2017 January Cisco Official New Released 500-260 Dumps in Lead2pass.com!
100% Free Download! 100% Pass Guaranteed!
Since I recently passed the the Cisco 500-260 exam, it’s time for me to share the Lead2pass exam dumps I used when preparing for this exam.
Following questions and answers are all new published by Cisco Official Exam Center: http://www.lead2pass.com/500-260.html
QUESTION 1
An access policy that uses URL reputation values is defined.
Which option best describes what happens if a reputation is not available for a URL?
A. The URL check is not triggered, and the default policy action is applied.
B. The URL check fails, and the traffic is dropped.
C. The URL check is unknown, and the traffic is quarantined.
D. The URL check is not triggered and, by default, the user is prompted to take an action to permit or deny.
Answer: A
QUESTION 2
Detection of an exploit kit that is installed on a device is an example of which IoC event category?
A. security intelligence
B. IPS
C. malware
D. firewall
Answer: B
QUESTION 3
A file-type embedded attack is an example of which IoC event category?
A. security intelligence
B. IPS
C. malware
D. firewall
Answer: C
QUESTION 4
Which Cisco SFR feature license is needed to allow a high school security administration to implement a policy to allow student access to only high-reputation websites?
A. AVC
B. Botnet Traffic Filtering
C. URL
D. NGIPS
E. AMP
Answer: C
QUESTION 5
Which Cisco Fire POWER services license must the administrator have to detect and monitor the unauthorized command-and-control network traffic?
A. AVC
B. WSE
C. CWS
D. AMP
Answer: D
QUESTION 6
Which two Cisco ASA licensing features are correct with Cisco ASA Software Version 8.3 and later? (Choose two.)
A. Identical licenses are not required on the primary and secondary Cisco ASA appliance.
B. Cisco ASA appliances configured as failover pairs disregard the time-based activation keys.
C. Time-based licenses are stackable in duration but not in capacity.
D. A time-based license completely overrides the permanent license, ignoring all permanently licensed features until the time-based license is uninstalled.
Answer: AC
QUESTION 7
Which Cisco ASA CLI command is used to enable HTTPS (Cisco ASDM) access from any inside host on the 10.1.16.0/20 subnet?
A. http 10.1.16.0 0.0.0.0 inside
B. http 10.1.16.0 0.0.15.255 inside
C. http 10.1.16.0 255.255.240.0 inside
D. http 10.1.16.0 255.255.255.255
Answer: C
QUESTION 8
Which four unicast or multicast routing protocols are supported by the Cisco ASA appliance? (Choose four.)
A. RIP (v1 and v2)
B. OSPF
C. IS-IS
D. BGP
E. EIGRP
F. Bidirectional PIM
G. MOSPF
H. PIM dense mode
Answer: ABEF
QUESTION 9
Refer to the exhibit. Which Cisco ASA CLI commands configure these static routes in the Cisco ASA routing table?
A. route dmz 10.2.2.0 0.0.0.255 172.16.1.10
route dmz 10.3.3.0 0.0.0.255 172.16.1.11
B. route dmz 10.2.2.0 0.0.0.255 172.16.1.10 1
route dmz 10.3.3.0 0.0.0.255 172.16.1.11 1
C. route dmz 10.2.2.0 0.0.0.255 172.16.1.10
route dmz 10.3.3.0 0.0.0.255 172.16.1.11 2
D. route dmz 10.2.2.0 255.255.255.0 172.16.1.10
route dmz 10.3.3.0 255.255.255.0 172.16.1.11
E. route dmz 10.2.2.0 255.255.255.0 172.16.1.10 1
route dmz 10.3.3.0 255.255.255.0 172.16.1.11 1
F. route dmz 10.2.2.0 255.255.255.0 172.16.1.10
route dmz 10.3.3.0 255.255.255.0 172.16.1.11 2
Answer: F
QUESTION 10
On the Cisco ASA, tcp-map can be applied to a traffic class using which MPF CLI configuration command?
A. inspect
B. sysopt connection
C. tcp-options
D. parameters
E. set connection advanced-options
Answer: E
I hope Lead2pass exam questions from the Cisco 500-260 exam helps you pass the exam and earn your Cisco certification! Happy Studying!
500-260 new questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDUVRuaVllQi1YNlE
2017 Cisco 500-260 exam dumps (All 79 Q&As) from Lead2pass:
http://www.lead2pass.com/500-260.html [100% Exam Pass Guaranteed]