1. Home
  2. Cisco
  3. 300-206

Cisco 300-206 Online Practice Questions and Exam Preparation

300-206 Exam Details

  • Exam Code
    :300-206
  • Exam Name
    :Implementing Cisco Edge Network Security Solutions
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :463 Q&As
  • Last Updated
    :Dec 11, 2021

Cisco 300-206 Online Questions & Answers

  • Question 291:

    Which feature can suppress packet flooding in a network?

    A. PortFast
    B. BPDU guard
    C. Dynamic ARP Inspection
    D. storm control

  • Question 292:

    Which two option are protocol and tools are used by management plane when using cisco ASA general management plane hardening ?

    A. Unicast Reverse Path Forwarding
    B. NetFlow
    C. Routing Protocol Authentication
    D. Threat detection
    E. Syslog
    F. ICMP unreachables
    G. Cisco URL Filtering

  • Question 293:

    Which two Cisco products can be managed by Cisco Security Manager? (Choose two.)

    A. Cisco IOS routers
    B. Cisco Email Security Appliance
    C. Cisco IPS 4200 and 4500 Series sensors
    D. Cisco Web Security Appliance
    E. Cisco wireless LAN controllers

  • Question 294:

    Which two statements about Cisco IDS are true? (Choose two.)

    A. It is preferred for detection-only deployment.
    B. It is used for installations that require strong network-based protection and that include sensor tuning.
    C. It is used to boost sensor sensitivity at the expense of false positives.
    D. It is used to monitor critical systems and to avoid false positives that block traffic.
    E. It is used primarily to inspect egress traffic, to filter outgoing threats.

  • Question 295:

    Which technology can drop packets with a spoofed source address Instead of forwarding them?

    A. ICUP redirects
    B. SNMPv3
    C. ICMP unreachable messages
    D. uRPF
    E. TACACS+

  • Question 296:

    What feature needs to be enabled along with Dynamic ARP inspection?

    A. DHCP Snooping
    B. IP source gaurd
    C. CDP

  • Question 297:

    Which command configures the SNMP server group1 to enable authentication for members of the access list east?

    A. snmp-server group group1 v3 auth access east
    B. snmp-server group1 v3 auth access east
    C. snmp-server group group1 v3 east
    D. snmp-server group1 v3 east access

  • Question 298:

    Which log level provides the most detail on the Cisco Web Security Appliance?

    A. Debug
    B. Critical
    C. Trace
    D. Informational

  • Question 299:

    You have installed a web server on a private network. Which type of NAT must you implement to enable access to the web server for public Internet users?

    A. static NAT
    B. dynamic NAT
    C. network object NAT
    D. twice NAT

  • Question 300:

    Enabling what security mechanism can prevent an attacker from gaining network topology information from CDP via a man-in-the-middle attack?

    A. MACsec
    B. Flex VPN
    C. Control Plane Protection
    D. Dynamic Arp Inspection

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-206 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.