Skip to Content

Cisco 300-715 SISE: Traffic is denied when a host tries to connect

Question

An engineer is testing low-impact mode for a phased deployment of Cisco ISE. Which type of traffic is denied when a host tries to connect to the network prior to authentication?

A. DNS
B. EAP
C. DHCP
D. HTTP

Answer

D. HTTP

Explanation

The question you asked is about how to test low-impact mode for a phased deployment of Cisco ISE. Low-impact mode is a deployment mode that allows you to gradually transition from an open network to a closed network by enforcing authentication and authorization policies on network devices. In low-impact mode, users are allowed to access the network before authentication but only certain types of traffic are permitted.

The type of traffic that is denied when a host tries to connect to the network prior to authentication in low-impact mode is D. HTTP. HTTP stands for Hypertext Transfer Protocol and it is a protocol that is used for accessing web pages or web applications on the internet. HTTP traffic is denied in low-impact mode because it may contain sensitive or malicious data that could compromise the security or performance of the network. HTTP traffic is also denied in low-impact mode because it can be used to redirect users to a web portal for authentication or notification purposes.

The other options are not correct because:

A. DNS: This is a type of traffic that is allowed in low-impact mode before authentication. DNS stands for Domain Name System and it is a service that translates domain names into IP addresses. DNS traffic is allowed in low-impact mode because it is required for resolving host names and accessing network resources.

B. EAP: This is a type of traffic that is allowed in low-impact mode before authentication. EAP stands for Extensible Authentication Protocol and it is a framework that provides various methods for authenticating users or devices on a network. EAP traffic is allowed in low-impact mode because it is used for performing authentication and authorization processes.

C. DHCP: This is a type of traffic that is allowed in low-impact mode before authentication. DHCP stands for Dynamic Host Configuration Protocol and it is a protocol that assigns IP addresses and other network parameters to hosts on a network. DHCP traffic is allowed in low-impact mode because it is required for obtaining network configuration and connectivity.

Reference

Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) exam and earn Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) certification.

Alex Lim is a certified IT Technical Support Architect with over 15 years of experience in designing, implementing, and troubleshooting complex IT systems and networks. He has worked for leading IT companies, such as Microsoft, IBM, and Cisco, providing technical support and solutions to clients across various industries and sectors. Alex has a bachelor’s degree in computer science from the National University of Singapore and a master’s degree in information security from the Massachusetts Institute of Technology. He is also the author of several best-selling books on IT technical support, such as The IT Technical Support Handbook and Troubleshooting IT Systems and Networks. Alex lives in Bandar, Johore, Malaysia with his wife and two chilrdren. You can reach him at [email protected] or follow him on Website | Twitter | Facebook

    Ads Blocker Image Powered by Code Help Pro

    Your Support Matters...

    We run an independent site that is committed to delivering valuable content, but it comes with its challenges. Many of our readers use ad blockers, causing our advertising revenue to decline. Unlike some websites, we have not implemented paywalls to restrict access. Your support can make a significant difference. If you find this website useful and choose to support us, it would greatly secure our future. We appreciate your help. If you are currently using an ad blocker, please consider disabling it for our site. Thank you for your understanding and support.