EC-COUNCIL 312-38 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-38 Online Questions & Answers

• Question 401:

  Which of the following defines the extent to which an interruption affects normal business operations and the amount of revenue lost due to that interruption?

  A. RPO
  B. RFO
  C. RSP
  D. RTO
  D. RTO

• Question 402:

  Which of the following is not part of the recommended first response steps for network defenders?

  A. Restrict yourself from doing the investigation
  B. Extract relevant data from the suspected devices as early as possible
  C. Disable virus protection
  D. Do not change the state of the suspected device
  D. Do not change the state of the suspected device

• Question 403:

  Which has the following fields IPv6 header is reduced by 1 for each router that sends a packet?

  A. None
  B. traffic class
  C. hop limit
  D. Next header
  E. Flow label
  C. hop limit

• Question 404:

  Who offers formal experienced testimony in court?

  A. Incident analyzer
  B. Evidence documenter
  C. Expert witness
  D. Attorney
  C. Expert witness

• Question 405:

  Which of the following is an example of a network providing DQDB access methods?

  A. IEEE 802.3
  B. IEEE 802.2
  C. IEEE 802.4
  D. IEEE 802.6
  D. IEEE 802.6

• Question 406:

  Daniel who works as a network administrator has just deployed an IDS in his organization's network. He wants to calculate the False Positive rate for his implementation. Which of the following formulas will he use, to calculate the False Positive rate?

  A. False Negative/True Negative+True Positive
  B. False Positive/False Positive+True Negative
  C. True Negative/False Negative+True Positive
  D. False Negative/False Negative+True Positive
  B. False Positive/False Positive+True Negative

• Question 407:

  Which of the following is a standard-based protocol that provides the highest level of VPN security?

  A. L2TP
  B. IP
  C. PPP
  D. IPSec
  D. IPSec

  ---

  Explanation/Reference:

  Internet Protocol Security (IPSec) is a standard-based protocol that provides the highest level of VPN security. IPSec can encrypt virtually everything above the networking layer. It is used for VPN connections that use the L2TP protocol. It secures both data and password. IPSec cannot be used with Point-to-Point Tunneling Protocol (PPTP). Answer option B is incorrect. The Internet Protocol (IP) is a protocol used for communicating data across a packet-switched inter-network using the Internet Protocol Suite, also referred to as TCP/IP.IP is the primary protocol in the Internet Layer of the Internet Protocol Suite and has the task of delivering distinguished protocol datagrams (packets) from the source host to the destination host solely based on their addresses. For this purpose, the Internet Protocol defines addressing methods and structures for datagram encapsulation. The first major version of addressing structure, now referred to as Internet Protocol Version 4 (IPv4), is still the dominant protocol of the Internet, although the successor, Internet Protocol Version 6 (IPv6), is being deployed actively worldwide. Answer option C is incorrect. Point-to-Point Protocol (PPP) is a remote access protocol commonly used to connect to the Internet. It supports compression and encryption and can be used to connect to a variety of networks. It can connect to a network running on the IPX, TCP/IP, or NetBEUI protocol. It supports multi-protocol and dynamic IP assignments. It is the default protocol for the Microsoft Dial-Up adapter. Answer option A is incorrect. Layer 2 Tunneling Protocol (L2TP) is a more secure version of Point-to-Point Tunneling Protocol (PPTP). It provides tunneling, address assignment, and authentication. It allows the transfer of Point-to-Point Protocol (PPP) traffic between different networks. L2TP combines with IPSec to provide tunneling and security for Internet Protocol (IP), Internetwork Packet Exchange (IPX), and other protocol packets across IP networks.

• Question 408:

  Which of the following layers provides communication session management between host computers?

  A. Application layer
  B. Internet layer
  C. Transport layer
  D. Link layer
  C. Transport layer

• Question 409:

  Which of the following is a device that provides local communication between the datalogger and a computer?

  A. Controllerless modem
  B. Optical modem
  C. Acoustic modem
  D. Short haul modem
  D. Short haul modem

  ---

  Explanation/Reference:

  A short haul modem is a device that provides local communication between the datalogger and a computer with an RS-232 serial port. It transmits data up to 6.5 miles over a four-wire unconditioned line (two twisted pairs). Answer option B is incorrect. An optical modem is a device that is used for converting a computer's electronic signals into optical signals for transmission over optical fiber. It also converts optical signals from an optical fiber cable back into electronic signals. It provides higher data transmission rates because it uses extremely high capacity of the optical fiber cable for transmitting data. Answer option C is incorrect. An acoustic modem provides wireless communication under water. The optimum performance of a wireless acoustic modem system depends upon the speed of sound, water depth, existence of thermocline zones, ambient noise, and seasonal change. Answer option A is incorrect. A controllerless modem is a hardware-based modem that does not have the physical communications port controller circuitry. It is also known as WinModem or software modem. A controllerless modem is very inexpensive and can easily be upgraded with new software.

• Question 410:

  Which of the following are the various methods that a device can use for logging information on a Cisco router? Each correct answer represents a complete solution. Choose all that apply.

  A. Buffered logging
  B. Syslog logging
  C. NTP logging
  D. Terminal logging
  E. Console logging
  F. SNMP logging
  A. Buffered logging
  B. Syslog logging
  D. Terminal logging
  E. Console logging
  F. SNMP logging

  ---

  Explanation/Reference:

  There are different methods that a device can use for logging information on a Cisco router:

  Terminal logging: In this method, log messages are sent to the VTY session.

  Console logging: In this method, log messages are sent directly to the console port.

  Buffered logging: In this method, log messages are kept in the RAM on the router. As the buffer fills, the older messages are overwritten by the newer messages.

  Syslog logging: In this method, log messages are sent to an external syslog server where they are stored and sorted.

  SNMP logging: In this method, log messages are sent to an SNMP server in the network.

  Answer option C is incorrect. This is an invalid option.