(2017 June)Cisco 210-260 Exam Dumps with PDF and VCE New Updated in www.Braindump2go.com  Today!
100% Real Exam Questions! 100% Exam Pass Guaranteed!

1.|2017 Version New 210-260 PDF and 210-260 VCE 265Q&As Download:
http://www.braindump2go.com/210-260.html

2.|2017 Version New 210-260 Exam Questions & Answers Download:
https://drive.google.com/drive/folders/0B75b5xYLjSSNV1RGaFJYZkxGWFk?usp=sharing

QUESTION 51
When an IPS detects an attack, which action can the IPS take to prevent the attack from spreading?

A.    Perform a Layer 6 reset
B.    Deploy an antimalware system
C.    Enable bypass mode
D.    Deny the connection inline

Answer: D

QUESTION 52
Which statement about Cisco ACS authentication and authorization is true?

A.    ACS servers can be clustered to provide scalability
B.    ACS can query multiple Active Directory domains
C.    ACS uses TACACS to proxy other authentication servers
D.    ACS can use only one authorization profile to allo or deny requests

Answer: A

QUESTION 53
What is the only permitted operation for processing multicast traffic on zone-based firewalls?

A.    Stateful inspection of multicast traffic is supported only for the self zone
B.    Stateful inspection for multicast traffic is supported only between the self-zone and the internal zone
C.    Only control plane policing can protect the control plane against multicast traffic.
D.    Stateful inspection of multicast traffic is supported only for the internal zone.

Answer: C

QUESTION 54
What is one requirement for locking a wired or wireless device from ISE?

A.    The ISE agent must be installed on the device
B.    The device must be connnected to the network when the lock command is executed
C.    The user must approve the locking action
D.    The organization must implement an acceptable use policy allowing device locking

Answer: A

QUESTION 55
Refer to the exhibit. What type of firewall would use the given cofiguration line?
 

A.    a stateful firewall
B.    a personal firewall
C.    a proxy firewall
D.    an application firewall
E.    a stateless firewall

Answer: A

QUESTION 56
What are two default Cisco IOS privilege levels? (Choose two)

A.    0
B.    5
C.    1
D.    7
E.    10
F.    15

Answer: CF

QUESTION 57
What is the effect of the given command sequence?
 
A.    It defines IPSec policy for traffic sourced from 10.10.10.0/24 with a desstination of 10.100.100.0/24
B.    It defines IPSec policy for traffic sourced from 10.100.100.0/24 with a destination of 10.10.10.0/24
C.    it defines IKE policy for traffic sourced from 10.10.10.0/24 with a destination of 10.100.100.0/24
D.    It defines IKE policy for traffic sourced from 10.100.100.0/24 with a destination of 10.10.10.0/24

Answer: A

QUESTION 58
Which tool can an attacker use to attempt a DDos attack?

A.    botnet
B.    Trojan horse
C.    virus
D.    adware

Answer: A

QUESTION 59
how does the Cisco ASA use Active Directory to authorize VPN users?

A.    It queries the Active Directory server for a specfic attribute for the specific user
B.    It sends the username and password to retire an ACCEPT or Reject message from the Active Directory server
C.    It downloads and stores the Active Directory databas to query for future authorization
D.    It redirects requests to the Active Directory server defined for the VPN group

Answer: A

QUESTION 60
Which statement about application blocking is true?

A.    It blocks access to files with specific extensions
B.    It blocks access to specific network addresses
C.    It blocks access to specific programs
D.    It blocks access to specific network services.

Answer: C


!!!RECOMMEND!!!

1.|2017 Version New 210-260 PDF and 210-260 VCE 265Q&As Download:
http://www.braindump2go.com/210-260.html

2.|2017 Version New 210-260 Study Guide Video:
https://youtu.be/9yy5IlptXYw