Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 391:

  Which definition of an antivirus program is true?

  A. program used to detect and remove unwanted malicious software from the system
  B. program that provides real-time analysis of security alerts generated by network hardware and applications
  C. program that scans a running application for vulnerabilities
  D. rules that allow network traffic to go in and out
  A. program used to detect and remove unwanted malicious software from the system

• Question 392:

  Refer to the exhibit. Which tool generated this output?

  

  A. ps
  B. syslog
  C. tcpdump
  D. ipfw
  C. tcpdump

• Question 393:

  Once a user has established an SSH session, what command gracefully quits the session?

  A. leave
  B. quit
  C. end
  D. exit
  D. exit

• Question 394:

  What type of attack occurs when an attacker sends a flood of protocol request packets to various IP hosts and the attacker spoofs the source IP address of the packets, such that each packet has the IP address of the intended target rather than the IP address of the attacker as its source address?

  A. reflection attack
  B. amplification attack
  C. MITM attack
  D. Trojan virus ARP
  A. reflection attack

• Question 395:

  What is a key reason that enterprises are reluctant to move to cloud-based security services?

  A. Cloud-based services are not stable, and do not provide high-availability features.
  B. Data within the cloud is not natively secure, and customer data breaches are a major concern to enterprises.
  C. Cloud-based deployments are significantly more complex to deploy and administer.
  D. Enterprises do not trust cloud-based services because of inaccurate X.509 certificates
  E. Cloud-based services do not support NGFW encryption technologies.
  B. Data within the cloud is not natively secure, and customer data breaches are a major concern to enterprises.

• Question 396:

  Which one of these source ports does a client dynamically use when it connects to a server that is listening on a well-known port?

  A. ephemeral
  B. registered
  C. well-known
  D. first available port on the client system
  A. ephemeral

• Question 397:

  Which two of the following options are common DHCP attacks? (Choose two.)

  A. DHCP starvation
  B. DHCP tunneling
  C. rogue DHCP server
  D. DHCP amplification
  A. DHCP starvation
  C. rogue DHCP server

• Question 398:

  Which two characteristics of a secure hashing algorithm are true? (Choose two.)

  A. produces a variable-length output
  B. not reversible
  C. produces a fixed-length output
  D. susceptible to collisions
  E. reversible
  B. not reversible
  C. produces a fixed-length output

• Question 399:

  Which best describes a fast flux service network?

  A. uses DNS servers to resolve many different IP addresses over short span of time
  B. a high-bandwidth network
  C. a low latency network
  D. a network that generates large number of random domain names
  A. uses DNS servers to resolve many different IP addresses over short span of time

• Question 400:

  Which statement about the Diffie-Hellman Key Agreement is true?

  A. The higher the Diffie-Hellman group number indicates a smaller key size.
  B. The higher the Diffie-Hellman group number indicates a larger key size.
  C. The higher the Diffie-Hellman group number indicates no difference in processing requirements.
  D. The higher the Diffie-Hellman group number indicates a smaller prime number (p).
  B. The higher the Diffie-Hellman group number indicates a larger key size.