web analytics

Update 300-206 Dumps with VCE and PDF for Free (Question 46 – Question 60)

New 300-206 exam questions from PassLeader 300-206 dumps! Welcome to download the newest PassLeader 300-206 VCE and PDF dumps: http://www.passleader.com/300-206.html (223 Q&As)

P.S. Free 300-206 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpflBDRGVtd3JJR2k3ZF9sOTAyOHQ0bW1fdlJsZjFwS2xxZmx1TGVrOEdraTA

QUESTION 46
Which three Cisco ASA configuration commands are used to enable the Cisco ASA to log only the debug output to syslog? (Choose three.)

A.    logging list test message 711001
B.    logging debug-trace
C.    logging trap debugging
D.    logging message 711001 level 7
E.    logging trap test

Answer: ABE

QUESTION 47
Which five options are valid logging destinations for the Cisco ASA? (Choose five.)

A.    AAA server
B.    Cisco ASDM
C.    buffer
D.    SNMP traps
E.    LDAP server
F.    email
G.    TCP-based secure syslog server

Answer: BCDFG

QUESTION 48
When configuring security contexts on the Cisco ASA, which three resource class limits can be set using a rate limit? (Choose three.)

A.    address translation rate
B.    Cisco ASDM session rate
C.    connections rate
D.    MAC-address learning rate (when in transparent mode)
E.    syslog messages rate
F.    stateful packet inspections rate

Answer: CEF

QUESTION 49
The Cisco ASA must support dynamic routing and terminating VPN traffic. Which three Cisco ASA options will not support these requirements? (Choose three.)

A.    transparent mode
B.    multiple context mode
C.    active/standby failover mode
D.    active/active failover mode
E.    routed mode
F.    no NAT-control

Answer: ABD

QUESTION 50
Which command displays syslog messages on the Cisco ASA console as they occur?

A.    Console logging <level>
B.    Logging console <level>
C.    Logging trap <level>
D.    Terminal monitor
E.    Logging monitor <level>

Answer: B

QUESTION 51
Which three configurations are needed to enable SNMPv3 support on the Cisco ASA? (Choose three.)

A.    SNMPv3 Local EngineID
B.    SNMPv3 Remote EngineID
C.    SNMP Users
D.    SNMP Groups
E.    SNMP Community Strings
F.    SNMP Hosts

Answer: CDF

QUESTION 52
Which two configurations are the minimum needed to enable EIGRP on the Cisco ASA appliance? (Choose two.)

A.    Enable the EIGRP routing process and specify the AS number.
B.    Define the EIGRP default-metric.
C.    Configure the EIGRP router ID.
D.    Use the neighbor command(s) to specify the EIGRP neighbors.
E.    Use the network command(s) to enable EIGRP on the Cisco ASA interface(s).

Answer: AE

QUESTION 53
All 30 users on a single floor of a building are complaining about network slowness. After investigating the access switch, the network administrator notices that the MAC address table is full (10,000 entries) and all traffic is being flooded out of every port. Which action can the administrator take to prevent this from occurring?

A.    Configure port-security to limit the number of mac-addresses allowed on each port
B.    Upgrade the switch to one that can handle 20,000 entries
C.    Configure private-vlans to prevent hosts from communicating with one another
D.    Enable storm-control to limit the traffic rate
E.    Configure a VACL to block all IP traffic except traffic to and from that subnet

Answer: A

QUESTION 54
A network printer has a DHCP server service that cannot be disabled. How can a layer 2 switch be configured to prevent the printer from causing network issues?

A.    Remove the ip helper-address
B.    Configure a Port-ACL to block outbound TCP port 68
C.    Configure DHCP snooping
D.    Configure port-security

Answer: C

QUESTION 55
A switch is being configured at a new location that uses statically assigned IP addresses. Which will ensure that ARP inspection works as expected?

A.    Configure the ‘no-dhcp’ keyword at the end of the ip arp inspection command
B.    Enable static arp inspection using the command ‘ip arp inspection static vlan vlan-number
C.    Configure an arp access-list and apply it to the ip arp inspection command
D.    Enable port security

Answer: C

QUESTION 56
Which two voice protocols can the Cisco ASA inspect? (Choose two.)

A.    MGCP
B.    IAX
C.    Skype
D.    CTIQBE

Answer: AD

QUESTION 57
You have explicitly added the line deny ipv6 any log to the end of an IPv6 ACL on a router interface. Which two ICMPv6 packet types must you explicitly allow to enable traffic to traverse the interface? (Choose two.)

A.    router solicitation
B.    router advertisement
C.    neighbor solicitation
D.    neighbor advertisement
E.    redirect

Answer: CD

QUESTION 58
Enabling what security mechanism can prevent an attacker from gaining network topology information from CDP?

A.    MACsec
B.    Flex VPN
C.    Control Plane Protection
D.    Dynamic Arp Inspection

Answer: A

QUESTION 59
Which log level provides the most detail on the Cisco Web Security Appliance?

A.    Debug
B.    Critical
C.    Trace
D.    Informational

Answer: C

QUESTION 60
What is the lowest combination of ASA model and license providing 1 Gigabit Ethernet interfaces?

A.    ASA 5505 with failover license option
B.    ASA 5510 Security+ license option
C.    ASA 5520 with any license option
D.    ASA 5540 with AnyConnect Essentials License option

Answer: B


New 300-206 exam questions from PassLeader 300-206 dumps! Welcome to download the newest PassLeader 300-206 VCE and PDF dumps: http://www.passleader.com/300-206.html (223 Q&As)

P.S. Free 300-206 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpflBDRGVtd3JJR2k3ZF9sOTAyOHQ0bW1fdlJsZjFwS2xxZmx1TGVrOEdraTA