Designing Cisco Network Service Architectures
Question No: 201
Which of these is least important when determining how many users a NAS can support?
number of plug-ins per scan
total number of network devices
number of checks in each posture assessment
Answer: A Explanation:
NAS = Cisco NAC Appliance Server
(not Network-Attached Storage as I first thought) https://www.safaribooksonline.com/library/view/foundation-learning- guide/9780132652933/ch08.html
quot;Cisco NAS Scaling
There are three levels of Cisco NAM for supporting Cisco NAC Appliance solutions:
Cisco NAC Appliance Lite Manager manages up to 3 Cisco NAS devices, supporting 100, 250, or 500 users
Cisco NAC Appliance Standard Manager manages up to 20 Cisco NAS devices, supporting from 1500 to
5000 users per (NAS) depending on which model is deployed.
Cisco NAC Appliance Super Manager manages up to 40 Cisco NAS devices, supporting from 1500 to 5000
users per (NAS) depending on which model is deployed.
The number of users supported on a server is a measure of concurrent users that have been scanned for
posture compliance, not network devices such as printers or IP phones.
The number of users supported per server is influenced by many factors that consume CPU and server
resources, such as the following:
The number of new user authentications per second
The number of posture assessments per second
How many checks are in each posture assessment
The number of agentless network scans per second
The number of plug-ins per scan
Rescan timer intervals
Per-role and total online timer intervals
Filters and access controls Note
Interface bandwidth is the least important calculation for determining how many users a Cisco NAS
Question No: 202
Which option is the Cisco preferred, most versatile, and highest-performance way to deploy IPv6 in existing IPv4 environments?
Question No: 203
CoS is applied for Layer 2 markings in an Ethernet environment. Which protocol must be configured on the Layer 2 switch port for CoS to work?
Question No: 204
An engineer is designing a multitenant network that requires separate management access and must share a single physical firewall. Which two features support this design? (Choose 2)
dynamic routing protocols
quality of service
Question No: 205
A customer requires resiliency and availability for applications hosted in the data center. What two technologies meet this requirement? (Choose two.)
Question No: 206
In which OSI layer does IS-IS operate?
Answer: B Explanation:
Yeah, it can advertise layer 3 IPv4 amp; v6 routes but it operates at L2. (that#39;s why Fabricpath is based on IS-IS)
Question No: 207
For which engine an IPS can use its reputation awareness? (Choose two)
Global correlation inspection
Answer: A,C Explanation:
Correlation rules -gt; Connection Tracker -gt; URL Reputation
Question No: 208
What two sensor types exist in an IDS/IPS solution? (Choose two.)
Question No: 209
Which two statements correctly describe an IPS device? (Choose two.)
It resembles a Layer 2 bridge.
Traffic flow through the IPS resembles traffic flow through a Layer 3 router.
Inline interfaces which have no IP addresses cannot be detected.
Malicious packets that have been detected are allowed to pass through, but all subsequent traffic is blocked
Traffic arrives on the detection interface, is inspected, and exits via the same interface.
Question No: 210
A company requires real-time SAN replication between two remote locations. What is the standard path selection protocol for fabric routing?
|Lowest Price Guarantee||Yes||No||No|
|Free VCE Simulator||Yes||No||No|