1. Home
  2. Cisco
  3. 350-018

Cisco 350-018 Online Practice Questions and Exam Preparation

350-018 Exam Details

  • Exam Code
    :350-018
  • Exam Name
    :CCIE Security written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :872 Q&As
  • Last Updated
    :Dec 11, 2021

Cisco 350-018 Online Questions & Answers

  • Question 241:

    DHCPv6 is used in which IPv6 address autoconfiguration method?

    A. stateful autoconfiguration
    B. stateless autoconfiguration
    C. EUI-64 address generation
    D. cryptographically generated addresses

  • Question 242:

    The HTTP inspection engine has the ability to inspect traffic based on which three parameters? (Choose three.)

    A. Transfer Encoding
    B. Request Method
    C. Header
    D. Application Type
    E. Header Size
    F. Source Address

  • Question 243:

    Which statement about the effect of this command is true?

    Refer to the exhibit.

    A. It lists the current protocol-to-port mappings of NBAR.
    B. It lists traffic that is packet switched and bypassed by NBAR.
    C. It lists the number of packets processed for unknown and unclassified flows.
    D. It lists the attributes configured for unknown and unclassified flows.
    E. It displays the link age for unknown and unclassified flows.

  • Question 244:

    Refer to the exhibit.

    What is the purpose of the command in the NAT-PT for IPv6 implementation on a Cisco IOS device?

    A. It defines address pool used by the IPv6 access-list.
    B. It defines the IPv4 address pool used by the NAT-PT for dynamic address mapping.
    C. It defines address pool used by the IPv4 access-list.
    D. It defines the IPv6 address pool used by the NAT-PT for dynamic address mapping.
    E. It defines the IPv4 address pool used by the NAT-PT for static address mapping

  • Question 245:

    Which three attributes may be configured as part of the Common Tasks panel of an authorization profile in the Cisco ISE solution? (Choose three.)

    A. VLAN
    B. voice VLAN
    C. dACL name
    D. voice domain permission
    E. SGT

  • Question 246:

    Drag each IPv6 extension header on the left into the recommended order for more than one extension header in the same IPv6 packet on the right

    Select and Place:

  • Question 247:

    What functionality does SKP provide to enhance security?

    A. It supports Cisco's TrustSec Implementation on virtual machines
    B. It supports secure communications between Cisco IronPort and cloud-based email severs
    C. It supports Cisco's TrustSec solution by transporting information over networks that are unable to support SOT propagation
    D. It supports secure communications between Cisco IronPort and Microsoft Exchange

  • Question 248:

    Which three statements about SCEP are true? (choose three)

    A. The certificate request format uses PKCS#10
    B. Cryptographically signed and encrypted message are conveyed using PKCS#7
    C. It supports multiple cryptographic algorithms including RSA
    D. CRL retrieval is supported though CDP (certificate distribute point) queries
    E. It support synchronous granting
    F. It supports online certification revocation

  • Question 249:

    A Cisco IOS router is configured as follows:

    ip dns spoofing 192.168.20.1

    What will the router respond with when it receives a DNS query for its own host name?

    A. The router will respond with the IP address of the incoming interface.
    B. The router will respond with 192.168.20.1 only if the outside interface is down.
    C. The router will respond with 192.168.20.1.
    D. The router will ignore the DNS query and forward it directly to the DNS server.

  • Question 250:

    Which two IP multicast addresses belong to the group represented by the MAC address 0x01-00-5E-15-6A-2C? (Choose two).

    A. 224.21.106.44
    B. 239.153.106.44
    C. 224.25.106.44
    D. 236.25.106.44
    E. 233.149.106.44

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-018 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.