[2017-Oct.-New]210-260 PDF Dumps and 210-260 VCE Dumps Free Download in Braindump2go[161-170]
2017 Oct New 210-260 Exam Dumps with PDF and VCE Free Updated Today! Following are some new 210-250 Questions:
1.|2017 New 210-260 Exam Dumps (PDF & VCE) 362Q&As Download:
https://www.braindump2go.com/210-260.html
2.|2017 New 210-260 Exam Questions & Answers Download:
https://drive.google.com/drive/folders/0B75b5xYLjSSNV1RGaFJYZkxGWFk?usp=sharing
QUESTION 161
What configuration allows AnyConnect to authenticate automatically establish a VPN session when a user logs in to the computer?
A. proxy
B. Trusted Network Detection
C. transparent mode
D. always-on
Answer: D
QUESTION 162
Which statement about the communication between interfaces on the same security level is true?
A. All Traffic is allowed by default between interfaces on the same security level.
B. Interface on the same security level require additional configuration to permit inter-interface communication.
C. Configuring interface on the same security level can cause asymmetric routing.
D. You can configure only one interface on an individual security level.
Answer: B
Explanation:
The following command allows traffic of the same security level:
hostname(config)# same-security-traffic permit inter-interface
QUESTION 163
You have implemented Sourcefire IPS and configure it to block certain addresses utilizing security intelligence IP Addresses Reputation. A user calls and is not able to access a certain IP address. What action can you take to allow the user access to the IP address?
A. create a user based access control rule to allow the traffic.
B. create a custom blacklist to allow the traffic.
C. create a whitelist and add the appropriate IP address to allow the traffic.
D. create a rule to bypass inspection to allow the traffic.
Answer: C
Explanation:
Custom whitelists override blacklists and mitigate false positives.
QUESTION 164
If a switch port goes directly into a blocked state only when a superior BPDU is received, what mechanism must be in use?
A. STP BPDU guard
B. loop guard
C. STP Root guard
D. EtherChannel guard
Answer: A
QUESTION 165
Which feature filters CoPP packets?
A. Policy maps
B. route maps
C. access control lists
D. class maps
Answer: C
QUESTION 166
In which type of attack does an attacker send email message that ask the recipient to click a link such as https://www.cisco.net.cc/securelogs?
A. pharming
B. phishing
C. solicitation
D. secure transaction
Answer: B
QUESTION 167
If the router ospf 200 command, what does the value 200 stands for?
A. Administrative distance value
B. process ID
C. area ID.
D. ABR ID
Answer: B
Explanation:
Recall that the area is defined in the following command:
hostname(config-router)# network 10.0.0.0 255.0.0.0 area 0
QUESTION 168
Your security team has discovered a malicious program that has been harvesting the CEO’s email messages and the company’s user database for the last 6 months.
What type of attack did your team discover? (Choose two.)
A. social activism
B. drive-by spyware
C. targeted malware
D. advance persistent threat
E. polymorphic Virus
Answer: CD
QUESTION 169
What is the best way to confirm that AAA authentication is working properly?
A. use the test aaa command
B. use the Cisco-recommended configuration for AAA authentication
C. Log into and out of the router, and then check the NAS authentication log
D. Ping the NAS to confirm connectivity
Answer: A
Explanation:
The other choices do not verify functionality.
There is a test aaa command in IOS, just tried it in my lab:
R1#test aaa group radius admin cisco123 new-code
User successfully authenticated
USER ATTRIBUTES
QUESTION 170
What is the benefit of web application firewall?
A. It accelerate web traffic
B. It blocks know vulnerabilities without patching applications
C. It supports all networking protocols.
D. It simplifies troubleshooting
Answer: B
!!!RECOMMEND!!!
1.|2017 New 210-260 Exam Dumps (PDF & VCE) 362Q&As Download:
https://www.braindump2go.com/210-260.html
2.|2017 New 210-260 Study Guide Video:
https://youtu.be/9yy5IlptXYw