[Free] 2018(Aug) Ensurepass Cisco 350-018 Dumps with VCE and PDF 11-20

Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 350-018
100% Free Download! 100% Pass Guaranteed!

CCIE Security Exam (v4.1)

Question No: 11 – (Topic 1)

What feature enables extended secure access form non-secure physical locations?

  1. NEAT

  2. 802.1X port-based authentication

  3. port security

  4. storm-control

  5. CBAC

Answer: A

Question No: 12 – (Topic 1)

Refer to exhibit.

Ensurepass 2018 PDF and VCE

What is the effect to the given configuration?

  1. It sets the duplicated address detection Interval to 60 seconds and sets the IPv6

    Neighbor solicitation Interval to 3600 milliseconds.

  2. It sets the number of neighbor solicitation messages to 60 while duplicate address detection is performed and sets the neighbor solicitation retransmission interval to 3600 milliseconds.

  3. It sets the number of neighbor solicitation messages to 60 and sets the duplicate address detection interval to 3600 seconds.

  4. It sets duplicate address detection interval to 60 seconds and sets the IPv6 neighbor reachable time to 3600 milliseconds.

  5. It sets the number of duplicate address detection attempts to 60 and sets the duplicate address detection interval to 3600 milliseconds.

Answer: B

Question No: 13 – (Topic 1)

which two types of DNS attacks are associated with DoS and DDo S attacks?(Choose Two)

  1. DNS reflection attacks

  2. Resource utilization attacks

  3. DNS open resolver attack

  4. DNS cache poisoning attacks

  5. DNS amplification attacks

Answer: B,D

Question No: 14 – (Topic 1)

Your IPv6 a CA and trust anchors to implement secure network discovery. What extension must your CA certificates support?

  1. id-pe-ipaddrBlocks

  2. keyUsage

  3. extKeyUsage

  4. id-pe-autonomousSyslds

  5. E. ia-ad-classusers

  6. nameConstraints

Answer: E

Question No: 15 – (Topic 1)

Which two options are benefits of Shortcut Switching Enhancements for NHRP on DMVPN networks ?(Choose two)

  1. It supports layered network topologies with central hubs and direct spoke-to-spoke tunnels between spokes on different hubs

  2. It allows data packets to be fast switched while spoke-to-spoke tunnels are being established

  3. It enables spokes to use a summary route to build spoke-to-spoke tunnels.

  4. It enables the NHRP FIB lookup process to perform route summarization on the hub

Answer: A,C

Question No: 16 – (Topic 1)

What protocol does IPv6 Router Advertisement use for its messages?

  1. ARP

  2. TCP

  3. ICMPv6

  4. UDP

Answer: C

Question No: 17 – (Topic 1)

What functionality does SKP provide to enhance security?

  1. It supports Cisco’s TrustSec Implementation on virtual machines

  2. It supports secure communications between Cisco IronPort and cloud-based email severs

  3. It supports Cisco’s TrustSec solution by transporting information over networks that are unable to support SOT propagation

  4. It supports secure communications between Cisco IronPort and Microsoft Exchange

Answer: A

Question No: 18 – (Topic 1)

Under what condition will a switch with DHCP snooping configured permit a DHCP packet?

  1. When the source MAC address and DHCP client hardware address are different from the address in a packet that was received on an untrusted interface

  2. When it receives a DHCPRELEASE message in which the interface information in the DHCP binding database is different from the interface on which the message was received

  3. When it receives a DHCPPLEASEQUERY from outside the network

  4. When a DHCP relay agent forwards a packet with option-82tiformation from a trusted port

Answer: D

Question No: 19 – (Topic 1)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

Routers R1,R2, and R3 have IPv6 reachability, and R1 and R3 are able to ping each other with IPv6 global unicast address. However, R1 and R3 are unable to ping eachother with their link-local address. What is a possible reason for the problem?

  1. Multicast must be enabled to allow link-local address to traverse multiple hops.

  2. Link-local addresses can be used only with a physical interface’s local network

  3. ICMPv6 packets are dropped when the destination uses a link-local address

  4. Link-local addresses are forwarded by IPv6 routers using loopback interfaces

  5. Link-local address can communicate with neighboring nodes only if routing is enabled between them

Answer: B

Question No: 20 – (Topic 1)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

What IPSec function does the given debug output demonstrate?

  1. DH exchange initiation

  2. Crypto ACL confirmation

  3. PFS parameter negotiation

  4. Setting SPIs to pass traffic

Answer: A

100% Ensurepass Free Download!
350-018 PDF
100% Ensurepass Free Guaranteed!
350-018 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No
         

You must be logged in to post a comment.

Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com