Pass CCNA 200-301 in Just 3 Days – Stress-Free!
Get your CCNA 200-301 certification with 100% pass guarantee. Pay only after passing!
Click here to secure your guaranteed certification now!
Have questions? Contact us directly on WhatsApp for quick support!
What does WPA3 provide in wireless networking?
- A. backward compatibility with WPA and WPA2
- B. safeguards against brute force attacks with SAE
- C. increased security and requirement of a complex configuration
- D. optional Protected Management Frame negotiation
What is the definition of backdoor malware?
- A. malicious code that is installed onto a computer to allow access by an unauthorized user
- B. malicious program that is used to launch other malicious programs
- C. malicious code that infects a user machine and then uses that machine to send spam
- D. malicious code with the main purpose of downloading other malicious code
A network engineer must configure an access list on a new Cisco IOS router. The access list must deny HTTP traffic to network 10.125.128.32/27 from the 192.168.240.0/20 network, but it must allow the 192.168.240.0/20 network to reach the rest of the 10.0.0.0/8 network. Which configuration must the engineer apply?
- A. ip access-list extended deny_outbound
10 permit ip 192.168.240.0 255.255.240.0 10.0.0.0 255.0.0.0
20 deny tcp 192.168.240.0 255.255.240.0 10.125.128.32 255.255.255.224 eq 443
30 permit ip any any - B. ip access-list extended deny_outbound
10 deny tcp 192.168.240.0 0.0.15.255 10.125.128.32 0.0.0.31 eq 80
20 permit ip 192.168.240.0 0.0.15.255 10.0.0.0 0.255.255.255
30 deny ip any any log - C. ip access-list extended deny_outbound
10 deny tcp 10.125.128.32 255.255.255.224 192.168.240.0 255.255.240.0 eq 443
20 deny tcp 192.168.240.0 255.255.240.0 10.125.128.32 255.255.255.224 eq 443
30 permit ip 192.168.240.0 255.255.240.0 10.0.0.0 255.0.0.0 - D. ip access-list extended deny_outbound
10 deny tcp 192.168.240.0 0.0.15.255 any eq 80
20 deny tcp 192.168.240.0 0.0.15.255 10.125.128.32 0.0.0.31 eq 80
30 permit ip 192.168.240.0 0.0.15.255 10.0.0.0 0.255.255.255
DRAG DROP
–
Drag and drop the statements about AAA services from the left to the corresponding AAA services on the right. Not all options are used.
Refer to the exhibit. A network administrator must permit traffic from the 10.10.0.0/24 subnet to the WAN on interface Serial0. What is the effect of the configuration as the administrator applies the command?
- A. The router accepts all incoming traffic to Serial0 with the last octet of the source IP set to 0.
- B. The permit command fails and returns an error code.
- C. The router fails to apply the access list to the interface.
- D. The sourced traffic from IP range 10.0.0.0 – 10.0.0.255 is allowed on Serial0.
Which type of encryption does WPA1 use for data protection?
- A. PEAP
- B. TKIP
- C. AES
- D. EAP
Refer to the exhibit. An engineer booted a new switch and applied this configuration via the console port. Which additional configuration must be applied to allow administrators to authenticate directly to global configuration mode via Telnet using a local username and password?
- A. R1(config)#username admin -R1(config-if)#line vty 0 4 –
R1(config-line)#password p@ss1234
R1(config-line)#transport input telnet - B. R1(config)#username admin privilege 15 secret p@ss1234R1(config-if)#line vty 0 4 –
R1(config-line)#login local - C. R1(config)#username admin secret p@ss1234R1(config-if)#line vty 0 4 -R1(config-line)#login local –
R1(config)#enable secret p@ss1234 - D. R1(config)#username admin -R1(config-if)#line vty 0 4 –
R1(config-line)#password p@ss1234
Which WLC management connection type is vulnerable to man-in-the-middle attacks?
- A. console
- B. Telnet
- C. SSH
- D. HTTPS
DRAG DROP
–
Drag and drop the attack-mitigation techniques from the left onto the types of attack that they mitigate on the right.
What is a purpose of traffic shaping?
- A. It enables policy-based routing.
- B. It enables dynamic flow identification.
- C. It provides best-effort service.
- D. It limits bandwidth usage.