Cisco 300-206 Online Practice Questions and Exam Preparation

Cisco 300-206 Online Questions & Answers

• Question 371:

  Which two options are two purposes of the packet-tracer command? (Choose two.)

  A. to filter and monitor ingress traffic to a switch
  B. to configure an interface-specific packet trace
  C. to inject virtual packets into the data path
  D. to debug packet drops in a production network
  E. to correct dropped packets in a production network
  C. to inject virtual packets into the data path
  D. to debug packet drops in a production network

• Question 372:

  Private VLANs have been configured in the data center. Which type of Private VLAN port would allow a new server to communicate with all other interfaces?

  A. isolated
  B. community
  C. private D. promiscuous
  E. shared
  D

• Question 373:

  When MACSec is enabled on a device which traffic types are unencrypted? (Choose 2)

  A. CDP
  B. DHCP offer
  C. DHCP Discovery
  D. EAPOL-Start
  E. EAPOL-Stop
  A. CDP
  D. EAPOL-Start

• Question 374:

  Which three commands can be used to harden a switch? (Choose three.)

  A. switch(config-if)# spanning-tree bpdufilter enable
  B. switch(config)# ip dhcp snooping
  C. switch(config)# errdisable recovery interval 900
  D. switch(config-if)# spanning-tree guard root
  E. switch(config-if)# spanning-tree bpduguard disable
  F. switch(config-if)# no cdp enable
  B. switch(config)# ip dhcp snooping
  D. switch(config-if)# spanning-tree guard root
  F. switch(config-if)# no cdp enable

• Question 375:

  When a Cisco ASA CX module is management by Cisco Prime Security Manager in a Multiple Devices Mode, which mode does the firewall use ?

  A. Managed Mode
  B. Unmanaged mode
  C. Single mode
  D. Multi mode
  A. Managed Mode

• Question 376:

  A Cisco ASA is configured in multiple context mode and has two user-defined contexts-- Context_A and Context_B. From which context are device logging messages sent?

  A. Admin
  B. Context_A
  C. Context_B
  D. System
  A. Admin

• Question 377:

  HTTPS server is configured on a router for management. Which command will change the router's listening port from 433 to 444?

  A. ip https secure-port 444
  B. ip http secure-server 444
  C. ip http server secure-port 444
  D. ip http secure-port 444
  D. ip http secure-port 444

• Question 378:

  Refer to the exhibit. Which statement about the policy map named test is true?

  

  A. Only HTTP inspection will be applied to the TCP port 21 traffic.
  B. Only FTP inspection will be applied to the TCP port 21 traffic.
  C. both HTTP and FTP inspections will be applied to the TCP port 21 traffic.
  D. No inspection will be applied to the TCP port 21 traffic, because the http class map configuration conflicts with the ftp class map.
  E. All FTP traffic will be denied, because the FTP traffic will fail the HTTP inspection.
  B. Only FTP inspection will be applied to the TCP port 21 traffic.

• Question 379:

  Which of the following would need to be created to configure an application-layer inspection of SMTP traffic operating on port 2525?

  A. A class-map that matches port 2525 and applying an inspect ESMTP policy-map for that class in the global inspection policy
  B. A policy-map that matches port 2525 and applying an inspect ESMTP class-map for that policy
  C. An access-list that matches on TCP port 2525 traffic and applying it on an interface with the inspect option
  D. A class-map that matches port 2525 and applying it on an access-list using the inspect option
  A. A class-map that matches port 2525 and applying an inspect ESMTP policy-map for that class in the global inspection policy

• Question 380:

  Which command sets the source IP address of the NetFlow exports of a device?

  A. ip source flow-export
  B. ip source netflow-export
  C. ip flow-export source
  D. ip netflow-export source
  C. ip flow-export source