New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

Vce 300-730 Questions Latest

Page: 5 / 12
Question 20

Users are getting untrusted server warnings when they connect to the URL from their browsers. This URL resolves to 192.168.10.10, which is the IP address for a Cisco ASA configured for a clientless VPN. The VPN was recently set up and issued a certificate from an internal CA server. Users can connect to the VPN by ignoring the message, however, when users access other webservers that use certificates issued by the same internal CA server, they do not experience this issue. Which action resolves this issue?

Options:

A.

Import the CA that signed the certificate into the machine trusted root CA store.

B.

Reissue the certificate with asa.lab in the subject alternative name field.

C.

Import the CA that signed the certificate into the user trusted root CA store.

D.

Reissue the certificate with 192.168.10.10 in the subject common name field.

Question 21

Refer to the exhibit.

A Cisco ASA is configured as a client to a router running as a FlexVPN server. The router is configured with a virtual template to terminate FlexVPN clients. Traffic between networks 192.168.0.0/24 and 172.16.20.0/24 does not work as expected. Based on the show crypto ikev2 sa output collected from the Cisco ASA in the exhibit, what is the solution to this issue?

Options:

A.

Modify the crypto ACL on the router to permit network 192.168.0.0/24 to network 172.16.20.0/24.

B.

Modify the crypto ACL on the ASA to permit network 192.168.0.0/24 to network 172.16.20.0/24.

C.

Modify the crypto ACL on the ASA to permit network 172.16.20.0/24 to network 192.168.0.0/24.

D.

Modify the crypto ACL on the router to permit network 172.16.20.0/24 to network 192.168.0.0/24.

Question 22

Refer to the exhibit.

Upon setting up a tunnel between two sites, users are complaining that connections to applications over the VPN are not working consistently. The output of show crypto ipsec sa was collected on one of the VPN devices. Based on this output, what should be done to fix this issue?

Options:

A.

Lower the tunnel MTU.

B.

Enable perfect forward secrecy.

C.

Specify the application networks in the remote identity.

D.

Make an adjustment to IPSec replay window.

Question 23

Refer to the exhibit.

The customer must launch Cisco AnyConnect in the RDP machine. Which IOS configuration accomplishes this task?

Options:

A.

Option A

B.

Option B

C.

Option C

D.

Option D

Page: 5 / 12
Exam Code: 300-730
Exam Name: Implementing Secure Solutions with Virtual Private Networks (SVPN)
Last Update: Dec 23, 2024
Questions: 175
300-730 pdf

300-730 PDF

$28.5  $94.99
300-730 Engine

300-730 Testing Engine

$33  $109.99
300-730 PDF + Engine

300-730 PDF + Testing Engine

$43.5  $144.99