최신 300-730 무료덤프 - Cisco Implementing Secure Solutions with Virtual Private Networks
An administrator is setting up Cisco AnyConnect on a Cisco ASA with the requirement that AnyConnect automatically establishes a VPN when a company-owned laptop is connected to the internet outside of the corporate network. Which configuration meets these requirements?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
While troubleshooting, an engineer finds that the show crypto isakmp sa command indicates that the last state of the tunnel is MM_KEY_EXCH. What is the next step that should be taken to resolve this issue?
정답: C
A network administrator is deploying a Cisco IPS appliance and needs it to operate initially without affecting traffic flows. It must also collect data to provide a baseline of unwanted traffic before being reconfigured to drop it. Which Cisco IPS mode meets these requirements?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
A Cisco IOS router is reconfigured to connect to an additional DMVPN hub that is a part of a different DMVPN phase 3 cloud. After this change was made, users begin to experience problems accessing corporate resources over both tunnels. Before the additional tunnel was created, users could access resources over the first tunnel without any issues. Both tunnels terminate on the same interface of the router and use the same IPsec proposals. Which two actions resolve the issue without affecting spoke-to-spoke traffic in either DMVPN cloud?
(Choose two.)
(Choose two.)
정답: B,D
After a network security administrator configures site-to-site IPsec VPN peer, they receive this error message:
1d00h: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Main Mode failed with peer at 150.150.150.1.
What is the solution to this problem?
1d00h: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Main Mode failed with peer at 150.150.150.1.
What is the solution to this problem?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Refer to the exhibit. An SSL client is connecting to an ASA headend. The session fails with the message "Connection attempt has timed out. Please verify Internet connectivity." Based on how the packet is processed, which phase is causing the failure?
정답: D
Refer to the exhibit. What is a result of this configuration?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Which two features provide headend resiliency for Cisco AnyConnect clients? (Choose two.)
정답: C,E
Which command must be configured on the tunnel interface of a FlexVPN spoke to receive a dynamic IP address from the hub?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
An engineer is configuring IPsec VPN and wants to choose an authentication protocol that is reliable and supports ACK and sequence.
Which protocol accomplishes this goal?
Which protocol accomplishes this goal?
정답: B
An administrator is planning a VPN configuration that will encrypt traffic between multiple servers that will be passing unicast and multicast traffic. This configuration must be able to be implemented without the need to modify routing within the network. Which VPN technology must be used for this task?
정답: B
A DMVPN spoke router tunnel is up and passing traffic, but it cannot establish an EIGRP neighbor relationship with the hub router. Which solution resolves this issue?
정답: A
Refer to the exhibit. Which two commands under the tunnel-group webvpn-attributes result in a Cisco AnyConnect user receiving the AnyConnect prompt in the exhibit? (Choose two.)
정답: B,D
Which IKE identity does an IOS/IOS-XE headend expect to receive if an IPsec Cisco AnyConnect client uses default settings?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Which command shows the smart default configuration for an IPsec profile?
정답: D
What are two variables for configuring clientless SSL VPN single sign-on? (Choose two.)
정답: A,C