Best Study Materil For 210-260 Exam

      Comments Off on Best Study Materil For 210-260 Exam

Download the Free ccna security exam questions. Get 100%  ccna security 210-260 dumps free of cost in your mail box.

Try it Latest DumpsSchool 210-260 Exam dumps. Buy Full File here: (502 As Dumps)

Download the DumpsSchool 210-260 braindumps from Google Drive: (FREE VERSION!!!)

Question No. 1

Which Sourcefire logging action should you choose to record the most detail about a connection?

Answer: A

FirePOWER (former Sourcefire)

Logging the Beginning And End of Connections

When the system detects a connection, in most cases you can log it at its beginning and its end.

For a single non-blocked connection, the end-of-connection event contains all of the information in the beginning-of-connection event, as well as information gathered over the duration of the session.

Source: module-user-guide-v541/AC-Connection-Logging.html#15726

Question No. 2

What hash type does Cisco use to validate the integrity of downloaded images?

Answer: C

The MD5 File Validation feature, added in Cisco IOS Software Releases 12.2(4)T and 12.0(22)S, allows network administrators to calculate the MD5 hash of a Cisco IOS software image file that is loaded on a device.

It also allows administrators to verify the calculated MD5 hash against that provided by the user. Once the MD5 hash value of the installed Cisco IOS image is determined, it can also be compared with the MD5 hash provided by Cisco to verify the integrity of the image file.

verify /md5 filesystem:filename [md5-hash]


Question No. 3

What VPN feature allows Internet traffic and local LAN/WAN traffic to use the same network connection?

Answer: A

Split tunneling is a computer networking concept which allows a mobile user to access dissimilar security domains like a public network (e.g., the Internet) and a local LAN or WAN at the same time, using the same or different network connections. This connection state is usually facilitated through the simultaneous use of, a Local Area Network (LAN) Network Interface Card (NIC), radio NIC, Wireless Local Area Network (WLAN) NIC, and VPN client software application without the benefit of access control.


Question No. 4

Which command enables port security to use sticky MAC addresses on a switch?

Answer: A

Question No. 5

Which statement represents a difference between an access list on an ASA versus an access list on a router?

Answer: D

Question No. 6

Refer to the exhibit.

You notice this error message in the syslog. Which command do you enter on the switch to gather more information?

Answer: B

Question No. 7

What are two default Cisco IOS privilege levels? (Choose two.)

Answer: B, F

By default, the Cisco IOS software command-line interface (CLI) has two levels of access to commands: user EXEC mode (level 1) and privileged EXEC mode (level 15).


Question No. 8

What are two uses of SIEM software? (Choose two.)

Answer: A, B

Security Information Event Management SIEM

+ Log collection of event records from sources throughout the organization provides important forensic tools and helps to address compliance reporting requirements.

+ Normalization maps log messages from different systems into a common data model, enabling the organization to connect and analyze related events, even if they are initially logged in different source formats. + Correlation links logs and events from disparate systems or applications, speeding detection of and reaction to security threats.

+ Aggregation reduces the volume of event data by consolidating duplicate event records. + Reporting presents the correlated, aggregated event data in real-time monitoring and long-term summaries.

Source: architecture/sbaSIEM_deployG.pdf

210-260 Dumps Google Drive: (Limited Version!!!)

Related Certification: