1. Home
  2. Cisco
  3. 300-206

Cisco 300-206 Online Practice Questions and Exam Preparation

300-206 Exam Details

  • Exam Code
    :300-206
  • Exam Name
    :Implementing Cisco Edge Network Security Solutions
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :463 Q&As
  • Last Updated
    :Dec 11, 2021

Cisco 300-206 Online Questions & Answers

  • Question 181:

    What are mandatory policies needed to support IPSec VPN in CSM environment? (Choose two)

    A. IKE Proposal
    B. Group encryption
    C. IPSec Proposal
    D. GRE modes
    E. Server load balance

  • Question 182:

    Which command in ASA allows ASDM connection from client PC over https with the Local AAA user database?

    A. aaa authentication enable console LOCAL
    B. aaa authentication http console LOCAL
    C. aaa authentication ssh console LOCAL
    D. aaa authentication Telnet console LOCAL

  • Question 183:

    An engineer has been asked to confirm packet process on an ASA. In which mode is packet-tracer command unsupported?

    A. multiple security context
    B. single security context
    C. transparent
    D. routed
    E. HA

  • Question 184:

    Which security operations management best practice should be followed to enable appropriate network access for administrators?

    A. Provide full network access from dedicated network administration systems B. Configure the same management account on every network device
    C. Dedicate a separate physical or logical plane for management traffic
    D. Configure switches as terminal servers for secure device access

  • Question 185:

    When configuring a new context on a Cisco ASA device, which command creates a domain for the context?

    A. domain config name
    B. domain-name
    C. changeto/domain name change
    D. domain context 2

  • Question 186:

    A company is concerned with valid time sources and has asked for NTP authentication to be configured. Multiple NTP sources are on the network. Which configuration is required on the client device to authenticate and synchronize with an NTP source?

    A. trusted key
    B. stratum hash
    C. SSL
    D. certificate preshared key

  • Question 187:

    Due to a traffic storm on your network, two interfaces were error-disabled and both interfaces sent SNMP traps.

    In which two ways can the interfaces be back into service? (Choose two.)

    A. If the snmp-server enable traps command is enabled. the ports return to service automatically after 300 seconds.
    B. If EEM is configured, the ports return to service automatically in less than 300 seconds.
    C. If the administrator enters the shutdown and no shutdown commands on the interfaces.
    D. If the interfaces are configured with the error-disable detection and recovery feature, the interfaces will be returned to service automatically.
    E. If Cisco Prime is configured, it issues an SNMP set command to re-enable the ports after the preconfigured interval.

  • Question 188:

    Which statement about the Cisco ASA configuration is true?

    A. All input traffic on the inside interface is denied by the global ACL.
    B. All input and output traffic on the outside interface is denied by the global ACL.
    C. ICMP echo-request traffic is permitted from the inside to the outside, and ICMP echo-reply will be permitted from the outside back to inside.
    D. HTTP inspection is enabled in the global policy.
    E. Traffic between two hosts connected to the same interface is permitted.

  • Question 189:

    You need to group similar VMs together to classify traffic on the cisco ASA 1000V. Which command would you use?

    A. network-port
    B. network-profile
    C. security-port
    D. security-profile

  • Question 190:

    What are three ways to add devices in Cisco Prime Infrastructure? (Choose three.)

    A. Use an automated process.
    B. Import devices from a CSV file.
    C. Add devices manually.
    D. Use RADIUS.
    E. Use the Access Control Server.
    F. Use Cisco Security Manager.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-206 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.