Certification Exam Prep Questions For Implementing Cisco Network (210-260)


QuickStart is now offering assessment questions for Implementing Cisco Network. Whether you are deciding which exam to sign up for, or simply want to practice the materials necessary to complete certification for this course, we have provided a practice assessment to better aid in certification. 100% of the questions are real questions; from a recent version of the test you will take for Implementing Cisco Network.


Arrow
 

1

Which security level is being used if you use the following commands to enable SNMPv3 on a cisco router: Access-list 90 permit 10.10.10.0 0.0.0.255 Access-list 90 deny any log Snmp-server user admin TEST v3 auth sha secret989! Priv aes 256 Pass8718! Access 90

A. aes
Incorrect.
B. noAuthNopriv
Incorrect.
C. authpriv
Correct!
D. authNoPriv
Incorrect.
2

If you want to mitigate VLAN hopping attacks, what would you choose to implement on a switch?

3

A router named Router R1 is configured using a firewall. Choose an option that reflects zones shown in the exhibit?

4

You are using Cisco anyconnect to get connected to an ASA firewall. Upon looking at the exhibit for the route details, which anyconnect option would you find enabled to exclude the default route?

A. URL Handler
Incorrect.
B. Spilit tunning
Correct!
C. Hair pinning
Incorrect.
D. Always on
Incorrect.
5

Identify the access method of Packet capture if you want a hardware tool with zero risk of dropped packets?

A. SPAN
Incorrect.
B. Media converter
Incorrect.
C. RSPAN
Incorrect.
D. Network TAP
Correct!
6

Identify two features that have been enabled on the ASA? (Pick two)

7

The exhibit shows you have a private VLAN configured. Pick a statement that accurately reflects the behavior of a private VLAN?

8

The broadcast traffic will reach port 2 from port 1.

9

Out of the four commands below, which one enables the IOS resilience feature on a router?

A. Secure bootset
Incorrect.
B. Secure boot-image
Correct!
C. Service password-recovery
Incorrect.
D. Secure boot-config
Incorrect.
10

You find the following error while debugging an issue with an IPsec VPN tunnel: %CRPT0-4-1KMP_BAD_MESSAGE: IKE message from 121.142.120.42 failed its sanity check or is malformed. In order to fix the problem, which of the following would you verify on both routers?

A. Pre-shared keys
Correct!
B. Phase 1 hash proposals
Incorrect.
C. Peer IP addresses
Incorrect.
D. Access lists
Incorrect.
11

dentify the IPS action that terminates the current packet as well as all the futures packets from an attacker address?

12

Identify the method that manages a network device while using a separate communication channel and a dedicated physical interface?

A. In-band
Incorrect.
B. VRF
Incorrect.
C. Out-of-band
Correct!
D. AAA
Incorrect.
13

Your manager has instructed you to use the next-generation cryptographic algorithms while configuring a VPN policy. Identify the two Dithe-Hellman groups, shown in the exhibit, that you would choose? (Choose two.)

A. 20
Correct!
B. 2
Incorrect.
C. 15
Incorrect.
D. 19
Correct!
14

hy is changing the default native VLAN ID necessary when configuring a native VLAN on a Cisco switch?

15

Choose one of the following statements that accurately describe Web Interaction Tracking feature in a Cisco Email Security Appliance (ESA)?

16

Identify a statement that is an accurate definition of an application firewall?

17

Identify a statement that is an accurate description of a situation where you should implement dynamic NAT on a Cisco ASA Series 9.x firewall when securing the company internet edge?

18

An application downloaded by a user from the Internet describes itself as antivirus software. Upon downloading it is discovered that the application is stealing sensitive data and providing unauthorized backdoor access to the system. Identify the kind of malware it is.

A. Trojan
Correct!
B. Worm
Incorrect.
C. Virus
Incorrect.
D. Botnet
Incorrect.
19

Identify a Cisco appliance that provides web reputation capabilities, cloud-based zero-day threat detection services and leak prevention with malware protection.

A. DLP
Incorrect.
B. AMP
Incorrect.
C. AVC
Incorrect.
D. WSA
Correct!
20

If you have the environment reflected in the exhibit, and you configure IP addressing, interface naming, Port Address Translation (PAT), routing and the security level on a Cisco ASA 5512-X. In which two firewall attributes an internal user can access the internet by default? (opt any two)

21

What is the title given to someone who find vulnerabilities before a software launch by bug-testing a system?

A. White hat hacker
Incorrect.
B. Blue hat hacker
Correct!
C. Gray hat hacker
Incorrect.
D. Black hat hacker
Incorrect.
22

Refer to the exhibit. If you want to allow ASDM access from PC1 on port 4443, which set of commands would you use?

23

You use the debug aaa authentication command while troubleshooting a local TACACS+ authentication issue. If authentication is successful what is the expected AAA session status?

A. AUTH AAA/AUTHEN:
Incorrect.
B. AAA/AUTHEN: PASS
Correct!
C. AAA/AUTHEN:
Incorrect.
D. QM IDLE AAA/AUTHEN: OK
Incorrect.
24

Identify, from Cisco, which three virtual-form-factor devices are available? (opt any three)

A. CSR 1000v
Correct!
B. Nexus 1000V
Correct!
C. 3750-X
Incorrect.
D. ASAv
Correct!
25

What does the output show if you are troubleshooting a site-to-site VPN shown in the exhibit?

26

Choose an option that you think you can achieve by S/MIME?

A. Secure NTP traffic
Incorrect.
B. Secure HTTP traffic
Incorrect.
C. Secure email traffic
Correct!
D. Secure DNS traffic
Incorrect.
27

If you want to protect a network against zero-day security threats, which solution do you think will help you?

A. IDS
Incorrect.
B. ZBF
Incorrect.
C. SSL VPN
Incorrect.
D. AMP
Correct!
28

Choose a cloud computing solution you think offers a platform to create and test software and application development.

A. MPLS
Incorrect.
B. LaaS
Incorrect.
C. PaaS
Correct!
D. IPSec
Incorrect.
29

Choose a solution out of the following that you would use to script and maintain a host name and a port number for a web proxy server?

A. TLS
Incorrect.
B. ICAP
Incorrect.
C. PAC
Correct!
D. SSL
Incorrect.
30

Which of these is an accurate statement describing a proxy firewall?

Product Image

Implementing Cisco Network

Self-Paced

Learning Style

Practice Exam

Learning Style

Beginner

Difficulty

1 Hour

Course Duration

Course Info

Download PDF

Certificate

See Sample

Buy Individually Timezone
tab
About Individual Course:
  • Individual course plan gives you access to this course
$109.00
/ Each

You have already taken demo for this course.

If you want to get access to demo again, feel free to contact our support at (855) 800-8240

Outline

More Information

More Information
Lab Access No
Learning Style Self-Paced Learning
Learning Type Practice Exam
Difficulty Beginner
Course Duration 1 Hour
Language English

Reviews

Write Your Own Review
Only registered users can write reviews. Please Sign in or create an account

click here