200-201 Security Concepts • Complete Question Bank
Complete 200-201 Security Concepts question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. ``` Mar 1 12:34:56.789: %ASA-5-111008: User 'admin' executed the 'configure terminal' command. Mar 1 12:35:01.123: %ASA-4-106023: Deny tcp src outside:192.0.2.10/12345 dst inside:10.0.0.1/80 by access-group "OUTSIDE_IN" [0x0, 0x0] Mar 1 12:35:05.456: %ASA-4-106023: Deny tcp src outside:192.0.2.10/12346 dst inside:10.0.0.2/443 by access-group "OUTSIDE_IN" [0x0, 0x0] ```
Refer to the exhibit. ``` ! Access-list for DMZ to Inside access-list DMZ_TO_INSIDE extended permit tcp 10.0.1.0 255.255.255.0 10.0.2.0 255.255.255.0 eq 3306 access-list DMZ_TO_INSIDE extended deny ip any any ```
Refer to the exhibit. ``` Event Log: Time: 10:00:01, Source: 192.168.1.100, Event ID: 4625, Account: Administrator Time: 10:00:03, Source: 192.168.1.100, Event ID: 4625, Account: Admin Time: 10:00:05, Source: 192.168.1.100, Event ID: 4625, Account: root ```
Refer to the exhibit. ! Output from show access-list 101 ! Extended IP access list 101 ! 10 permit tcp 192.168.1.0 0.0.0.255 host 10.10.10.10 eq 443 ! 20 deny ip any any log !
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Network scanning and discovery
Packet capture and analysis
Intrusion detection and prevention
Exploitation framework for penetration testing
Security information and event management (SIEM)
Drag a concept onto its matching description — or click a concept then click the description.
Cybersecurity risk management framework
Information security management system standard
Payment card industry data security standard
Knowledge base of adversary tactics and techniques
Prioritized set of security best practices
access-list 100 permit tcp any any eq 22 access-list 100 deny ip any any
Mar 1 2025 12:35:00: %SEC-5-IPACCESSLOG: list 101 permitted icmp 10.0.0.1 -> 192.168.1.1
crypto isakmp policy 10 encr aes 256 authentication pre-share group 5
Port Security : Enabled Port Status : Secure-down Violation Mode : Shutdown Aging Time : 0 mins Aging Type : Absolute SecureStatic Address Aging : Disabled Maximum MAC Addresses : 1 Total MAC Addresses : 1 Configured MAC Addresses : 0 Sticky MAC Addresses : 0 Last Source Address : 0011.2233.4455 Last Violation Time : 01:23:45 Security Violation Count : 1
access-list OUT extended permit tcp any host 10.1.1.1 eq 80 access-list OUT extended deny ip any any access-group OUT in interface outside
%ASA-4-106023: Deny tcp src outside:10.0.0.2/1234 dst inside:192.168.1.1/80 by access-group "OUT".
Refer to the exhibit. %ASA-4-106023: Deny tcp src outside:192.168.1.10/12345 dst inside:10.0.0.10/80 by access-group "outside_access_in"
Refer to the exhibit. ! aaa new-model aaa authentication login default local aaa authorization exec default local ! username admin password cisco !
Refer to the exhibit. SrcAddr DstAddr SrcPort DstPort Proto Packets Bytes 10.0.0.1 10.0.0.2 12345 80 TCP 100 5000 10.0.0.1 10.0.0.3 54321 22 TCP 50 3000
Refer to the exhibit. %ASA-4-106023: Deny tcp src outside:203.0.113.45/56789 dst inside:10.1.1.100/80 by access-group "outside_in"