EnsurepassQUESTION 121 Which two configurations are the minimum needed to enable EIGRP on the Cisco ASA appliance? (Choose two.)   A.      Enable the EIGRP routing process and specify the AS number. B.      Define the EIGRP default-metric. C.      Configure the EIGRP router ID. D.      Use the neighbor command(s) to specify the EIGRP neighbors. E.       Use Read more [...]
EnsurepassQUESTION 111 Which three types of class maps can be configured on the Cisco ASA appliance? (Choose three.)   A.      control-plane B.      regex C.      inspect D.      access-control E.       management F.       stack   Answer: B,C,E     QUESTION 112 Refer to the partial Cisco ASA configuration and Read more [...]
EnsurepassQUESTION 101 Refer to the exhibit. Which three CLI commands are generated by these Cisco ASDM configurations? (Choose three.)   A.      object-group network testobj B.      object network testobj C.      ip address D.      subnet E.       nat (any,any) static dns F.       Read more [...]
EnsurepassQUESTION 91 When configuring security contexts on the Cisco ASA, which three resource class limits can be set using a rate limit? (Choose three.)   A.      address translation rate B.      Cisco ASDM session rate C.      connections rate D.      MAC-address learning rate (when in transparent mode) E.       syslog messages rate F.       Read more [...]
EnsurepassQUESTION 81 Which option can cause the interactive setup script not to work on a Cisco ASA 5520 appliance running software version 8.4.1?   A.      The clock has not been set on the Cisco ASA appliance using the clock set command. B.      The HTTP server has not been enabled using the http server enable command. C.      The domain name has not been configured using the domain-name command. D.      Read more [...]
EnsurepassQUESTION 71 Refer to the exhibit. A Cisco ASA in transparent firewall mode generates the log messages seen in the exhibit. What should be configured on the Cisco ASA to allow the denied traffic?   A.      extended ACL on the outside and inside interface to permit the multicast traffic B.      EtherType ACL on the outside and inside interface to permit the multicast traffic C.      stateful packet inspection Read more [...]
EnsurepassQUESTION 61 Where in the Cisco ASA appliance CLI are Active/Active Failover configuration parameters configured?   A.      admin context B.      customer context C.      system execution space D.      within the system execution space and admin context E.       within each customer context and admin context   Answer: C      QUESTION Read more [...]
EnsurepassQUESTION 51 Which option lists the main tasks in the correct order to configure a new Layer 3 and 4 inspection policy on the Cisco ASA appliance using the Cisco ASDM Configuration > Firewall > Service Policy Rules pane?   A.        1. Create a class map to identify which traffic to match. 2. Create a policy map and apply action(s) to the traffic class(es). 3. Apply the policy map to an interface or globally using a service policy.   B. Read more [...]
EnsurepassQUESTION 41 For which purpose is the Cisco ASA CLI command aaa authentication match used?   A.      Enable authentication for SSH and Telnet connections to the Cisco ASA appliance. B.      Enable authentication for console connections to the Cisco ASA appliance. C.      Enable authentication for connections through the Cisco ASA appliance. D.      Enable authentication for IPsec Read more [...]
EnsurepassQUESTION 31 Refer to the exhibit. Which corresponding Cisco ASA Software Version 8.3 command accomplishes the same Cisco ASA Software Version 8.2 NAT configuration?   A.      nat (any,any) dynamic interface B.      nat (any,any) static interface C.      nat (inside,outside) dynamic interface D.      nat (inside,outside) static interface E.       Read more [...]
EnsurepassQUESTION 21 A Cisco ASA is operating in transparent firewall mode, but the MAC address table of the Cisco ASA is always empty, which causes connectivity issues. What should you verify to troubleshoot this issue?   A.      if ARP inspection has been disabled B.      if MAC learning has been disabled C.      if NAT has been disabled D.      if ARP traffic is explicitly allowed using Read more [...]