최신 300-730 무료덤프 - Cisco Implementing Secure Solutions with Virtual Private Networks
Which two commands help determine why the NHRP registration process is not being completed even after the IPsec tunnel is up? (Choose two.)
정답: B,D
설명: (DumpTOP 회원만 볼 수 있음)
A second set of traffic selectors is negotiated between two peers using IKEv2.
Which IKEv2 packet will contain details of the exchange?
Which IKEv2 packet will contain details of the exchange?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
An engineer must investigate a connectivity issue and decides to use the packet capture feature on Cisco FTD. The goal is to see the real packet going through the Cisco FTD device and see Snort detection actions as a part of the output. After the capture-traffic command is issued, only the packets are displayed. Which action resolves this issue?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Which two features are valid backup options for an IOS FlexVPN client? (Choose two.)
정답: B,E
설명: (DumpTOP 회원만 볼 수 있음)
An administrator is deciding which authentication protocol should be implemented for their upcoming Cisco AnyConnect deployment. A list of the security requirements from upper management are: the ability to force AnyConnect users to use complex passwords such as C1$c0451035084!, warn users a few days before their password expires, and allow users to change their password during a remote access session. Which authentication protocol must be used to meet these requirements?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
An engineer must force a new IKEv2 security association to be built when using FlexVPN. Which two commands must the engineer apply to meet the requirement? (Choose two.)
정답: C,D
설명: (DumpTOP 회원만 볼 수 있음)
An engineer has successfully established a Phase 1 and Phase 2 tunnel between two sites. Site A has internal subnet 192.168.0.0/24 and Site B has internal subnet 10.0.0.0/24. The engineer notices that no packets are decrypted at Site B. Pings to 192.168.0.1 from internal Site B devices make it to the Site B router, and the Site A router has incrementing encrypt and decrypt counters.
What must be done to ensure bidirectional communication between both sites?
What must be done to ensure bidirectional communication between both sites?
정답: B
An engineer configures the Group URL feature on a Cisco Secure Firewall ASA. The requirement is to place contractors using Cisco Secure Client to access the network into a limited access group. Which information must be referenced in the URL?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
Refer to the exhibit. What is a result of this configuration?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Two VPN clients have established SSL VPN connections to the outside interface on same Cisco Secure Firewall ASA, but they cannot communicate with each other. Which CLI command must be entered on the Cisco Secure Firewall ASA to enable this communication?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Over the weekend, an administrator upgraded the Cisco ASA image on the firewalls and noticed that users cannot connect to the headquarters site using Cisco AnyConnect.
What is the solution for this issue?
What is the solution for this issue?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
An engineer is configuring IPsec VPN and wants to choose an authentication protocol that is reliable and supports ACK and sequence.
Which protocol accomplishes this goal?
Which protocol accomplishes this goal?
정답: B
An engineer has configured Cisco AnyConnect VPN using IKEv2 on a Cisco IOS router. The user cannot connect in the Cisco AnyConnect client, but receives an alert message "Use a browser to gain access." Which action does the engineer take to resolve this issue?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
An engineer is using DMVPN to provide secure connectivity between a data center and remote sites. Which two routing protocols should be used between the routers? (Choose two.)
정답: B,D
Refer to the exhibit. Which type of mismatch is causing the problem with the IPsec VPN tunnel?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
A network administrator is deploying a Cisco IPS appliance and needs it to operate initially without affecting traffic flows. It must also collect data to provide a baseline of unwanted traffic before being reconfigured to drop it. Which Cisco IPS mode meets these requirements?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Refer to the exhibit. Cisco AnyConnect must be set up on a router to allow users to access internal servers 192.168.0.10 and 192.168.0.11.
All other traffic should go out of the client's local NIC.
Which command accomplishes this configuration?
All other traffic should go out of the client's local NIC.
Which command accomplishes this configuration?
정답: C
Which statement about GETVPN is true?
정답: C
Which command automatically initiates a smart tunnel when a user logs in to the WebVPN portal page?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
A network engineer is setting up Cisco AnyConnect 4.9 on a Cisco ASA running ASA software
9.1. Cisco AnyConnect must connect to the Cisco ASA before the user logs on so that login scripts can work successfully. In addition, the VPN must connect without user intervention. Which two key steps accomplish this task? (Choose two.)
9.1. Cisco AnyConnect must connect to the Cisco ASA before the user logs on so that login scripts can work successfully. In addition, the VPN must connect without user intervention. Which two key steps accomplish this task? (Choose two.)
정답: B,E