What is the function of the pass action on a Cisco IOS Zone-Based Policy Firewall? inspecting traffic between zones for traffic control forwarding traffic from one zone to another logging…
What are the three core components of the Cisco Secure Data Center solution? (Choose three.) threat defense servers visibility mesh network infrastructure secure segmentation Answers Explanation & Hints: Secure segmentation…
What is the main factor that ensures the security of encryption of modern algorithms? secrecy of the keys the use of 3DES over AES secrecy of the algorithm complexity of…
How do modern cryptographers defend against brute-force attacks? Use an algorithm that requires the attacker to have both ciphertext and plaintext to conduct a successful attack. Use a keyspace large…
What are two security measures used to protect endpoints in the borderless network? (Choose two.) denylisting Snort IPS DLP DMZ rootkit Answers Explanation & Hints: Measure Purpose antimalware software Protect…
Which two protocols generate connection information within a state table and are supported for stateful filtering? (Choose two.) UDP DHCP TCP HTTP ICMP
How does a firewall handle traffic when it is originating from the private network and traveling to the DMZ network? The traffic is usually permitted with little or no restrictions.…
What are two methods to maintain certificate revocation status? (Choose two.) DNS LDAP OCSP subordinate CA CRL Answers Explanation & Hints: A digital certificate might need to be revoked if…
Which three services are provided through digital signatures? (Choose three.) authenticity integrity encryption nonrepudiation compression accounting Answers Explanation & Hints: Digital signatures use a mathematical technique to provide three basic…
A recently created ACL is not working as expected. The admin determined that the ACL had been applied inbound on the interface and that was the incorrect direction. How should…
Which three functions are provided by the syslog logging service? (Choose three.) gathering logging information setting the size of the logging buffer distinguishing between information to be captured and information…
What are two reasons to enable OSPF routing protocol authentication on a network? (Choose two.) to ensure more efficient routing to ensure faster network convergence to prevent data traffic from…
Refer to the exhibit. Which conclusion can be made from the show crypto map command output that is shown on R1? The crypto map has not yet been applied to…
What are two drawbacks in assigning user privilege levels on a Cisco router? (Choose two.) Commands from a lower level are always executable at a higher level. Assigning a command…
Refer to the exhibit. A network administrator has configured NAT on an ASA device. What type of NAT is used? bidirectional NAT inside NAT outside NAT static NAT Answers Explanation…
A user complains about being locked out of a device after too many unsuccessful AAA login attempts. What could be used by the network administrator to provide a secure authentication…
Refer to the exhibit. A network administrator configures AAA authentication on R1. Which statement describes the effect of the keyword single-connection in the configuration? R1 will open a separate connection…
What are three characteristics of the RADIUS protocol? (Choose three.) uses UDP ports for authentication and accounting encrypts the entire body of the packet is an open RFC standard AAA…
When describing malware, what is a difference between a virus and a worm? A virus replicates itself by attaching to another file, whereas a worm can replicate itself independently. A…
Refer to the exhibit. The ip verify source command is applied on untrusted interfaces. Which type of attack is mitigated by using this configuration? DHCP starvation DHCP spoofing STP manipulation…