- All Exams Instant Download
Which two features are supported when configuring clustering of multiple Cisco ASA appliances? (Choose two.)
Which two features are supported when configuring clustering of multiple Cisco ASA appliances? (Choose two.)A . NATB . dynamic routingC . SSL remote access VPND . IPSec remote access VPNView AnswerAnswer: A,B
Which option describes the expected result of the capture ACL?
Refer to the exhibit. Which option describes the expected result of the capture ACL?A . The capture is applied, but we cannot see any packets in the captureB . The capture does not get applied and we get an error about mixed policy.C . The capture is applied and we...
Which product can manage licenses, updates, and a single signature policy for 15 separate IPS appliances?
Which product can manage licenses, updates, and a single signature policy for 15 separate IPS appliances?A . Cisco Security ManagerB . Cisco IPS Manager ExpressC . Cisco IPS Device ManagerD . Cisco Adaptive Security Device ManagerView AnswerAnswer: A
Which Cisco TrustSec role does a Cisco ASA firewall serve within an identity architecture?
Which Cisco TrustSec role does a Cisco ASA firewall serve within an identity architecture?A . Access RequesterB . Policy Decision PointC . Policy Information PointD . Policy Administration PointE . Policy Enforcement PointView AnswerAnswer: E
What is the primary purpose of stateful pattern recognition in Cisco IPS networks?
What is the primary purpose of stateful pattern recognition in Cisco IPS networks?A . mitigating man-in-the-middle attacksB . using multipacket inspection across all protocols to identify vulnerability-based attacks and to thwart attacksthat hide within a data streamC . detecting and preventing MAC address spoofing in switched environmentsD . identifying Layer...
Which two features block traffic that is sourced from non-topological IPv6 addresses? (Choose two.)
Which two features block traffic that is sourced from non-topological IPv6 addresses? (Choose two.)A . DHCPv6 GuardB . IPv6 Prefix GuardC . IPv6 RA GuardD . IPv6 Source GuardView AnswerAnswer: B,D
Which three options are default settings for NTP parameters on a Cisco ASA? (Choose three.)
Which three options are default settings for NTP parameters on a Cisco ASA? (Choose three.)A . NTP authentication is enabled.B . NTP authentication is disabled.C . NTP logging is enabled.D . NTP logging is disabled.E . NTP traffic is not restricted.F . NTP traffic is restricted.View AnswerAnswer: B,D,E
Which feature is a limitation of a Cisco ASA 5555-X running 8.4.5 version with multiple contexts?
Which feature is a limitation of a Cisco ASA 5555-X running 8.4.5 version with multiple contexts?A . Deep packet inspectionB . Packet tracerC . IPsecD . Manual/auto NATE . Multipolicy packet captureView AnswerAnswer: C
Where do you apply a control plane services policy to implement Management Plane Protection on a Cisco Router?
Where do you apply a control plane services policy to implement Management Plane Protection on a Cisco Router?A . Control-plane routerB . Control-plane hostC . Control-plane interface management 0/0D . Control-plane service policyView AnswerAnswer: B Explanation: http://www.cisco.com/c/en/us/td/docs/ios/12_4t/12_4t11/htsecmpp.html
CORRECT TEXT
CORRECT TEXT You are a network security engineer for the Secure-X network. You have been tasked with implementing dynamic network object NAT with PAT on a Cisco ASA . You must configure the Cisco ASA such that the source IP addresses of all internal hosts are translated to a single...
