- All Exams Instant Download
Which statement about the minimum requirements to set up stateful failover between these two firewalls is true?
Your company is replacing a high-availability pair of Cisco ASA 5550 firewalls with the newer Cisco ASA 5555X models. Due to budget constraints, one Cisco ASA 5550 will be replaced at a time. Which statement about the minimum requirements to set up stateful failover between these two firewalls is true?A...
You are the administrator of a multicontext transparent-mode Cisco ASA that uses a shared interface that belongs to more than one context. Because the same interface will be used within all three contexts, which statement describes how you will ensure that return traffic will reach the correct context?
You are the administrator of a multicontext transparent-mode Cisco ASA that uses a shared interface that belongs to more than one context. Because the same interface will be used within all three contexts, which statement describes how you will ensure that return traffic will reach the correct context?A . Interfaces...
What are three ways to add devices in Cisco Prime Infrastructure?
CORRECT TEXT What are three ways to add devices in Cisco Prime Infrastructure? (Choose three.)A . Use an automated process.B . Import devices from a CSV file.C . Add devices manually.D . Use RADIUF . Use the Access Control Server.G . Use Cisco Security Manager.View AnswerAnswer: ABC
Which Cisco ASA show command groups the xlates and connections information together in its output?
Which Cisco ASA show command groups the xlates and connections information together in its output?A . show connB . show conn detailC . show xlateD . show aspE . show local-hostView AnswerAnswer: E
broadcast,multicat, or unicast storm on one physical interface?
Which Layer 2 security feature prevents traffic on a LAN from being disrupted by a broadcast,multicat, or unicast storm on one physical interface?A . Bridge protocol Data Unit GuardB . Storm ControlC . Embedded event monitoringD . Access control listsView AnswerAnswer: B
Which information is NOT replicated to the secondary Cisco ASA adaptive security appliance in an active/ standby configuration with stateful failover links ?
Which information is NOT replicated to the secondary Cisco ASA adaptive security appliance in an active/ standby configuration with stateful failover links ?A . TCP sessionsB . DHCP leaseC . NAT translationsD . Routing tablesView AnswerAnswer: B
When configured in accordance to Cisco best practices, the ip verify source command can mitigate which two types of Layer 2 attacks? (Choose two.)
When configured in accordance to Cisco best practices, the ip verify source command can mitigate which two types of Layer 2 attacks? (Choose two.)A . rogue DHCP serversB . ARP attacksC . DHCP starvationD . MAC spoofingE . CAM attacksF . IP spoofingView AnswerAnswer: D,F
port should be used for each host?
Refer to the exhibit. To protect Host A and Host B from communicating with each other, which type of PVLAN port should be used for each host?A . Host A on a promiscuous port and Host B on a community portB . Host A on a community port and Host...
Which two web browsers are supported for the Cisco ISE GUI? (Choose two.)
Which two web browsers are supported for the Cisco ISE GUI? (Choose two.)A . HTTPS-enabled Mozilla Firefox version 3.xB . Netscape Navigator version 9C . Microsoft Internet Explorer version 8 in Internet Explorer 8-only modeD . Microsoft Internet Explorer version 8 in all Internet Explorer modesE . Google Chrome (all...
A network engineer is asked to configure NetFlow to sample one of every 100 packets on a router's fa0/0 interface. Which configuration enables sampling, assuming that NetFlow is already configured and running on the router's fa0/0 interface?
A network engineer is asked to configure NetFlow to sample one of every 100 packets on a router's fa0/0 interface. Which configuration enables sampling, assuming that NetFlow is already configured and running on the router's fa0/0 interface?A . flow-sampler-map flow1mode random one-out-of 100 interface fas0/0 flow-sampler flow1B . flow monitor...
