This page was exported from Lead2pass Exams [ ] Export date:Thu Dec 3 11:03:20 2020 / +0000 GMT ___________________________________________________ Title: [May 2018] Cisco Exam 210-260 PDF Dump Free Download In Lead2pass 378q --------------------------------------------------- Lead2pass 210-260 New Questions For Passing The 210-260 Certification Exam: QUESTION 31A clientless SSL VPN user who is connecting on a Windows Vista computer is missing the menu option for Remote Desktop Protocol on the portal web page. Which action should you take to begin troubleshooting? A.    Ensure that the RDP2 plug-in is installed on the VPN gatewayB.    Reboot the VPN gatewayC.    Instruct the user to reconnect to the VPN gatewayD.    Ensure that the RDP plug-in is installed on the VPN gatewayAnswer: D QUESTION 32Which security zone is automatically defined by the system? A.    The source zoneB.    The self zoneC.    The destination zoneD.    The inside zone Answer: B QUESTION 33What are purposes of the Internet Key Exchange in an IPsec VPN? (Choose two.) A.    The Internet Key Exchange protocol establishes security associationsB.    The Internet Key Exchange protocol provides data confidentialityC.    The Internet Key Exchange protocol provides replay detectionD.    The Internet Key Exchange protocol is responsible for mutual authentication Answer: Answer: AD QUESTION 34Which address block is reserved for locally assigned unique local addresses? A.    2002::/16B.    FD00::/8C.    2001::/32D.    FB00::/8 Answer: B QUESTION 35What is a possible reason for the error message? Router(config)#aaa server?% Unrecognized command A.    The command syntax requires a space after the word "server"B.    The command is invalid on the target deviceC.    The router is already running the latest operating systemD.    The router is a new device on which the aaa new-model command must be applied before continuing Answer: D QUESTION 36Which statements about smart tunnels on a Cisco firewall are true? (Choose two.) A.    Smart tunnels can be used by clients that do not have administrator privilegesB.    Smart tunnels support all operating systemsC.    Smart tunnels offer better performance than port forwardingD.    Smart tunnels require the client to have the application installed locally Answer: ACExplanation:Smart Tunnel is an advanced feature of Clientless SSL VPN that provides seamless and highly secure remote access for native client-server applications.Clientless SSL VPN with Smart Tunnel is the preferred solution for allowing access from non-corporate assets as it does not require the administrative rights.Port forwarding is the legacy technology for supporting TCP based applications over a Clientless SSL VPN connection. Unlike port forwarding, Smart Tunnel simplifies the user experience by not requiring the user connection of the local application to the local port.Source: QUESTION 37Which option describes information that must be considered when you apply an access list to a physical interface? A.    Protocol used for filteringB.    Direction of the access classC.    Direction of the access groupD.    Direction of the access list Answer: C QUESTION 38Which source port does IKE use when NAT has been detected between two VPN gateways? A.    TCP 4500B.    TCP 500C.    UDP 4500D.    UDP 500 Answer: C QUESTION 39Which of the following are features of IPsec transport mode? (Choose three.) A.    IPsec transport mode is used between end stationsB.    IPsec transport mode is used between gatewaysC.    IPsec transport mode supports multicastD.    IPsec transport mode supports unicastE.    IPsec transport mode encrypts only the payloadF.    IPsec transport mode encrypts the entire packet Answer: ADEExplanation:IPSec Transport ModeIPSec Transport mode is used for end-to-end communications, for example, for communication between a client and a server or between a workstation and a gateway (if the gateway is being treated as a host). A good example would be an encrypted Telnet or Remote Desktop session from a workstation to a server.Transport mode provides the protection of our data, also known as IP Payload, and consists of TCP/UDP header + Data, through an AH or ESP header. The payload is encapsulated by the IPSec headers and trailers. The original IP headers remain intact, except that the IP protocol field is changed to ESP (50) or AH (51), and the original protocol value is saved in the IPsec trailer to be restored when the packet is decrypted.IPSec transport mode is usually used when another tunneling protocol (like GRE) is used to first encapsulate the IP data packet, then IPSec is used to protect the GRE tunnel packets. IPSec protects the GRE tunnel traffic in transport mode. QUESTION 40Which command causes a Layer 2 switch interface to operate as a Layer 3 interface? A.    no switchport nonnegotiateB.    switchportC.    no switchport mode dynamic autoD.    no switchport Answer: D 210-260 dumps full version (PDF&VCE): Large amount of free 210-260 exam questions on Google Drive: --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2018-05-15 09:41:32 Post date GMT: 2018-05-15 09:41:32 Post modified date: 2018-05-15 09:41:32 Post modified date GMT: 2018-05-15 09:41:32 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from