Cisco 200-125 Exam Questions

Question # 1:
Which three options are types of Layer 2 network attacks? (Choose three.)
A. botnet attacks
B. spoofing attacks
C. brute force attacks
D. DOS attacks
E. VLAN hooping
F. ARP attacks
Answer: B E F

Question # 2:
Which command should you enter to configure a single port to prevent alternate ports from becoming designated ports?
A, Spanning-tree guard loop
B. Spanning-tree loopguard default
C. Spanning-tree guard root
Answer: B

Question # 3:
Which command do you enter to enable an interface to support PPPoE on a client?
A. Dev1(config)# bba-group pppoe bba1
B. Dev1(config-if)# pppoe-client dial-pool-number1
C. Dev1(config-if)# pppoe enable group bba1
D. Dev1(config-if)# pppoe enable
Answer: D

Question # 4:
You have configured the host computers on a campus LAN to receive their DHCP addresses from the local router to be able to browse their corporate site. Which statement about the network environment is true?
A. It supports a DNS server for use by DHCP clients.
B. Two host computers may be assigned the same IP address.
C. The DNS server mustbe configured manually on each host.
D. The domain name must be configured locally on each host computer.
Answer: A

Question # 5:
Which three encapsulation layers in the OSI model are combined into the TCP/IP application layer? (Choose three)
A. Session
B. transport
C. presentation
D. application
E. data-link
F. network
Answer: A C D

PCNSE Exam Questions

Question #1:

If a template stack is assigned to a device and the stack includes three templates with overlapping settings, which settings are published to the device when the template stack is

A. The settings assigned to the template that is on top of thestack.
B. The administrator will be promoted to choose the settings for that chosen firewall.
C. All the settings configured in all templates.
D. Depending on the firewall location, Panorama decides with settings to send.
Answer: B
Reference: inguide/manage-firewalls/manage- templates-and-template-stacks/configure-a-templatestack

Question # 2:

An administrator has configured the Palo Alto Networks NGFW’s management interface to connect to the internet through a dedicated path that does not traverse back through the
NGFW itself. Which configuration setting or step will allow the firewall to get automatic application signature updates?

A. A scheduler will need to be configured for application signatures.
B. A Security policy rule will need to be configured to allow the update requests from the
firewall to the update servers.
C. A Threat Prevention license will need to be installed.
D. A service route will need to be configured.
Answer: D
The firewall uses the service route to connect to the Update Server and checks for new content release versions and, if there are updates available, displays them at the top of the

Question # 3:
An administrator is using Panorama and multiple Palo Alto Networks NGFWs. After upgrading all devices to the latest PAN-OS® software, the administrator enables log forwarding from the firewalls to PanoramA. Pre-existing logs from the firewalls are not appearing in PanoramA. Which action would enable the firewalls to send their pre-existing logs to Panorama?

A. Use the import option to pull logs into PanoramA.
B. A CLI command will forward the pre-existing logs to PanoramA.
C. Use the ACC to consolidate pre-existing logs.
D. The log database will need to exported form the firewalls and manually imported into PanoramA.

Answer: B

Question # 4:

A web server is hosted in the DMZ, and the server is configured to listen for incoming connections only on TCP port 8080. A Security policy rule allowing access from the Trustzone to the DMZ zone need to be configured to enable we browsing access to the server.

Which application and service need to be configured to allow only cleartext web-browsing traffic to thins server on tcp/8080.
A. application: web-browsing; service:application-default
B. application: web-browsing; service: service-https
C. application: ssl; service: any
D. application: web-browsing; service: (custom with destination TCP port 8080)
Answer: A

Question # 5:

Which two methods can be used to verify firewall connectivity to AutoFocus? (Choose two.)

A. Verify AutoFocus status using CLI.
B. Check the WebUI Dashboard AutoFocus widget.
C. Check for WildFire forwarding logs.
D. Check the license
E. Verify AutoFocus is enabled below Device Management tab.
Answer: B,D


PT0-001 Dumps

Questions # 1:

A penetration tester is perform initial intelligence gathering on some remote hosts prior to
conducting a vulnerability < The tester runs the following command
nmap -D,, -sV -o —max rate 2 192. 168.130
Which ol the following BEST describes why multiple IP addresses are specified?

A. The network is submitted as a /25 or greater and the tester needed to access hosts on
two different subnets

B. The tester is trying to perform a more stealthy scan by including several bogus

C. The scanning machine has several interfaces to balance the scan request across at the
specified rate

D. A discovery scan is run on the first set of addresses, whereas a deeper, more
aggressive scan is run against the latter host.

Answer: C

Questions # 2:

A penetration tester was able to retrieve the initial VPN user domain credentials by
phishing a member of the IT department. Afterward, the penetration tester obtained hashes
over the VPN and easily cracked them using a dictionary attack Which of the following
remediation steps should be recommended? (Select THREE)

A. Mandate all employees take security awareness training
B. Implement two-factor authentication for remote access
C. Install an intrusion prevention system
D. Increase password complexity requirements
E. Install a security information event monitoring solution.
F. Prevent members of the IT department from interactively logging in as administrators
G. Upgrade the cipher suite used for the VPN solution

Answer: B,D,G

Questions # 3:

A penetration tester has a full shell to a domain controller and wants to discover any user
account that has not authenticated to the domain in 21 days. Which of the following
commands would BEST accomplish this?

A. dsrm -users “; OU=hq CN=usera”
B. dsuser -name -account -limit 3
C. dsquery uaer -inactive 3
D. dsquery -o -rein -limit 21

Answer: B

Questions # 4:

Which of the following BEST explains why it is important to maintain confidentiality of any
identified findings when performing a penetration test?

