The Examcollection.org is a credible website to supply anyone with the nearly all accurate and also original Cisco Cisco demos. The experts continuously update the Cisco practice questions and also answers according to your latest Cisco 300-206 syllabus. There is certainly a little alter in the actual Cisco Cisco exam every period. Our staff members will certainly revise the Cisco 300-206 exam dumps within good period.

2021 Mar 300-206 test question

Q71. Which information is NOT replicated to the secondary Cisco ASA adaptive security appliance in an active/standby configuration with stateful failover links ? 

A. TCP sessions 

B. DHCP lease 

C. NAT translations 

D. Routing tables 

Answer:


Q72. For which management session types does ASDM allow a maximum simultaneous connection limit to be set? 

A. ASDM, Telnet, SSH 

B. ASDM, Telnet, SSH, console 

C. ASDM, Telnet, SSH, VTY 

D. ASDM, Telnet, SSH, other 

Answer:


Q73. What are two primary purposes of Layer 2 detection in Cisco IPS networks? (Choose two.) 

A. identifying Layer 2 ARP attacks 

B. detecting spoofed MAC addresses and tracking 802.1X actions and data communication after a successful client association 

C. detecting and preventing MAC address spoofing in switched environments 

D. mitigating man-in-the-middle attacks 

Answer: A,D 


Q74. How many bridge groups are supported on a firewall that operate in transparent mode? 

A. 8 

B. 16 

C. 10 

D. 6 

Answer:


Q75. Enabling what security mechanism can prevent an attacker from gaining network topology information from CDP? 

A. MACsec 

B. Flex VPN 

C. Control Plane Protection 

D. Dynamic Arp Inspection 

Answer:


Rebirth 300-206 actual test:

Q76. Which VTP mode supports private VLANs on a switch? 

A. transparent 

B. server 

C. client 

D. off 

Answer:


Q77. When a Cisoc ASA CX module is managed by Cisco prime Security Manager in Multiple Device Mode , which mode does the firewall use? 

A. Multi mode 

B. Unmanaged mode 

C. Single mode 

D. Managed mode 

Answer:

Explanation: http://www.cisco.com/c/en/us/td/docs/security/asacx/9-1/user/guide/b_User_Guide_for_ASA_CX_and_PRSM_9_1b_User_Guide_for_ASA_CX_a nd_PR SM_9_1_chapter_011 0.html#task_7E648F43AD724DA2983699B12E92A528 


Q78. When you configure a Botnet Traffic Filter on a Cisco firewall, what are two optional tasks? (Choose two.) 

A. Enable the use of dynamic databases. 

B. Add static entries to the database. 

C. Enable DNS snooping. 

D. Enable traffic classification and actions. 

E. Block traffic manually based on its syslog information. 

Answer: B,E 


Q79. Which statement describes the correct steps to enable Botnet Traffic Filtering on a Cisco ASA version 9.0 transparent-mode firewall with an active Botnet Traffic Filtering license? 

A. Enable DNS snooping, traffic classification, and actions. 

B. Botnet Traffic Filtering is not supported in transparent mode. 

C. Enable the use of the dynamic database, enable DNS snooping, traffic classification, and actions. 

D. Enable the use of dynamic database, enable traffic classification and actions. 

Answer:


Q80. What is the primary purpose of stateful pattern recognition in Cisco IPS networks? 

A. mitigating man-in-the-middle attacks 

B. using multipacket inspection across all protocols to identify vulnerability-based attacks and to thwart attacks that hide within a data stream 

C. detecting and preventing MAC address spoofing in switched environments 

D. identifying Layer 2 ARP attacks 

Answer: