- Home
- Cisco
- Implementing Cisco Edge Network Security Solutions
- Cisco.300-206.v2018-12-19.q185
- Question 122
Valid 300-206 Dumps shared by ExamDiscuss.com for Helping Passing 300-206 Exam! ExamDiscuss.com now offer the newest 300-206 exam dumps, the ExamDiscuss.com 300-206 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com 300-206 dumps with Test Engine here:
Access 300-206 Dumps Premium Version
(175 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 122/185
Which statement about the Cisco ASA botnet traffic filter is true?
Correct Answer: A
- Question List (185q)
- Question 1: Enabling what security mechanism can prevent an attacker fro...
- Question 2: When a Cisco ASA is configured in transparent mode, how can ...
- Question 3: What are three attributes that can be applied to a user acco...
- Question 4: Which hypervisor technology is supported by Cisco ASA 1000V ...
- Question 5: Which Cisco TrustSec role does a Cisco ASA firewall serve wi...
- Question 6: An engineer is trying to configure Dynamic ARP Inspection. W...
- Question 7: Which set of commands enables logging and displays the log b...
- Question 8: Which statement describes what the arp outside 1.1.1.1 0192....
- Question 9: What is the lowest combination of ASA model and license prov...
- Question 10: On a Cisco ASA, how can you allow traffic to enter and exit ...
- Question 11: Which ASA feature is used to keep track of suspected attacke...
- Question 12: Which is the minimum RSA crypto key generate for SSH2?...
- Question 13: An administrator installed a Cisco ASA that runs version 9.1...
- Question 14: Which kind of Layer 2 attack targets the STP root bridge ele...
- Question 15: Which information does the ASA fail to replicate to the seco...
- Question 16: Which technology can be deployed with a Cisco ASA 1000V to s...
- Question 17: Which product can manage licenses, updates, and a single sig...
- Question 18: IPv6 addresses in an organization's network are assigned usi...
- Question 19: What can an administrator do to simultaneously capture and t...
- Question 20: What is a required attribute to configure NTP authentication...
- Question 21: Which VTP mode supports private VLANs on a switch?...
- Question 22: How does the DAI work? (Choose two.)...
- Question 23: Which technology provides forwarding-plane abstraction to su...
- Question 24: You are a security engineer at a large multinational retaile...
- Question 25: Which two attacks are common at Layer 2? (Choose two)...
- Question 26: What mean following command arp outside 10.1.1.1 0009.xxxx.2...
- Question 27: For which purpose is the Cisco ASA CLI command aaa authentic...
- Question 28: Which utility can you use to troubleshoot and determine the ...
- Question 29: Which two statements about Cisco IDS are true? (Choose two.)...
- Question 30: Which three configurations are needed to enable SNMPv3 suppo...
- Question 31: At which layer does Dynamic ARP Inspection validate packets?...
- Question 32: When it is configured in accordance to Cisco best practices,...
- Question 33: When creating a cluster of Cisco ASA firewalls, which featur...
- Question 34: Which two features does Cisco Security Manager provide? (Cho...
- Question 35: Which statement describes a unifeature of cisco netflow secu...
- Question 36: Refer to the exhibit. (Exhibit) Which statement about this a...
- Question 37: Which statement about SNMP support on the Cisco ASA applianc...
- Question 38: Which two voice and video protocols does the Cisco ASA 5500 ...
- Question 39: On an ASA running version 9.0, which command is used to nest...
- Question 40: Which two options are available with cisco security manager ...
- Question 41: Which component does Cisco ASDM require on the host Cisco AS...
- Question 42: When troubleshooting redundant interface operations on the C...
- Question 43: Which Cisco switch technology prevents traffic on a LAN from...
- Question 44: At which layer does MACsec provide encryption?...
- Question 45: The Cisco ASA must support dynamic routing and terminating V...
- Question 46: What is the result of the default ip ssh server authenticate...
- Question 47: Which configuration keyword will configure SNMPv3 with authe...
- Question 48: What is the best description of a unified ACL on a Cisco fir...
- Question 49: What is the maximum jumbo frame size for IPS standalone appl...
- Question 50: Within Cisco Prime Infrastructure, which configuration Archi...
- Question 51: Which command change secure HTTP port from 443 to 444?...
- Question 52: What are three of the RBAC views within Cisco IOS Software? ...
- Question 53: An engineer has been asked to confirm packet process on an A...
- Question 54: Which two SNMPv3 features ensure that SNMP packets have been...
- Question 55: Which two data and voice protocols does ASA 5500 support? (C...
- Question 56: To which port does a firewall send secure logging messages?...
- Question 57: A router is being enabled for SSH command line access. The f...
- 1 commentQuestion 58: You are configuring a Cisco IOS Firewall on a WAN router tha...
- 1 commentQuestion 59: Which three Cisco ASA configuration commands are used to ena...
- Question 60: What is the primary purpose of stateful pattern recognition ...
- Question 61: An attacker has gained physical access to a password protect...
- Question 62: In the default global policy, which traffic is matched for i...
- Question 63: Which statement describes a unique feature of Cisco NetFlow ...
- Question 64: An engineer must secure a LAN infrastructure from potential ...
- Question 65: What are two reasons to implement Cisco IOS MPLS Bandwidth-A...
- Question 66: An engineer is configuring Cisco ASA 1000V Cloud Firewall. W...
- Question 67: To which interface on a Cisco ASA 1000V firewall should a se...
- Question 68: What is the default violation mode that is applied by port s...
- Question 69: What are the three types of private VLAN ports? (Choose thre...
- Question 70: Which feature can suppress packet flooding in a network?...
- Question 71: Which command configures the SNMP server group1 to enable au...
- Question 72: Which statement describes the correct steps to enable Botnet...
- Question 73: Which of the following that Cisco engineer must secure a cur...
- Question 74: What are two reasons for implementing NIPS at enterprise Int...
- Question 75: A network engineer must manage and push configurations to a ...
- Question 76: Which two statements about Cisco IOS Firewall are true? (Cho...
- Question 77: Which three statements about the software requirements for a...
- Question 78: Refer to the exhibit. (Exhibit) What is the effect of this c...
- Question 79: Which characteristic of community ports in a PVLAN is true?...
- Question 80: When a traffic storm threshold occurs on a port, into which ...
- Question 81: Which two device types can Cisco Prime Security Manager mana...
- Question 82: Which two voice protocols can the Cisco ASA inspect? (Choose...
- Question 83: Refer to the exhibit. (Exhibit) Which two statements about t...
- Question 84: What are two high-level task areas in a Cisco Prime Infrastr...
- Question 85: When you configure a Cisco firewall in multiple context mode...
- Question 86: Refer to the exhibit. (Exhibit) Which two statements about t...
- Question 87: An engineer must implement secure device management on a Cis...
- Question 88: According to Cisco best practices, which two interface confi...
- Question 89: In a Cisco ASAv failover deployment, which interface is prec...
- Question 90: When configuring packet-tracer command from CLI, what is the...
- Question 91: Which two VPN types can you monitor and control with Cisco P...
- Question 92: It has been reported that an application is not working wher...
- Question 93: Which three options are default settings for NTP parameters ...
- Question 94: What is a benefit the iOS control plane protection?...
- Question 95: Refer to the exhibit. (Exhibit) Which command can produce th...
- Question 96: Which Cisco ASA object group type offers the most flexibilit...
- Question 97: Which statement about Cisco Security Manager form factors is...
- Question 98: When configured in accordance to Cisco best practices, the i...
- Question 99: When you set a Cisco IOS Router as an SSH server, which comm...
- Question 100: In IOS routers, what configuration can ensure both preventio...
- Question 101: Refer to the exhibit. (Exhibit) A network engineer is testin...
- Question 102: Which three statements about transparent firewall are true? ...
- Question 103: Which addresses are considered "ambiguous addresses" and are...
- Question 104: Which command displays syslog messages on the Cisco ASA cons...
- Question 105: Which statement about Cisco ASA multicast routing support is...
- Question 106: Which five options are valid logging destinations for the Ci...
- Question 107: Which option is a Cisco best practice when configuring traff...
- Question 108: Which two TCP ports must be open on the Cisco Security Manag...
- Question 109: Which Layer 2 security feature validates ARP packets?...
- Question 110: If you encounter problems logging in to the Cisco Security M...
- Question 111: (Exhibit) An SNMP host is an IP address to which SNMP notifi...
- Question 112: Your company is replacing a high-availability pair of Cisco ...
- Question 113: Which two configurations are necessary to enable password-le...
- 1 commentQuestion 114: (Exhibit) Which statement about how the Cisco ASA supports S...
- Question 115: A security engineer must evaluate Cisco Security Manager. Wh...
- 1 commentQuestion 116: An engineer is hardening the management plane for an ASA. Wh...
- Question 117: When configuring a new context on a Cisco ASA device, which ...
- Question 118: By default, not all services in the default inspection class...
- Question 119: Enabling what security mechanism can prevent an attacker fro...
- Question 120: Which command tests authentication with SSH and shows a gene...
- Question 121: Refer to the exhibit. (Exhibit) To protect Host A and Host B...
- 1 commentQuestion 122: Which statement about the Cisco ASA botnet traffic filter is...
- Question 123: Which two features block traffic that is sourced from non-to...
- Question 124: Which log level provides the most detail on the Cisco Web Se...
- Question 125: Which four are IPv6 First Hop Security technologies? (Choose...
- Question 126: What are two enhancements of SSHv2 over SSHv1? (Choose two.)...
- Question 127: Which URL matches the regex statement "http"*/"www.cisco.com...
- Question 128: Where in the Cisco ASA appliance CLI are Active/Active Failo...
- Question 129: You have installed a web server on a private network. Which ...
- Question 130: In which two modes is zone-based firewall high availability ...
- Question 131: What are two primary purposes of Layer 2 detection in Cisco ...
- Question 132: If you disable PortFast on switch ports that are connected t...
- Question 133: In which way are management packets classified on a firewall...
- Question 134: On the Cisco ASA, where are the Layer 5-7 policy maps applie...
- Question 135: A Cisco ASA is configured in multiple context mode and has t...
- Question 136: Private VLANs have been configured in the data center. Which...
- Question 137: Refer to the exhibit. (Exhibit) What is the effect of this f...
- Question 138: Which activity is performed by the switch when Dynamic ARP i...
- Question 139: Which command enables the HTTP server daemon for Cisco ASDM ...
- Question 140: How many interfaces can a Cisco ASA bridge group support and...
- Question 141: Which type of object group will allow configuration for both...
- Question 142: With Cisco ASA active/standby failover, by default, how many...
- Question 143: Which function does DNSSEC provide in a DNS infrastructure?...
- Question 144: Which three statements about private VLANs are true? (Choose...
- Question 145: An engineer is applying best practices to stop VLAN hopping ...
- Question 146: Which device can be managed by the Cisco Prime Security Mana...
- Question 147: Which three options correctly identify the Cisco ASA1000V Cl...
- Question 148: Which two options are main challenges for public cloud data ...
- Question 149: Refer to the exhibit. Which information is passed between th...
- Question 150: How many bridge groups are supported on a firewall that oper...
- Question 151: What are three ways to add devices in Cisco Prime Infrastruc...
- Question 152: Which option is the default logging buffer size in memory of...
- Question 153: At which firewall severity level will debugs appear on a Cis...
- Question 154: Which security operations management best practice should be...
- Question 155: An administrator is deploying port-security to restrict traf...
- Question 156: What can you do to enable inter-interface firewall communica...
- Question 157: You are the administrator of a multicontext transparent-mode...
