPDU guard
    B. Root guard
    C. EherCahannel guard
    D. Loop guard

  • Question 270:

    In which form of fraud does an attacker try to team information such as login credentials or account information by masquerading as a reputable entity or person in email, IM or other communication channels'?

    A. Hacking
    B. Phishing
    C. Identity Spoofing
    D. Smarting

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 210-260 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.