Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 891:

  Which one of the following options is the Class C private IP range?

  A. 192.168.0.0 ?192.168.255.255
  B. 172.16.0.0 ?172.31.255.255
  C. 10.0.0.0 ?10.255.255.255
  D. 192.168.1.0 ?192.168.1.255
  A. 192.168.0.0 ?192.168.255.255

• Question 892:

  Malware infecting which Windows registry hive can alter the Windows user's profile?

  A. HKEY_LOCAL_MACHINE
  B. HKEY_CURRENT_CONFIG
  C. HKEY_CLASSES_ROOT
  D. HKEY_CURRENT_USER
  D. HKEY_CURRENT_USER

• Question 893:

  Which two of the following statements are true regarding the CAM and TCAM tables? (Choose two.)

  A. A CAM table is primarily used to make Layer 2 forwarding decisions.
  B. A CAM table contains the MAC-to-IP address mappings.
  C. A TCAM table stores ACL, QoS, and other information that is generally associated with upper-layer processing.
  D. TCAM is a specialized CAM that enables a Layer 2 switch to perform wire speed switching.
  E. The CAM and TCAM tables are populated using a routing protocol.
  A. A CAM table is primarily used to make Layer 2 forwarding decisions.
  C. A TCAM table stores ACL, QoS, and other information that is generally associated with upper-layer processing.

• Question 894:

  A malicious file was executed on a host but it was not detected by the host-based IPS. What is this kind of incident known as?

  A. true positive
  B. true negative
  C. false positive
  D. false negative
  D. false negative

• Question 895:

  In the Windows OS, what is an important function of the winload.exe executable?

  A. ensure that the drivers that it reads in are digitally signed to maintain the security of the system
  B. ensure that the master boot record has not been altered
  C. ensure that the boot configuration database has not been altered
  D. ensure that the Windows registry keys are valid
  A. ensure that the drivers that it reads in are digitally signed to maintain the security of the system

• Question 896:

  Which component of the Windows operating system graphical user interface task bar is used for navigating the file system?

  A. Windows Context Menu
  B. Windows Internet Explorer
  C. Windows File Explorer
  D. Windows PowerShell
  C. Windows File Explorer

• Question 897:

  

  Refer to the exhibit. Which description of what happened on the system is true?

  A. A user connected to the system using SSH using source port 55796.
  B. A user created a new HTTP session using the SHA256 hashing algorithm.
  C. A user connected to the system after 450 attempts.
  D. A user connected to the system using remote access VPN.
  A. A user connected to the system using SSH using source port 55796.

• Question 898:

  Which shutdown feature enables an attacker to schedule a system reboot to occur in the middle of the night?

  A. shutdown - h
  B. shutdown -r now
  C. systemctl poweroff
  D. shutdown 03:15 -r
  E. shutdown +330 -r
  D. shutdown 03:15 -r

• Question 899:

  You encountered malware that automatically runs upon bootup in its own Windows sessions, and without any user interface. Which Windows component can be used to configure the malware from starting automatically?

  A. startup manager
  B. performance manager
  C. services control manager
  D. task manager
  C. services control manager

• Question 900:

  Which one of the following is the purpose of the content option, as shown below?

  alert tcp any any -> any any (msg:"Possible exploit"; content: "|90|";)

  A. The content option will trigger a drop action when it sees the decimal digit 90.
  B. When Snort sees 0x90 in a packet's payload, it will generate an alert indicating that a possible exploit is occurring.
  C. The above Snort rule is not valid and has formatting errors.
  D. The above Snort rule should contain a destination IP address to alert the network management server.
  B. When Snort sees 0x90 in a packet's payload, it will generate an alert indicating that a possible exploit is occurring.