New Updated Cisco CCNA Security 640-554 Real Exam Download 111-120

Ensurepass

QUESTION 111

Scenario: You are the security admin for a small company. This morning your manager has

supplied you with a list of Cisco ISR and CCP configuration questions. Using CCP, your job is to

navigate the pre-configured CCP in order to find answers to your business question. What is

included in the Network Object Group INSIDE? (Choose two)

 

clip_image002

 

A.      Network 192.168.1.0/24

B.      Network 175.25.133.0/24

C.      Network 10.0.10.0/24

D.      Network 10.0.0.0/8

E.       Network 192.168.1.0/8

 

Correct Answer: BC

 

 

QUESTION 112

clip_image004

clip_image006

clip_image008

 

Correct Answer:

For the NTP portion:

Click on Router – Time – NTP and SNTP on left hand pane.

Then click the Add button. Enter the Server IP address and source interface and key information

as specified. Also be sure to click the Prefer button.

 

For the access rule portion:

Click on Router – ACL – ACL Editor. Click Add button. Then enter Inbound for the name and make

sure rule is extended. Then click Add at the rule entry. Then ensure that permit is selected and

that source and destination boxes both say Any IP Address (They should already).

 

Under Protocol and Service select EIGRP. Hit OK.

 

Then click add button again. Leave the source as any and click the destination box as “A network”

and type in 10.0.2.0 and select the wildcard mask as 0.0.0.255. Click on the TCP protocol button

and select “www” Hit OK.

 

Finally, click on edit for this rule and click on the Associate button. Select the outside interface

and select the inbound direction.

 

 

QUESTION 113

HOTSPOT

clip_image010

clip_image012

clip_image014

 

What NAT address will be assigned by ACL 1?

 

A.      192.168.1.0/25

B.      GigabitEthernet0/0 interface address

C.      172.25.223.0/24

D.      10.0.10.0/24

 

Correct Answer: A

 

 

QUESTION 114

HOTSPOT

clip_image016

clip_image017

clip_image018

 

Which four protocols are included in the Inspection Class Map OUT_SERVICE? (Choose four)

 

A.      FTP

B.      HTTP

C.      HTTPS

D.      SMTP

E.       P2P

F.       ICMP

 

Correct Answer: BCDF

 

 

QUESTION 115

HOTSPOT

clip_image019

clip_image020

clip_image018[1]

 

Which Class Map is used by the INBOUND Rule?

 

A.      SERVICE_IN

B.      Class-map ccp-cls-2

C.      Ccp-cls-2

D.      Class-map SERVICE_IN

 

Correct Answer: B

 

 

QUESTION 116

HOTSPOT

clip_image019[1]

clip_image020[1]

clip_image018[2]

 

What is included in the Network Object Group INSIDE? (Choose two.)

 

A.      Network 192.168.1.0/24

B.      Network 172.25.133.0/24

C.      Network 10.0.10.0/24

D.      Network 10.0.0.0/8

E.       Network 192.168.1.0/8

 

Correct Answer: BC

 

 

QUESTION 117

HOTSPOT

clip_image019[2]

clip_image021

clip_image018[3]

 

Which policy is assigned to Zone Pair sdm-zp-OUT-IN?

 

A.      sdm-cls-http

B.      OUT_SERVICE

C.      ccp-policy-ccp-cls-1

D.      ccp-policy-ccp-cls-2

 

Correct Answer: D

 

 

QUESTION 118

DRAG DROP

clip_image023

 

Correct Answer:

clip_image025

 

 

QUESTION 119

DRAG DROP

clip_image027

 

Correct Answer:

clip_image029

 

 

QUESTION 120

DRAG DROP

clip_image031

 

Correct Answer:

clip_image033

 

Download Latest Complete collection of CCNA Security 640-554 Real Exam ,help you to pass exam 100%.

Ensurepass Cisco Certifications Exam Questions and Answers
Ensurepass CCNA Security Exams Questions and Answers

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.