A. Penetration test findings often contain company intellectual property
B. Penetration test findings could lead to consumer dissatisfaction if made pubic
C. Penetration test findings are legal documents containing privileged information
D. Penetration test findings can assist an attacker in compromising a system

Answer: C

Questions # 5:

During an internal penetration test, several multicast and broadcast name resolution
requests are observed traversing the network. Which of the following tools could be used to
impersonate network resources and collect authentication requests?

A. Ettercap
B. Tcpdump
C. Responder
D. Medusa

Answer: D

Click PT0-001 dumps for more exam questions.

1z0-932 Exam Questions Dumps

Question # 1:

Why are two subnets required to create a public load balancer when additional subnets are often used for back-end servers? (Choose two)

A. Routing is simpler when the load balancer is not in the same subnet as the back-end server.
B. Performance is higher when more subnets are used.
C. Additional subnets for back-end servers allow for separate route tables for these
D. Additional subnets for back-end servers allow for separate security lists for these

Answer: B,D


Question #2:

Which statement is true about restoring a block volume from block volume  backups?

A. It can be restored as new volumes to any Availability Domain within the same region.
B. It must be restored as new volumes to the same Availability Domain on which the
original block volume backup resides.
C. It can be restored as new volumes to any Availability Domain across different regions.
D. It can be restored as new volumes with different sizes from the backups.

Answer: A


Which statement is true about restoring a block volume from block volume backups?

A. It can be restored as new volumes to any Availability Domain within the same region.
B. It must be restored as new volumes to the same Availability Domain on which the
original block volume backup resides.
C. It can be restored as new volumes to any Availability Domain across different regions.
D. It can be restored as new volumes with different sizes from the backups.

Answer: A


Question # 3:

Which three actions need to be performed before attempting a data transfer service job?

A. Obtain an available host machine which can run the dts utility on-premise with SATA or
USB drives attached for the transfer job.
B. Get access to a high-speed internet connection.
C. Data Transfer Service and Storage Service Limits should be checked and raised if
D. Set up SSH access to a host on OCI to coordinate the transfer job.
E. Create an object bucket to receive the job.

Answer: A,C,E

Question # 4:

Which two are true for Oracle Cloud Infrastructure DNS? (Choose two.)

A. It can function only as a primary DNS.
B. It supports other cloud providers such as AWS and Azure.
C. It supports segregation of traffic by using the private pool.
D. It does not provide DDoS protection.

Answer: B,C


Question # 5:

Which three are default Virtual Cloud Network (VCN) components? (Choose three.)

A. Security List
B. Dynamic Routing Gateway
C. DHCP options
D. Internet Gateway
E. Route Table

Answer: A,C,E


Latest 1z0-932 exam questions dumps are available on

Part 2: Generalizations and Statistics

Ok, quick lesson.  While we are on the subject of bell curves and normal distributions, now is a good time to address generalizations and statistics.  Someone who opposes your viewpoint will always come back with two (2) rebuttals:

1) GENERALIZATIONS:  “Oh, you’re just generalizing.  You can’t lump everyone together.”


2) STATISTICS:  “Oh, anyone can make statistics show whatever they want to.”

Well, the truth is generalizations are why we have the mathematical field of statistics.  They are accurate, but only when you realize there are distributions along a curve of some sort, not a flat line where everyone is the same.  (That kind of thinking just shows ignorance of higher-order mathematics.)  Math doesn’t lie.  Statistics don’t lie either.  Where the deception comes in is in the presentation of statistics.  If the numbers are based on actual measurements and calculations, then they are accurate.  It is how those statistics are presented that creates the desired effect on the human brain (or should we say sheeple brain).  That is where the real cunning or unscrupulous application of statistics is made – all because a, well “dumb” person will not be able to put the information in the context of the big picture.  It was purposely framed for them and will create a desired reaction in them.  You could have 8 swine flu outbreaks in one week and say you had an 800% increase in one week, or you could show it in context of the bigger picture that 1000 people also died of normal flu that same week also.  It’s not the accuracy of the statistics, it’s the delivery method and the psychological manipulation that it can create.  After all, even quantum physicists use statistics to predict the location of electrons with great accuracy.

Bell curves are not created by man, they are a phenomenon of nature.  We may rely on bell curves and statistics because it is sound science.  Don’t let people merely denounce them and ignore their significance.  We won’t get bogged down in tedious numbers and studies, but we will cast some large generalizations with a large paintbrush because the big picture is what is important here.

End of today’s lesson.

Part 1: Introduction

If you are reading this, congratulations, you are one out of many in society who has made it to the cheese. This series is going to be focused directly to you. We are going to try to make an attempt to give you the best concise condensation of the current situation and what you need to do. There are several things that will have to be explained first along the way because there is so much to “un-learn” in the process. There are no shortcuts or easy ways to get to a point of comprehending the overall picture. Our tone will be terse, our views politically incorrect, and the information will be unbiased.

The complexity of the current situation is mind-boggling; for some this is too much to cognitively deal with. We are going to make assumptions that you have a rudimentary education and can make comparisons, contrasts, similarities, draw logical conclusions, and calculate outcomes based on past performance data, etc.

We are bringing forth this information under the assumption that you are OR have the ability to be logical, ethical, and show no prejudice or hatred towards other human beings because of their race, religion, or national origin. This is a learning process for humanity.

Control of people is not perfect. The goal of control is not perfection or total control, but gaining mind-share of a majority. This can best be described as a classic “bell curve” distribution, and we will resort to that metaphorical device to explain concepts to you in a way that are more readily understood.