1. Home
  2. Cisco Certification
  3. 300-206 Exam
  4. Cisco.300-206.ExamEngine Practice Test

Online Access Free 300-206 Practice Test

Exam Code:300-206
Exam Name:Implementing Cisco Edge Network Security Solutions
Certification Provider:Cisco
Free Question Number:175
Posted:Sep 09, 2025
Rating
100%

Question 1

An engineer must create an SSHv2 configuration for a remote user with a key size of 2048 on the inside network of 192.168.0.0/19 with a fully qualified domain name. Drag and drop the Cisco ASA commands on the left onto the matching function on the right.

Question 2

Drag and drop the Cisco Prime Security Manager available reports on the left onto the correct report examples on the right.

Question 3

You are the network security engineer for the Secure-X network. The company has recently detected Increase of traffic to malware Infected destinations. The Chief Security Officer deduced that some PCs in the internal networks are infected with malware and communicate with malware infected destinations.
The CSO has tasked you with enable Botnet traffic filter on the Cisco ASA to detect and deny further connection attempts from infected PCs to malware destinations. You are also required to test your configurations by initiating connections through the Cisco ASA and then display and observe the Real-Time Log Viewer in ASDM.
To successfully complete this activity, you must perform the following tasks:
* Download the dynamic database and enable use of it.
* Enable the ASA to download of the dynamic database
* Enable the ASA to download of the dynamic database.
* Enable DNS snooping for existing DNS inspection service policy rules..
* Enable Botnet Traffic Filter classification on the outside interface for All Traffic.
* Configure the Botnet Traffic Filter to drop blacklisted traffic on the outside interface. Use the default Threat Level settings NOTE: The database files are stored in running memory; they are not stored in flash memory.
NOTE: DNS is enabled on the inside interface and set to the HQ-SRV (10.10.3.20).
NOTE: Not all ASDM screens are active for this exercise.
* Verify that the ASA indeed drops traffic to blacklisted destinations by doing the following:
* From the Employee PC, navigate to http://www.google.com to make sure that access to the Internet is working.
* From the Employee PC, navigate to http://bot-sparta.no-ip.org. This destination is classified as malware destination by the Cisco SIO database.
* From the Employee PC, navigate to http://superzarabotok-gid.ru/. This destination is classified as malware destination by the Cisco SIO database.
* From Admin PC, launch ASDM to display and observe the Real-Time Log Viewer.
You have completed this exercise when you have configured and successfully tested Botnet traffic filter on the Cisco ASA.


Question 4

Which setting is optional when configuring two Cisco ASA firewalls for failover?

Question 5

What are two high-level task areas in a Cisco Prime Infrastructure life-cycle workflow? (Choose two.)

Add Comments

Your email address will not be published. Required fields are marked *

insert code
Type the characters from the picture.
Latest Upload
117Oracle.1Z0-1057-23.v2025-09-10.q47
150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179
131SAP.C-S4EWM-2023.v2025-09-08.q83
162TheSecOpsGroup.CNSP.v2025-09-08.q20
221CFAInstitute.ESG-Investing.v2025-09-08.q173
155PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132
145Salesforce.Data-Architect.v2025-09-05.q216
139Adobe.AD0-E605.v2025-09-05.q50
184Nutanix.NCP-MCI-6.10.v2025-09-05.q55
114Oracle.1z0-591.v2025-09-05.q104