Cisco (300-730-SVPN) Exam Questions And Answers page 6
Refer to the exhibit. The customer can establish a Cisco AnyConnect connection without using an XML profile. When the host "ikev2" is selected in the AnyConnect drop down, the connection fails. What is the cause of this issue?
The IP address is incorrect.
Primary protocol should be SSL.
UserGroup must match connection profile.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which method dynamically installs the network routes for remote tunnel endpoints?
policy-based routing
CEF
reverse route injection
route filtering
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which VPN solution uses TBAR?
GETVPN
VTI
DMVPN
Cisco AnyConnect
Secure Solutions with Virtual Private Networks
Which two changes must be made in order to migrate from DMVPN Phase 2 to Phase 3 when EIGRP is configured? (Choose two.)
Add NHRP shortcuts on the hub.
Add NHRP redirects on the spoke.
Disable EIGRP next-hop-self on the hub.
Enable EIGRP next-hop-self on the hub.
Add NHRP redirects on the hub.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Drag and drop the code snippets from the right onto the blanks in the configuration to implement FlexVPN. Not all snippets are used.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which two types of web resources or protocols are enabled by default on the Cisco ASA Clientless SSL VPN portal? (Choose two.)
HTTP
ICA (Citrix)
VNC
RDP
CIFS
Secure Solutions with Virtual Private Networks
Implement and Troubleshoot Secure Communications
Refer to the exhibit. All internal clients behind the ASA are port address translated to the public outside interface that has an IP address of 3.3.3.3. Client 1 and client 2 have established successful SSL VPN connections to the ASA. What must be implemented so that "3.3.3.3" is returned from a browser search on the IP address?
Same-security-traffic permit inter-interface under Group Policy
Exclude Network List Below under Group Policy
Tunnel All Networks under Group Policy
Tunnel Network List Below under Group Policy
Implement and Troubleshoot Secure Communications
Infrastructure Security
What uses an Elliptic Curve key exchange algorithm?
ECDSA
ECDHE
AES-GCM
SHA
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Refer to the exhibit. An IKEv2 site-to-site tunnel between an ASA and a remote peer is not building successfully. What will fix the problem based on the debug output?
Ensure crypto IPsec policy matches on both VPN devices.
Install the correct certificate to validate the peer.
Correct crypto access list on both VPN devices.
Specify the peer IP address in the tunnel group name.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Refer to the exhibit. The customer must launch Cisco AnyConnect in the RDP machine. Which IOS configuration accomplishes this task?
Implement and Troubleshoot Secure Communications
Infrastructure Security
Comments