Cisco 300-206 Online Practice Questions and Exam Preparation

Cisco 300-206 Online Questions & Answers

• Question 171:

  Which three options are default settings for NTP parameters on a Cisco device? (Choose three.)

  A. NTP authentication is enabled.
  B. NTP authentication is disabled.
  C. NTP logging is enabled.
  D. NTP logging is disabled.
  E. NTP access is enabled.
  F. NTP access is disabled.
  B. NTP authentication is disabled.
  D. NTP logging is disabled.
  E. NTP access is enabled.

• Question 172:

  Which Layer 2 security feature prevents traffic on a LAN from being disrupted by a broadcast,multicat, or unicast storm on one physical interface?

  A. Bridge protocol Data Unit Guard
  B. Storm Control
  C. Embedded event monitoring
  D. Access control lists
  B. Storm Control

• Question 173:

  An engineer is using Cisco Security Manager and is using default ports configuration. What port must be open to connect the Cisco Security Manager Client to an ASA?

  A. 22
  B. 23
  C. 80
  D. 443
  D. 443

• Question 174:

  Prior to a software upgrade, which Cisco Prime Infrastructure feature determines if the devices being upgraded have sufficient RAM to support te new software ?

  A. Software Upgrade Report
  B. Image Management Report
  C. Upgrade Analysis Report
  D. Image Analysis Report
  C. Upgrade Analysis Report

• Question 175:

  Refer to the exhibit. The security engineer is troubleshooting internal access to the public DNS server at 209.165.200.226.

  

  Which description of the issue is true?

  A. The routes of the Cisco ASA are incorrectly identifying traffic from 10.10.10.1 on the outside interface of the firewall.
  B. To accurately test DNS, the packet tracer should be run using packet type UDP and destination port 53.
  C. To allow DNS, a rule specifically allowing the DNS access must be added in the rule base.
  D. The engineer must verify the NAT rules of the firewall to ensure that correct NATing is taking place.
  C. To allow DNS, a rule specifically allowing the DNS access must be added in the rule base.

• Question 176:

  Http traffic has been configured to connect through the ASA on port 1521. When web inspection has been enabled with the default web policy, which inspection policy will be applied?

  A. HTTP
  B. HTTPS
  C. IPX
  D. SQL*net
  D. SQL*net

• Question 177:

  It has been reported that an application is not working where an ASA is inline with the data path. Which command can be used to confirm or deny if the ASA is responsible for this issue?

  A. test
  B. packet-tracer
  C. capture
  D. perfmon
  E. verify
  B. packet-tracer

• Question 178:

  An engineer is examining the configuration of an IOS device and notices that though SSH is configured properly, the ip ssh version 2 command is not explicitly configured. How does the device behave in regards to SSH connections?

  A. only SSHv2 is allowed.
  B. SSHv1 and SSHv2 are denied.
  C. SSHv1 and SSHv2 are allowed.
  D. only SSHv1 is allowed.
  D. only SSHv1 is allowed.

• Question 179:

  What is the correct statement about Cisco ASA operation mode?

  A. ASA in routed mode will be not seen as new hop from the network
  B. ASA operated on transparent mode will be seen as new hop from the network
  C. The running configuration in ASA will be removed if operating mode is changed
  D. Transparent mode doesn't support failover
  C. The running configuration in ASA will be removed if operating mode is changed

• Question 180:

  About DNS in PKT IP 53?

  

  Correct Answer. Check the answer below
  Check the answer below

  ---

  PKT should be run using type udp and dst port 53