Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 521:

  Which of the following is a type of web application vulnerability where malicious scripts are injected into legitimate and trusted websites?

  A. Buffer overflow
  B. Cross-site scripting (XSS)
  C. Cross-site injection (XSI)
  D. SQL injection
  B. Cross-site scripting (XSS)

• Question 522:

  Which part of the TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P384 cipher suite is used to specify the bulk encryption algorithm?

  A. ECDHE_ECDSA
  B. AES_128_CBC
  C. SHA256
  D. P384
  B. AES_128_CBC

• Question 523:

  What three changes have occurred in modern networks that require enhanced security? (Choose three.)

  A. Modern networks utilize a common set of widely known and open protocols.
  B. The use of common operating systems on smart phones such as Apple iOS and Android has provided attackers with simpler means to instigate targeted attacks.
  C. Fault tolerance and backup systems provide threat actors easy access to system resources and data.
  D. The global connectivity of the Internet provides more opportunities for threat actors to connect to information systems.
  E. The increased complexity of operating systems and application software has made it more difficult to ensure security across all systems.
  A. Modern networks utilize a common set of widely known and open protocols.
  D. The global connectivity of the Internet provides more opportunities for threat actors to connect to information systems.
  E. The increased complexity of operating systems and application software has made it more difficult to ensure security across all systems.

• Question 524:

  Which statement best describes how a network-based malware protection feature detects a possible event?

  A. Using virus signature files locally on the firewall, it will detect incorrect MD5 file hashes.
  B. The firewall applies broad-based application and file control policies to detect malware.
  C. Malware can be detected correctly by using reputation databases on both the firewall and/or from the cloud.
  D. IDS signature files that are located on the firewall are used to detect the presence of malware.
  E. Malware can be detected and stopped by using ACLs and the modular policy framework within the firewall appliance.
  B. The firewall applies broad-based application and file control policies to detect malware.

• Question 525:

  What is the function of the exploit kit landing page?

  A. redirect the user's browser to the CnC server
  B. host malicious advertisements with iFrames
  C. initiate CnC traffic for malware communications
  D. deliver malware to victim machine
  D. deliver malware to victim machine

• Question 526:

  Which two attacks can be caused by a rogue DHCP server? (Choose two.)

  A. Trojan virus
  B. Compromised-Key
  C. DoS
  D. TCP SYN flood
  E. MITM
  C. DoS
  E. MITM

• Question 527:

  DRAG DROP

  Linux offers a wide variety of scripting options. Match the examples that follow with the correct option.

  Select and Place:

  

  

• Question 528:

  Which form of NAT enables a firewall to selectively perform translations based on destination address?

  A. static NAT
  B. dynamic PAT
  C. static PAT
  D. policy NAT
  E. dynamic NAT
  D. policy NAT

• Question 529:

  DNS query uses which protocol

  A. TCP
  B. UDP
  C. HTTP
  D. ICMP
  B. UDP

• Question 530:

  Which situation indicates application-level whitelisting?

  A. Allow everything and deny specific executable files.
  B. Allow specific executable files and deny specific executable files.
  C. Writing current application attacks on a whiteboard daily.
  D. Allow specific files and deny everything else.
  D. Allow specific files and deny everything else.