- Question 158: Where on a firewall does an administrator assign interfaces ...
- Question 159: Which two statements about zone-based firewalls are true? (C...
- Question 160: Which Cisco ASA show command groups the xlates and connectio...
- Question 161: When a Cisco ASA is configured in multiple context mode, wit...
- Question 162: Which Cisco Security Manager form factor is recommended for ...
- Question 163: Which statement about the Cisco ASA configuration is true?...
- Question 164: Which command is the first that you enter to check whether o...
- Question 165: A rogue device has connected to the network and has become t...
- Question 166: Which set of commands creates a message list that includes a...
- Question 167: How much storage is allotted to maintain system, configurati...
- Question 168: A Cisco ASA requires an additional feature license to enable...
- Question 169: A network engineer has installed Cisco Security Manager 4.7 ...
- Question 170: An engineer has configured a unified IPV6/IPV4 ACL to be use...
- Question 171: If a switch port goes directly into a blocked state only whe...
- Question 172: Which two configurations are the minimum needed to enable EI...
- Question 173: (Exhibit) SNMP users have a specified username, a group to w...
- Question 174: Which statement about traffic zoning in cisco ASA?...
- Question 175: A Cisco ASA is configured for TLS proxy. When should the sec...
- Question 176: You have explicitly added the line deny ipv6 any log to the ...
- Question 177: When an engineer is configuring DHCP snooping, which configu...
- Question 178: What are two security features at the access port level that...
- Question 179: Which two features are supported when configuring clustering...
- Question 180: Refer to the exhibit. (Exhibit) Server A is a busy server th...
- Question 181: Which function in the Cisco ADSM ACL Manager pane allows an ...
- Question 182: What is the default behavior of an access list on a Cisco AS...
- Question 183: You are the administrator of a Cisco ASA 9.0 firewall and ha...
- Question 184: When configuring security contexts on the Cisco ASA, which t...
- Question 185: Which two router commands enable NetFlow on an interface? (C...
Recent Comments (The most recent comments are at the top.)
Botnet Filtering - Static Database
You can manually enter domain names or IP addresses (host or subnet) that you want to tag as bad names in a blacklist. Static blacklist entries are always designated with a Very High threat level.
Threat levels:
1. very-low
2. low
3. moderate
4. high
5. very-high
Command to drop blacklisted traffic:
dynamic-filter drop blacklist [interface name] [action-classify-list subset_access_list] [threat-level {eq level | range min max}]
Command to treat greylisted traffic as blacklisted traffic for dropping purposes:
dynamic-filter ambiguous-is-black
- If you do not enable this command, greylisted traffic will not be dropped.
• Ambiguous addresses (greylist)—These addresses are associated with multiple domain names, but not all of these domain names are on the blacklist. These addresses are on the greylist .
Example configuration form real ASA:
dynamic-filter drop blacklist interface outside
dynamic-filter ambiguous-is-black
Supported features:
• Supported in single and multiple context mode.
• Supported in routed and transparent firewall mode.
• Does NOT support replication of the DNS reverse lookup cache, DNS host cache, or the dynamic database in Stateful Failover.
• Does NOT support IPv6.
• TCP DNS traffic is NOT supported.
• You can add up to 1000 blacklist entries and 1000 whitelist entries in the static database.
• The packet tracer is NOT supported.
Defaults:
Botnet Traffic Filter is disabled by default, as is use of the dynamic database.
For DNS inspection, which is enabled by default, Botnet Traffic Filter snooping is disabled by default.
https://www.cisco.com/c/en/us/td/docs/security/asa/asa90/configuration/guide/asa_90_cli_config/protect_botnet.html
Licensing requirements:
• Botnet Traffic Filter License.
• Strong Encryption (3DES/AES) License to download the dynamic database.
Be sure to set up a DNS server for the ASA so that it can access the Cisco update server URL. In multiple context mode, the system downloads the database for all contexts using the admin context interface; be sure to set up a DNS server in the admin context.