Cisco 350-018 Online Practice Questions and Exam Preparation

Cisco 350-018 Online Questions & Answers

• Question 391:

  Which four techniques can you use for IP data plane security? (Choose four.)

  A. Control Plane Policing
  B. interface ACLs
  C. uRPF
  D. MD5 authentication
  E. FPM
  F. QoS
  B. interface ACLs
  C. uRPF
  E. FPM
  F. QoS

• Question 392:

  Refer the exhibit.

  

  Two routers are connected using GRE through a WAN link. Your syslog server is logging the given error message. What is a possible reason for the errors?

  A. The loopback interface is configured as the source of the tunnel
  B. The connection is experiencing WAN link flapping
  C. The tunnel key is misconfigured
  D. Secondary addresses are being used on the physical interface
  E. The tunnel source and destination are advertised through the tunnel itself
  E. The tunnel source and destination are advertised through the tunnel itself

• Question 393:

  When attempting to use basic HTTP authentication to authenticate a client, which type of HTTP message should the server use?

  A. HTTP 302 with an Authenticate header
  B. HTTP 401 with a WWW-Authenticate header
  C. HTTP 407
  D. HTTP 200 with a WWW-Authenticate header
  B. HTTP 401 with a WWW-Authenticate header

• Question 394:

  Refer to the exhibit.

  

  Choose the correct description of the implementation that produced this output on the Cisco ASA appliance.

  A. stateful failover using active-active for multi-context
  B. stateful failover using active-standby for multi-context
  C. stateful failover using active-standby for single-context
  D. stateless failover using interface-level failover for multi-context
  A. stateful failover using active-active for multi-context

• Question 395:

  Refer to the exhibit.

  

  What will be the default action?

  A. HTTP traffic to the Facebook, Youtube, and Twitter websites will be dropped.
  B. HTTP traffic to the Facebook and Youtube websites will be dropped.
  C. HTTP traffic to the Youtube and Twitter websites will be dropped.
  D. HTTP traffic to the Facebook and Twitter websites will be dropped.
  D. HTTP traffic to the Facebook and Twitter websites will be dropped.

• Question 396:

  According to RFC-5426, syslog senders must support sending syslog message datagrams to which port?

  A. TCP port 514
  B. UDP port 514
  C. TCP port 69
  D. UDP port 69
  E. TCP port 161
  F. UDP port 161
  B. UDP port 514

• Question 397:

  Which two values you must configure on the Cisco ASA firewall to support FQDN ACL? (Choose two.)

  A. a DNS server
  B. an FQDN object
  C. a policy map
  D. a class map
  E. a service object
  F. a service policy
  A. a DNS server
  B. an FQDN object

• Question 398:

  Which option is used for anti-replay prevention in a Cisco IOS IPsec implementation?

  A. session token
  B. one-time password
  C. time stamps
  D. sequence number
  E. nonce
  D. sequence number

• Question 399:

  Drag each EAP variant in the 802.1X framework on the left to the matching statement on the right

  Select and Place:

  

  

• Question 400:

  Which two commands would enable secure logging on Cisco ASA to a syslog server at 10.0.0.1? (Choose two.)

  A. logging host inside 10.0.0.1 UDP/447 secure
  B. logging host inside 10.0.0.1 TCP/1470 secure
  C. logging host inside 10.0.0.1 UDP/514 secure
  D. logging host inside 10.0.0.1 TCP/1500 secure
  E. logging host inside 10.0.0.1 UDP/500 secure
  D. logging host inside 10.0.0.1 TCP/1500 secure
  E. logging host inside 10.0.0.1 UDP/500 secure