ExamGecko
Login
Home / Cisco / 300-730 / List of questions
Ask Question

Cisco 300-730 Practice Test - Questions Answers, Page 8

Add to Whishlist

List of questions

Question 71

Report Export Collapse

Which two features are valid backup options for an IOS FlexVPN client? (Choose two.)

HSRP stateless failover

HSRP stateless failover

DNS-based hub resolution

DNS-based hub resolution

reactivate primary peer

reactivate primary peer

tunnel pivot

tunnel pivot

need distractor

need distractor

Suggested answer: B, C
asked 10/10/2024
Liusel Herrera Garcia
49 questions

Question 72

Report Export Collapse

Refer to the exhibit.

Cisco 300-730 image Question 72 114590 10102024232758000000

Which type of VPN is used?

GETVPN

GETVPN

clientless SSL VPN

clientless SSL VPN

Cisco Easy VPN

Cisco Easy VPN

Cisco AnyConnect SSL VPN

Cisco AnyConnect SSL VPN

Suggested answer: C
Explanation:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa97/configuration/vpn/asa-97-vpn-config/vpn-easyvpn.html

asked 10/10/2024
Nicolas Pintrel
38 questions

Question 73

Report Export Collapse

An engineer would like Cisco AnyConnect users to be able to reach servers within the 10.10.0.0/16 subnet while all other traffic is sent out to the Internet. Which IPsec configuration accomplishes this task?

Cisco 300-730 image Question 73 114591 10102024232758000000

Option A

Option A

Option B

Option B

Option C

Option C

Option D

Option D

Suggested answer: B
Explanation:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ike2vpn/configuration/xe-3s/sec-flex-vpn-xe-3s-book/sec-cfg-flex-serv.htm

asked 10/10/2024
Joshua Muentes
51 questions

Question 74

Report Export Collapse

Which Cisco AnyConnect component ensures that devices in a specific internal subnet are only accessible using port 443?

routing

routing

WebACL

WebACL

split tunnel

split tunnel

VPN filter

VPN filter

Suggested answer: D
Explanation:

https://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/99103-pix-asa-vpn-filter.html#anc6

asked 10/10/2024
M.G.Georgantzis QUALCO
37 questions

Question 75

Report Export Collapse

Refer to the exhibit.

Cisco 300-730 image Question 75 114593 10102024232758000000

Upon setting up a tunnel between two sites, users are complaining that connections to applications over the VPN are not working consistently. The output of show crypto ipsec sa was collected on one of the VPN devices. Based on this output, what should be done to fix this issue?

Lower the tunnel MTU.

Lower the tunnel MTU.

Enable perfect forward secrecy.

Enable perfect forward secrecy.

Specify the application networks in the remote identity.

Specify the application networks in the remote identity.

Make an adjustment to IPSec replay window.

Make an adjustment to IPSec replay window.

Suggested answer: D
Explanation:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_dplane/configuration/xe-16-8/secipsec-data-plane-xe-16-8-book/sec-ipsec-antireplay.html#GUID-1FF00FBB-0746-48B2-A02A-2BB066BEDEF8

asked 10/10/2024
Timothy Brown
35 questions

Question 76

Report Export Collapse

After a user configures a connection profile with a bookmark list and tests the clientless SSLVPN connection, all of the bookmarks are grayed out. What must be done to correct this behavior?

Apply the bookmark to the correct group policy.

Apply the bookmark to the correct group policy.

Specify the correct port for the web server under the bookmark.

Specify the correct port for the web server under the bookmark.

Configure a DNS server on the Cisco ASA and verify it has a record for the web server.

Configure a DNS server on the Cisco ASA and verify it has a record for the web server.

Verify HTTP/HTTPS connectivity between the Cisco ASA and the web server.

Verify HTTP/HTTPS connectivity between the Cisco ASA and the web server.

Suggested answer: C
asked 10/10/2024
Petko Milidragovic
37 questions

Question 77

Report Export Collapse

Refer to the exhibit.

Cisco 300-730 image Question 77 114595 10102024232758000000

Which type of VPN is being configured, based on the partial configuration snippet?

GET VPN with COOP key server

GET VPN with COOP key server

GET VPN with dual group member

GET VPN with dual group member

FlexVPN load balancer

FlexVPN load balancer

FlexVPN backup gateway

FlexVPN backup gateway

Suggested answer: A
asked 10/10/2024
Jérémy FRAISSENET
37 questions

Question 78

Report Export Collapse

An administrator is designing a VPN with a partner's non-Cisco VPN solution. The partner's VPN device will negotiate an IKEv2 tunnel that will only encrypt subnets 192.168.0.0/24 going to 10.0.0.0/24. Which technology must be used to meet these requirements?

VTI

VTI

crypto map

crypto map

GETVPN

GETVPN

DMVPN

DMVPN

Suggested answer: B
asked 10/10/2024
Alessio Marsicovetere
20 questions

Question 79

Report Export Collapse

A company's remote locations connect to the data centers via MPLS. A new request requires that unicast and multicast traffic that exits in the remote locations be encrypted. Which non-tunneled technology should be used to satisfy this requirement?

SSL

SSL

FlexVPN

FlexVPN

DMVPN

DMVPN

GETVPN

GETVPN

Suggested answer: D
asked 10/10/2024
Bashar Deeb
54 questions

Question 80

Report Export Collapse

While troubleshooting, an engineer finds that the show crypto isakmp sa command indicates that the last state of the tunnel is MM_KEY_EXCH. What is the next step that should be taken to resolve this issue?

Verify that the ISAKMP proposals match.

Verify that the ISAKMP proposals match.

Ensure that UDP 500 is not being blocked between the devices.

Ensure that UDP 500 is not being blocked between the devices.

Correct the peer's IP address on the crypto map.

Correct the peer's IP address on the crypto map.

Confirm that the pre-shared keys match on both devices.

Confirm that the pre-shared keys match on both devices.

Suggested answer: D
Explanation:

https://www.networkworld.com/article/2288666/chapter-4--common-ipsec-vpn-issues.html

asked 10/10/2024
Vimal Varughese
46 questions
Total 175 questions
Go to page: of 18
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. The IKEv2 site-to-site VPN tunnel between two routers is down. Based on the debug output, which type of mismatch is the problem?
Which two NHRP functions are specific to DMVPN Phase 3 implementation? (Choose two.)
A company's remote locations connect to the data centers via MPLS. A new request requires that unicast and multicast traffic that exits in the remote locations be encrypted. Which non-tunneled technology should be used to satisfy this requirement?
A DMVPN spoke is configured with IKEv1 to secure the tunnel. Despite having a configuration similar to other working spokes, the tunnel is not coming up. Packet captures on the spoke show packets leaving the spoke router, but not making it to the hub router. Which solution resolves this issue?
Which feature allows a DMVPN Phase 3 spoke to switch to an alternate hub when the primary hub is unreachable?
Which two features provide headend resiliency for Cisco AnyConnect clients? (Choose two.)
What must be configured in a FlexVPN deployment to allow for direct communication between spokes connected to different hubs?
Which two statements about the Cisco ASA Clientless SSL VPN solution are true? (Choose two.)
A Cisco AnyConnect client establishes a SSL VPN connection with an ASA at the corporate office. An engineer must ensure that the client computer meets the enterprise security policy. Which feature can update the client to meet an enterprise security policy?
An administrator is designing a VPN with a partner's non-Cisco VPN solution. The partner's VPN device will negotiate an IKEv2 tunnel that will only encrypt subnets 192.168.0.0/24 going to 10.0.0.0/24. Which technology must be used to meet these requirements?