[Free] 2019(Nov) EnsurePass Cisco 300-206 Dumps with VCE and PDF 31-40

Get Full Version of the Exam

Question No.31

What is a required attribute to configure NTP authentication on a Cisco ASA?

  1. Key ID

  2. IPsec

  3. AAA

  4. IKEv2

Correct Answer: A

Question No.32

What are three attributes that can be applied to a user account with RBAC? (Choose three.)

  1. domain

  2. password

  3. ACE tag

  4. user roles

  5. VDC group tag

  6. expiry date

Correct Answer: BDF

Question No.33

What is the lowest combination of ASA model and license providing 1 Gigabit Ethernet interfaces?

  1. ASA 5505 with failover license option

  2. ASA 5510 Security license option

  3. ASA 5520 with any license option

  4. ASA 5540 with AnyConnect Essentials License option

Correct Answer: B

Question No.34

What is the default violation mode that is applied by port security?

  1. restrict

  2. protect

  3. shutdown

  4. shutdown VLAN

Correct Answer: C

Question No.35

Which set of commands enables logging and displays the log buffer on a Cisco ASA?

  1. enable logging show logging

  2. logging enable show logging

  3. enable logging int e0/1 view logging

  4. logging enable logging view config

Correct Answer: B

Question No.36

An attacker has gained physical access to a password protected router. Which command will prevent access to the startup-config in NVRAM?

  1. no service password-recovery

  2. no service startup-config

  3. service password-encryption

  4. no confreg 0x2142

Correct Answer: A

Question No.37

An administrator installed a Cisco ASA that runs version 9.1. You are asked to configure the firewall through Cisco ASDM. When you attempt to connect to a Cisco ASA with a default configuration, which username and password grants you full access?

  1. admin / admin

  2. asaAdmin / (no password)

  3. It is not possible to use Cisco ASDM until a username and password are created via the username usernamepassword password CLI command.

  4. enable_15 / (no password)

  5. cisco / cisco

Correct Answer: D

Question No.38

IPv6 addresses in an organization#39;s network are assigned using Stateless Address Autoconfiguration. What is a security concern of using SLAAC for IPv6 address assignment?

  1. Man-In-The-Middle attacks or traffic interception using spoofed IPv6 Router Advertisements

  2. Smurf or amplification attacks using spoofed IPv6 ICMP Neighbor Solicitations

  3. Denial of service attacks using TCP SYN floods

  4. Denial of Service attacks using spoofed IPv6 Router Solicitations

Correct Answer: A

Question No.39

Which statement about Cisco IPS Manager Express is true?

  1. It provides basic device management for large-scale deployments.

  2. It provides a GUI for configuring IPS sensors and security modules.

  3. It enables communication with Cisco ASA devices that have no administrative access.

  4. It provides greater security than simple ACLs.

Correct Answer: B

Question No.40

If the Cisco ASA 1000V has too few licenses, what is its behavior?

  1. It drops all traffic.

  2. It drops all outside-to-inside packets.

  3. It drops all inside-to-outside packets.

  4. It passes the first outside-to-inside packet and drops all remaining packets.

Correct Answer: D

Get Full Version of the Exam
300-206 Dumps
300-206 VCE and PDF