質問 # 359 A switch with Dynamic ARP Inspection enabled has received a spoofed ARP response on a trusted interface. How does the switch behave in this situation?
A. It drops the packet without validation.
B. It forwards the packet without validation.
C. It drops the packet after validation by using the IP & MAC Binding Table.
D. It forwards the packet after validation by using the MAC Binding Table.
正解:C 質問 # 360 A network administrator is configuring a rule in an access control policy to block certain URLs and selects the "Chat and Instant Messaging" category. Which reputation score should be selected to accomplish this goal?
A. 0
B. 1
C. 2
D. 3
正解:C
解説: We choose "Chat and Instant Messaging" category in "URL Category":
To block certain URLs we need to choose URL Reputation from 6 to 10.
質問 # 361 An engineer is trying to securely connect to a router and wants to prevent insecure algorithms from being used. However, the connection is failing. Which action should be taken to accomplish this goal?
A. Configure the port using the ip ssh port 22 command.
B. Enable the SSH server using the ip ssh server command.
C. Disable telnet using the no ip telnet command.
D. Generate the RSA key using the crypto key generate rsa command.
正解:D
解説: Reference: https://learningnetwork.cisco.com/s/question/0D53i00000KsrhK/rsa-key 質問 # 362 Drag and drop the descriptions from the left onto the correct protocol versions on the right. 正解:
解説:
質問 # 363 What is a benefit of using Cisco FMC over Cisco ASDM?
A. Cisco FMC uses Java while Cisco ASDM uses HTML5.
B. Cisco FMC supports all firewall products whereas Cisco ASDM only supports Cisco ASA devices
C. Cisco FMC provides centralized management while Cisco ASDM does not.
D. Cisco FMC supports pushing configurations to devices while Cisco ASDM does not.