[Free] 2018(Jan) EnsurePass Dumpsleader Cisco 350-018 Dumps with VCE and PDF 91-100

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan Cisco Official New Released 350-018
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/350-018.html

CCIE Security Exam (v4.1)

Question No: 91 – (Topic 1)

Refer to exhibit.

Ensurepass 2018 PDF and VCE

What is the effect of the given ACL policy?

  1. The policy will disable IPEV6 source routing

  2. The policy will deny all IPv6 Ebgp sessions

  3. The policy will deny all IPv6 routed packets

  4. The policy will deny all IPv6 routing packets

Answer: A

Question No: 92 – (Topic 1)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

Host 1 is assigned the static IP address 10.1.1.200 as shown.but host 2 and host 3 have dynamic IP address .DHCP snooping and dynamic ARP inspection are configure on the network.What command or command sequence must you configure on the network.What command or command sequence must you configure on the switch to allow Host 1 to communicate with the other hosts?

  1. Switch(config)#ip source binding 001c.0f12.abcd vlan 100 10.1.1.200 interface f0/10

  2. Switch(config)#interface f0/10 Switch(config-if)#ip dhcp snooping trust

  3. Switch(config)#no arp inspection enable

  4. Switch(config)#ip dhcp relay information option

  5. Switch(config)#arp 10.1.1.200 001c.0f12.abcd arpa

  6. Switch(config)# interface f0/10 Switch(config-if)#switchport access vlan 100 Switch(config-if)#switchport mode host

Answer: A

Question No: 93 – (Topic 1)

Why is the IPv6 type 0 routing header vulnerable to attack?

  1. It allows the sender to generate multiple NDP requests for each packet

  2. It allows the receiver of a packet to control its flow

  3. It allows the sender to generate multiple ARP requests for each packet

  4. it allows the sender of a packet to control its flow.

  5. It allows the receiver of a packet to modify the source IP address

Answer: D

Question No: 94 – (Topic 1)

What is the purpose of the BGP TTL security check?

  1. To use for IBGP session

  2. To protect against CPU utilization-based attacks

  3. To protect against routing table corruption

  4. To authenticate a peer

  5. To check for a TTL value in packet header of less than or equal to for successful peering

Answer: E

Question No: 95 – (Topic 1)

Which three statements about Unicast RPF in strict mode and loose mode are true? (Choose three)

  1. Inadvertent packet loss can occur when loose mode is used with asymmetrical routing

  2. Interface in strict mode drop traffic witch retun routes that point to the Null 0 interface

  3. Strict mode requires a default route to be associated with the uplink network interface

  4. Loose mode requires the source address to be present in the routing table

  5. Both loose and strict modes are configured globally on the router

  6. Strict mode is recommended on interfaces that will receive packets only from the same subnet to which the interface is assigned

Answer: B,D,F

Question No: 96 – (Topic 1)

What protocol does SMTPS use to secure SMTP connections?

  1. TLS

  2. AES

  3. Telnet

  4. SSH

Answer: A

Question No: 97 – (Topic 1)

What ASA feature can you use to restrict a user to a specific VPN group?

  1. a vpn filter

  2. MPF

  3. a Webtype ACL

  4. group-lock

Answer: D

Question No: 98 – (Topic 1)

Which of the following statement is true about the ARP Spoofing attack?

  1. Attacker sends the ARP request with it’s own MAC address and IP address of legitimate resource in the network.

  2. ARP spoofing does no facilitate man-in-the middle attack for the attacker.

  3. Attacker Sends the ARP request with the MAC address and IP address OF it’s own

  4. Attacker sends the ARP request with the MAC address and IP address OF a legitimate resource in the network

Answer: A

Question No: 99 – (Topic 1)

Which feature can prevent IP spoofing attacks?

  1. CBAC

  2. Unicast RPF

  3. CoPP

  4. CAR

  5. ARP spoofing

  6. TCP intercept

Answer: B

Question No: 100 – (Topic 1)

Which two statement about ICMP redirect messages are true? (Choose two)

  1. Redirects are only to the CPU if the packets are also source-routed

  2. By default, configuring HSRP on the interface disables ICMP redirect functionality

  3. They are generated by the host to inform the router of an alternate route to the destination

  4. They are generated when a packet enters and exits the same router interface

  5. The messages contain an ICMP Type 3 and ICMP code 7

Answer: B,D

100% Ensurepass Free Download!
Download Free Demo:350-018 Demo PDF
100% Ensurepass Free Guaranteed!
Download 2018 EnsurePass 350-018 Full Exam PDF and VCE

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

Your email address will not be published. Required fields are marked *