1. Home
  2. Cisco
  3. 350-018

Cisco 350-018 Online Practice Questions and Exam Preparation

350-018 Exam Details

  • Exam Code
    :350-018
  • Exam Name
    :CCIE Security written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :872 Q&As
  • Last Updated
    :Dec 11, 2021

Cisco 350-018 Online Questions & Answers

  • Question 401:

    What are three pieces of data you should review in response to a suspend SSL MITM attack? (Choose three)

    A. the IP address of the SSL server
    B. the X.509 certificate of the SSL server
    C. the MAC address of the attacker
    D. the MAC address of the SSL server
    E. the X.509 certificate of the attacker
    F. the DNS name of the SSL server

  • Question 402:

    Which two statements about the BGP TTL security check are true? (Choose two)

    A. It is more useful for iBGP sessions than eBGP sessions.
    B. The default TTL for all neighbor session packets is 255 when eBGP is configured.
    C. It secures incoming eBGP session only
    D. It Protects the BGP process from DOS attacks
    E. It enforces each BGP packet's maximum TTL value

  • Question 403:

    Which set of encryption algorithms is used by WPA and WPA2?

    A. Blowfish and AES
    B. CAST and RC6
    C. TKIP and RC6
    D. TKIP and AES

  • Question 404:

    Which statement is valid regarding SGACL?

    A. SGACL mapping and policies can only be manually configured.
    B. Dynamically downloaded SGACL does not override manually configured conflicting policies.
    C. SGACL is access-list bound with a range of SGTs and DGTs.
    D. SGACL is not a role-based access list.

  • Question 405:

    Which statement about DHCP snooping is true?

    A. The dynamic ARP inspection feature must be enabled for DHCP snooping to work.
    B. DHCP snooping is enabled on a per-VLAN basis.
    C. DHCP snooping builds a binding database using information that is extracted from intercepted ARP requests.
    D. DHCP snooping is enabled on a per-port basis.
    E. DHCP snooping is does not rate-limit DHCP traffic from trusted ports.

  • Question 406:

    Refer to the exhibit.

    With the client protected by the firewall, an HTTP connection from the client to the server on TCP port 80 will be subject to which action?

    A. inspection action by the HTTP_CMAP
    B. inspection action by the TCP_CMAP
    C. drop action by the default class
    D. inspection action by both the HTTP_CMAP and TCP_CMAP
    E. pass action by the HTTP_CMAP
    F. drop action due to class-map misclassification

  • Question 407:

    Refer to the exhibit.

    Which three statements about the Cisco ASDM screen seen in the exhibit are true? (Choose three.)

    A. This access rule is applied to all the ASA interfaces in the inbound direction.
    B. The ASA administrator needs to expand the More Options tag to configure the inbound or outbound direction of the access rule.
    C. The ASA administrator needs to expand the More Options tag to apply the access rule to an interface.
    D. The resulting ASA CLI command from this ASDM configuration is access-list global_access line 1 extended permit ip host 1.1.1.1 host 2.2.2.1.
    E. This access rule is valid only on the ASA appliance that is running software release 8.3 or later.
    F. This is an outbound access rule.

  • Question 408:

    An exploit that involves connecting to a specific TCP port and gaining access to an administrative command prompt is an example of which type of attack?

    A. botnet
    B. Trojan horse
    C. privilege escalation
    D. DoS

  • Question 409:

    Which statement applies to Flexible NetFlow?

    A. Flexible NetFlow uses seven key fields in IP datagrams to identify the flow.
    B. Flexible NetFlow uses key fields of IP datagram to identify fields from which data is captured.
    C. User-defined flows can be defined in Flexible NetFlow.
    D. Flexible NetFlow cannot be used for billing and accounting applications.
    E. Flexible NetFlow does not have any predefined records.

  • Question 410:

    Which two statements about the MD5 Hash are true? (Choose two.)

    A. Length of the hash value varies with the length of the message that is being hashed.
    B. Every unique message has a unique hash value.
    C. Its mathematically possible to find a pair of message that yield the same hash value.
    D. MD5 always yields a different value for the same message if repeatedly hashed.
    E. The hash value cannot be used to discover the message.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-018 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.