200-201 Security Policies and Procedures • Complete Question Bank
Complete 200-201 Security Policies and Procedures question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. ``` switch# show running-config | include aaa aaa new-model aaa authentication login default local aaa authorization exec default local aaa accounting exec default start-stop group tacacs+ ```
Refer to the exhibit. ``` ! Threat Alert from SIEM Event: Multiple failed logins from IP 10.0.0.5 Time: 2025-03-15 14:32:00 User: admin Source IP: 10.0.0.5 Destination: 192.168.1.100 (SSH) Count: 50 in 5 minutes ! Firewall Log 2025-03-15 14:35:00, ALLOW, TCP, 10.0.0.5:54321, 192.168.1.100:22, 100 bytes ```
Refer to the exhibit. ! Output from show running-config | include aaa ! on a Cisco router aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local aaa accounting exec default start-stop group tacacs+ ! ! Output from show running-config | include tacacs ! on the same router tacacs server TACACS1 address ipv4 192.168.1.100 key cisco123 !
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
22
443
53
25
3389
Drag a concept onto its matching description — or click a concept then click the description.
Social engineering via email to steal credentials
Overwhelming a target with traffic from multiple sources
Intercepting communications between two parties
Injecting malicious SQL queries into input fields
Associating attacker's MAC with victim's IP
Refer to the exhibit. ``` object network INSIDE_SUBNET subnet 192.168.1.0 255.255.255.0 object network WEB_SERVER host 10.0.0.10 access-list OUTSIDE_IN extended permit tcp any object WEB_SERVER eq 80 access-list OUTSIDE_IN extended deny ip any any ```
Refer to the exhibit. ``` %ASA-6-302013: Built outbound TCP connection 1234 for outside:203.0.113.1/80 (203.0.113.1/80) to inside:192.168.1.100/54832 ```
Refer to the exhibit. ``` interface GigabitEthernet0/0 ip address 192.168.1.1 255.255.255.0 ip access-group INBOUND in ! access-list INBOUND deny tcp any host 192.168.1.100 eq 22 access-list INBOUND permit ip any any ```
Refer to the exhibit. ip access-list extended BLOCK_CRITICAL deny tcp any any eq 3389 deny tcp any any eq 23 permit ip any any
Refer to the exhibit. %SEC-6-IPACCESSLOGP: list OUTSIDE denied tcp 10.10.10.5(80) -> 192.168.1.10(49152) 1 packet
Refer to the exhibit. policy-map QOS_POLICY class VOIP priority percent 30 class CRITICAL_DATA bandwidth remaining percent 50 class class-default fair-queue
aaa new-model aaa authentication login default local-case aaa authentication enable default enable aaa authorization exec default local username admin secret cisco123
access-list 101 permit tcp any host 10.1.1.100 eq 80 access-list 101 permit tcp any host 10.1.1.100 eq 443 access-list 101 deny ip any any interface GigabitEthernet0/0 ip access-group 101 in
%SEC-6-IPACCESSLOGS: list 101 denied tcp 192.0.2.5(12345) -> 10.1.1.100(23), 1 packet %SEC-6-IPACCESSLOGS: list 101 permitted tcp 192.0.2.5(12345) -> 10.1.1.100(80), 1 packet
Refer to the exhibit. ``` interface GigabitEthernet0/0 ip access-group BLOCK_P2P in ! ip access-list extended BLOCK_P2P deny tcp any any eq 6881 6889 deny udp any any range 6881 6889 permit ip any any ```
Refer to the exhibit. ``` %ASA-4-106023: Deny tcp src outside:10.0.0.10/54321 dst inside:192.168.1.100/80 by access-group "OUTSIDE_IN" %ASA-4-106023: Deny tcp src outside:10.0.0.10/54322 dst inside:192.168.1.100/80 by access-group "OUTSIDE_IN" %ASA-4-106023: Deny tcp src outside:10.0.0.10/54323 dst inside:192.168.1.100/80 by access-group "OUTSIDE_IN" ```
Refer to the exhibit.
```
Router# show ip access-list EXTENDED_FILTER
Extended IP access list EXTENDED_FILTER
10 permit tcp 10.1.1.0 0.0.0.255 any eq 22
20 permit tcp 10.1.2.0 0.0.0.255 any eq 22
30 deny tcp any any eq 22
40 permit ip any any
```Refer to the exhibit. access-list OUTSIDE extended permit tcp any host 192.168.1.100 eq www access-list OUTSIDE extended permit tcp any host 192.168.1.100 eq https access-list OUTSIDE extended deny ip any any
Refer to the exhibit. %SEC-6-IPACCESSLOGP: list INBOUND denied tcp 10.0.0.1(12345) -> 192.168.1.1(22), 1 packet %SEC-6-IPACCESSLOGP: list INBOUND denied tcp 10.0.0.2(54321) -> 192.168.1.1(22), 1 packet %SEC-6-IPACCESSLOGP: list INBOUND denied tcp 10.0.0.3(11111) -> 192.168.1.1(22), 1 packet %SEC-6-IPACCESSLOGP: list INBOUND denied tcp 10.0.0.4(22222) -> 192.168.1.1(22), 1 packet
Refer to the exhibit. crypto ipsec transform-set ESP-AES256-SHA esp-aes 256 esp-sha-hmac ! crypto map CMAP 10 ipsec-isakmp set peer 203.0.113.5 set transform-set ESP-AES256-SHA match address VPN-TRAFFIC
Building configuration... Current configuration : 2345 bytes ! interface GigabitEthernet0/1 description Internal Network ip address 192.168.1.1 255.255.255.0 no ip redirects no ip proxy-arp ip access-group INBOUND in ! ip access-list extended INBOUND permit tcp 10.0.0.0 0.255.255.255 any eq 80 permit tcp 10.0.0.0 0.255.255.255 any eq 443 deny ip any any
*Mar 1 12:34:56: %SEC_LOGIN-4-LOGIN_FAILED: Login failed for user 'admin' from source 192.168.1.50 *Mar 1 12:34:57: %SEC_LOGIN-4-LOGIN_FAILED: Login failed for user 'admin' from source 192.168.1.50 *Mar 1 12:34:58: %SEC_LOGIN-4-LOGIN_FAILED: Login failed for user 'admin' from source 192.168.1.50