[May-2018-New]100% Success-Braindump2go 300-206 VCE and 300-206 PDF Dumps 315Q Instant Download[133-143]
2018 May New Cisco 300-206 Exam Dumps with PDF and VCE Just Updated Today! Following are some new 300-206 Real Exam Questions:
https://www.braindump2go.com/300-206.html
2.|2018 Latest 300-206 Exam Questions & Answers Download:
https://drive.google.com/drive/folders/0B75b5xYLjSSNOXZTcmdGNEh2UU0?usp=sharing
QUESTION 133
You have installed a web server on a private network. Which type of NAT must you implement to enable access to the web server for public Internet users?
A. static NAT
B. dynamic NAT
C. network object NAT
D. twice NAT
Answer: A
QUESTION 134
Which type of object group will allow configuration for both TCP 80 and TCP 443?
A. service
B. network
C. time range
D. user group
Answer: A
QUESTION 135
When you configure a Botnet Traffic Filter on a Cisco firewall, what are two optional tasks? (Choose two.)
A. Enable the use of dynamic databases.
B. Add static entries to the database.
C. Enable DNS snooping.
D. Enable traffic classification and actions.
E. Block traffic manually based on its syslog information.
Answer: BE
QUESTION 136
Refer to the exhibit. What is the effect of this configuration?
A. The firewall will inspect IP traffic only between networks 192.168.1.0 and 192.168.2.0.
B. The firewall will inspect all IP traffic except traffic to 192.168.1.0 and 192.168.2.0.
C. The firewall will inspect traffic only if it is defined within a standard ACL.
D. The firewall will inspect all IP traffic.
Answer: A
QUESTION 137
When you configure a Cisco firewall in multiple context mode, where do you allocate interfaces?
A. in the system execution space
B. in the admin context
C. in a user-defined context
D. in the global configuration
Answer: A
QUESTION 138
At which layer does Dynamic ARP Inspection validate packets?
A. Layer 2
B. Layer 3
C. Layer 4
D. Layer 7
Answer: A
QUESTION 139
Which feature can suppress packet flooding in a network?
A. PortFast
B. BPDU guard
C. Dynamic ARP Inspection
D. storm control
Answer: D
QUESTION 140
What is the default violation mode that is applied by port security?
A. restrict
B. protect
C. shutdown
D. shutdown VLAN
Answer: C
QUESTION 141
What are two security features at the access port level that can help mitigate Layer 2 attacks? (Choose two.)
A. DHCP snooping
B. IP Source Guard
C. Telnet
D. Secure Shell
E. SNMP
Answer: AB
QUESTION 142
At which layer does MACsec provide encryption?
A. Layer 1
B. Layer 2
C. Layer 3
D. Layer 4
Answer: B
QUESTION 143
What are two enhancements of SSHv2 over SSHv1? (Choose two.)
A. VRF-aware SSH support
B. DH group exchange support
C. RSA support
D. keyboard-interactive authentication
E. SHA support
Answer: AB
!!!REDOMMEND!!!
1.|2018 Latest 300-206 Exam Dumps (PDF & VCE) 315Q Download:
https://www.braindump2go.com/300-206.html
2.|2018 Latest 300-206 Study Guide Video:
https://youtu.be/_WvexFqQgoA