Master the 300-209 Implementing Cisco Secure Mobility Solutions (SIMOS) content and be ready for exam day success quickly with this Actualtests 300-209 exam price. We guarantee it!We make it a reality and give you real 300-209 questions in our Cisco 300-209 braindumps.Latest 100% VALID Cisco 300-209 Exam Questions Dumps at below page. You can use our Cisco 300-209 braindumps and pass your exam.

Q71. Which feature is enabled by the use of NHRP in a DMVPN network? 

A. host routing with Reverse Route Injection 

B. BGP multiaccess 

C. host to NBMA resolution 

D. EIGRP redistribution 

Answer:


Q72. Which command can you use to monitor the phase 1 establishment of a FlexVPN tunnel? 

A. show crypto ipsec sa 

B. show crypto isakmp sa 

C. show crypto ikev2 sa 

D. show ip nhrp 

Answer:


Q73. When an IPsec SVTI is configured, which technology processes traffic forwarding for encryption? 

A. ACL 

B. IP routing 

C. RRI 

D. front door VPN routing and forwarding 

Answer:


Q74. A Cisco IOS SSL VPN gateway is configured to operate in clientless mode so that users can access file shares on a Microsoft Windows 2003 server. Which protocol is used between the Cisco IOS router and the Windows server? 

A. HTTPS 

B. NetBIOS 

C. CIFS 

D. HTTP 

Answer:


Q75. Which option is one component of a Public Key Infrastructure? 

A. the Registration Authority 

B. Active Directory 

C. RADIUS 

D. TACACS+ 

Answer:


Q76. As network consultant, you are asked.to suggest a VPN technology that can support a multivendor environment and secure traffic between sites. Which technology should you recommend? 

A. DMVPN 

B. FlexVPN 

C. GET VPN 

D. SSL VPN 

Answer:


Q77. What action does the hub take when it receives a NHRP resolution request from a spoke for a network that exists behind another spoke? 

A. The hub sends back a resolution reply to the requesting spoke. 

B. The hub updates its own NHRP mapping. 

C. The hub forwards the request to the destination spoke. 

D. The hub waits for the second spoke to send a request so that it can respond to both spokes. 

Answer:


Q78. Refer to the exhibit. 

After the configuration is performed, which combination of devices can connect? 

A. a device with an identity type of IPv4 address of 209.165.200.225 or 209.165.202.155 or a certificate with subject name of "cisco.com" 

B. a device with an identity type of IPv4 address of both 209.165.200.225 and 209.165.202.155 or a certificate with subject name containing "cisco.com" 

C. a device with an identity type of IPv4 address of both 209.165.200.225 and 209.165.202.155 and a certificate with subject name containing "cisco.com" 

D. a device with an identity type of IPv4 address of 209.165.200.225 or 209.165.202.155 or a certificate with subject name containing "cisco.com" 

Answer:


Q79. Which are two main use cases for Clientless SSL VPN? (Choose two.) 

A. In kiosks that are part of a shared environment 

B. When the users do not have admin rights to install a new VPN client 

C. When full tunneling is needed to support applications that use TCP, UDP, and ICMP 

D. To create VPN site-to-site tunnels in combination with remote access 

Answer: A,B 


Q80. In DMVPN phase 2, which two EIGRP features need to be disabled on the hub to allow spoke-to-spoke communication? (Choose two.) 

A. autosummary 

B. split horizon 

C. metric calculation using bandwidth 

D. EIGRP address family 

E. next-hop-self 

F. default administrative distance 

Answer: B,E