Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 461:

  What TCP port does SSL/TLS use for HTTPS communications?

  A. TCP 563
  B. TCP 626
  C. TCP 80
  D. TCP 443
  D. TCP 443

• Question 462:

  Which purpose of a security risk assessment is true?

  A. Score a vulnerability.
  B. Notify the customer of a vulnerability.
  C. Find implementation issues that could lead to a vulnerability.
  D. Set the SIR value of a vulnerability.
  C. Find implementation issues that could lead to a vulnerability.

• Question 463:

  Which of the following protocols is typically used as the communication channel between the client and the DDNS provider?

  A. HTTP/HTTPS
  B. DHCP
  C. ARP
  D. ICMP
  A. HTTP/HTTPS

• Question 464:

  Which one of the following best describes the output that the netstat command displays?

  A. all the active mapped network drives
  B. all the active connected users on the device
  C. all the active TCP connections, ports on which the computer is listening
  D. all the TCPdump statistics
  C. all the active TCP connections, ports on which the computer is listening

• Question 465:

  What are two ways the IPv6 address 2345:0000:0000:0000:0000:0000:0100:1111 can be written?

  A. 2345:0:0:0:0:0:0100:1111
  B. 2345::1::1
  C. 2345::0100:1111
  D. 2345::1:1111
  A. 2345:0:0:0:0:0:0100:1111
  C. 2345::0100:1111

• Question 466:

  Which cryptographic key is contained in an X.509 certificate?

  A. symmetric
  B. public
  C. private
  D. asymmetric
  B. public

• Question 467:

  Which one of the following statements best describes the benefit of following the phases of the attack continuum?

  A. Organizations are able to combat advanced persistent threats by having visibility and control across the extended network.
  B. Organizations can use the attack continuum to provide a complete security posture, which will block and prevent all nefarious network activity and attacks
  C. Organizations using the attack continuum are able to easily determine the identity of threat actors and the nature of their activities.
  D. It is the first level of security for BYOD-based devices (including end-user phones, tablets, and personal computers) when they are connected to the enterprise environment.
  A. Organizations are able to combat advanced persistent threats by having visibility and control across the extended network.

• Question 468:

  Which of the following are examples of vulnerabilities?

  A. SQL injection
  B. Command injection
  C. Cross-site scripting (XSS)
  D. Cross-site request forgery (CSRF)
  A. SQL injection
  B. Command injection
  C. Cross-site scripting (XSS)
  D. Cross-site request forgery (CSRF)

• Question 469:

  DRAG DROP

  Match the action to the stage of the web attack.

  Select and Place:

  

  

• Question 470:

  What are three benefits of deploying Security Onion for network security monitoring? (Choose three.)

  A. Security Onion provides an entire suite of open-source tools in a single distribution.
  B. Security Onion automates security monitoring eliminating the need for security analyst intervention.
  C. Security Onion provides visibility and context into network events, traffic, and alerts.
  D. Security Onion can be installed on your mobile devices such as tablets to provide a portable security analysis tool.
  E. Security Onion provides tools for packet capture, threat detection, and packet analysis.
  A. Security Onion provides an entire suite of open-source tools in a single distribution.
  C. Security Onion provides visibility and context into network events, traffic, and alerts.
  E. Security Onion provides tools for packet capture, threat detection, and packet analysis.