1. Home
  2. Cisco
  3. 300-209

Cisco 300-209 Online Practice Questions and Exam Preparation

300-209 Exam Details

  • Exam Code
    :300-209
  • Exam Name
    :Implementing Cisco Secure Mobility Solutions
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :450 Q&As
  • Last Updated
    :Dec 15, 2021

Cisco 300-209 Online Questions & Answers

  • Question 201:

    SIMULATION

    A. Check the answer below

  • Question 202:

    Refer to the exhibit. While configuring a site-to-site VPN tunnel, a new NOC engineer encounters the Reverse Route Injection parameter.

    Assuming that static routes are redistributed by the Cisco ASA to the IGP, what effect does enabling Reverse Route Injection on the local Cisco ASA have on a configuration?

    A. The local Cisco ASA advertises its default routes to the distant end of the site-to-site VPN tunnel.
    B. The local Cisco ASA advertises routes from the dynamic routing protocol that is running on the local Cisco ASA to the distant end of the site-to-site VPN tunnel.
    C. The local Cisco ASA advertises routes that are at the distant end of the site-to-site VPN tunnel.
    D. The local Cisco ASA advertises routes that are on its side of the site-to-site VPN tunnel to the distant end of the site-to-site VPN tunnel.

  • Question 203:

    Which two are characteristics of GETVPN? (Choose two.)

    A. The IP header of the encrypted packet is preserved
    B. A key server is elected among all configured Group Members
    C. Unique encryption keys are computed for each Group Member
    D. The same key encryption and traffic encryption keys are distributed to all Group Members

  • Question 204:

    Refer to the exhibit. Which type of mismatch is causing the problem with the IPsec VPN tunnel?

    A. PSK
    B. Phase 1 policy
    C. transform set
    D. crypto access list

  • Question 205:

    What is the default storage location of user-level bookmarks in an IOS clientless SSL VPN?

    A. disk0:/webvpn/{context name}/
    B. disk1:/webvpn/{context name}/
    C. flash:/webvpn/{context name}/
    D. nvram:/webvpn/{context name}/

  • Question 206:

    Which interface is managed by the VPN Access Interface field in the Cisco ASDM IPsec Site-to-Site VPN Wizard?

    A. the local interface named "VPN_access"
    B. the local interface configured with crypto enable
    C. the local interface from which traffic originates
    D. the remote interface with security level 0

  • Question 207:

    Which statement regarding hashing is correct?

    A. MD5 produces a 64-bit message digest.
    B. SHA-1 produces a 160-bit message digest.
    C. MD5 takes more CPU cycles to compute than SHA-1.
    D. Changing 1 bit of the input to SHA-1 can change up to 5 bits in the output.

  • Question 208:

    Mobile work force clients are using Cisco AnyConnect for remote access to the corporate network. In an attempt to save bandwidth on the internet circuit, those working remotely are permitted to use their local connectivity for Internet use while still connected to the corporate network. Which feature allows distinct destinations to be encrypted on the remote client?

    A. DART
    B. Split Tunneling
    C. NAT Exempt
    D. Kerberos

  • Question 209:

    Refer to the Exhibit. Which technology is being used?

    crypto map mapcisco 10 ipsec-isakmp set peer 10.234.8.1 set trasform-set setcisco match address 100 ! interface Ethernet1 ip address 10.180.0.1 255.255.255.0 crypto map mapcisco !

    A. DMVPN
    B. GET VPN
    C. Ipsec
    D. FlexVPN

  • Question 210:

    Which option is a benefit of ECC as compared to public key cryptography?

    A. increases speed by using many algorithm methods
    B. improves security by using many keys
    C. increases speed by using a small key
    D. improves security by using a large key size

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-209 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.