1. Home
  2. EC-COUNCIL
  3. 312-38

EC-Council Certified Network Defender (CND)

Exam Details

  • Exam Code
    :312-38
  • Exam Name
    :EC-Council Certified Network Defender (CND)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :653 Q&As
  • Last Updated
    :May 06, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-38 Questions & Answers

  • Question 531:

    What is the location of honeypot on a network?

    A. Honeyfarm

    B. Honeynet

    C. Hub

    D. DMZ

  • Question 532:

    Which of the following is an open source implementation of the syslog protocol for Unix?

    A. syslog-os

    B. syslog Unix

    C. syslog-ng

    D. Unix-syslog

  • Question 533:

    Which of the following systems is formed by a group of honeypots?

    A. Research honeypot

    B. Honeyfarm

    C. Honeynet

    D. Production honeypot

  • Question 534:

    Which of the following protocols is a more secure version of the Point-to-Point Tunneling Protocol (PPTP) and provides tunneling, address assignment, and authentication?

    A. IP

    B. L2TP

    C. PPP

    D. DHCP

  • Question 535:

    Which of the following sets of incident response practices is recommended by the CERT/CC?

    A. Prepare, notify, and follow up

    B. Notify, handle, and follow up

    C. Prepare, handle, and notify

    D. Prepare, handle, and follow up

  • Question 536:

    Which of the following routing metrics is the sum of the costs associated with each link traversed?

    A. Routing delay

    B. Communication cost

    C. Bandwidth

    D. Path length

  • Question 537:

    Which of the following is also known as stateful firewall?

    A. PIX firewall

    B. Stateless firewall

    C. DMZ D. Dynamic packet-filtering firewall

  • Question 538:

    Which of the following is a centralized collection of honeypots and analysis tools?

    A. Production honeypot

    B. Honeynet

    C. Research honeypot

    D. Honeyfarm

  • Question 539:

    Which of the following is a Cisco product that performs VPN and firewall functions?

    A. Circuit-Level Gateway

    B. PIX Firewall

    C. IP Packet Filtering Firewall

    D. Application Level Firewall

  • Question 540:

    Which of the following header fields in TCP/IP protocols involves Ping of Death attack?

    A. SMTP header field

    B. TCP header field

    C. IP header field

    D. UDP header field

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-38 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.