QUESTION: 13

A security engineer is troubleshooting traffic across a Cisco ASA firewall using a packet tracer. When configuring the packet tracer, which option must be used first?

interface
protocol
source
destination

Answer(s): A

Show Answer Next Question

QUESTION: 14

Which two statements about the utilization of IPv4 and IPv6 addresses in the Cisco ASA 9.x firewall access list configuration are true? (Choose two.)

Mixed IPv4 and IPv6 addresses cannot be used in the same access list entry
Mixed IPv4 and IPv6 addresses can be used in the same access list entry
Mixed IPv4 and IPv6 addresses can be used in the same access list for network object group
Mixed IPv4 and IPv6 addresses cannot be used in the same access list
Mixed IPv4 and IPv6 addresses cannot be used in the same access list for network object group

Answer(s): B,C

Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa90/configuration/guide/asa_90_cli_config/acl_extended.pdf

Show Answer Next Question

A user is having trouble connecting to websites on the Internet. The network engineer proposes configuring a packet capture that captures only the HTTP response traffic on the Cisco Adaptive Security Appliance between the user’s workstation and Internet. If the user’s workstation IP address is 10.0.0.101, which ACE is needed to achieve this capture?

access-list capture permit tcp host 10.0.0.101 eq 80 any
access-list capture permit tcp host 10.0.0.101 any eq 80
access-list capture permit tcp any eq 80 host 10.0.0.101
access-list capture permit tcp any host 10.0.0.101 eq 80

Answer(s): D

Show Answer Next Question

QUESTION: 16

Which two mandatory policies are needed to support a regular IPsec VPN in a Cisco Security Manager environment? (Choose two.)

GRE modes
IKE proposal
group encryption
server load balance

Answer(s): B,C

Show Answer Next Question

Free Cisco® 300-206 Exam Questions (page: 5)

QUESTION: 13

QUESTION: 14

Reference:

QUESTION: 15

QUESTION: 16

300-206 Exam Discussions & Posts