1. Home
  2. Cisco
  3. 350-018

Cisco 350-018 Online Practice Questions and Exam Preparation

350-018 Exam Details

  • Exam Code
    :350-018
  • Exam Name
    :CCIE Security written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :872 Q&As
  • Last Updated
    :Dec 11, 2021

Cisco 350-018 Online Questions & Answers

  • Question 441:

    Refer to the exhibit . Wich effect of this configuration is true ?

    A. It configures the node to generate a link-locak group report when it joins the solicited-node multicast group
    B. It enables local group membership for MLDv1 and MLDv2
    C. It enables hosts to send MLD report messages for groups in 224.0.0.0/24
    D. It enables MLD query messages for all link-local groups
    E. It enables the host to send MLD report messages for nonlink local groups

  • Question 442:

    A router has four interfaces addressed as 10.1.1.1/24, 10.1.2.1/24, 10.1.3.1/24, and 10.1.4.1/24. What is the smallest summary route that can be advertised covering these four subnets?

    A. 10.1.2.0/22
    B. 10.1.0.0/22
    C. 10.1.0.0/21
    D. 10.1.0.0/16

  • Question 443:

    What are two features that help to mitigate man-in-the-middle attacks?(Choose two)

    A. DHCP snooping
    B. dynamic ARP inspection
    C. destination MAC ACLS
    D. ARP sniffing on specific ports
    E. ARP spoofing

  • Question 444:

    Which two statements about DHCP are true? (Choose two.)

    A. DHCP uses TCP port 67.
    B. DHCP uses UDP ports 67 and 68.
    C. The DHCPDiscover packet has a multicast address of 239.1.1.1.
    D. DHCPRequest is a broadcast message.
    E. The DHCPOffer packet is sent from the DHCP server.

  • Question 445:

    When is the supplicant considered to be clientless?

    A. when the authentication server does not have credentials to authenticate.
    B. when the authenticator is missing the dot1x guest VLAN under the port with which the supplicant is connected.
    C. when the supplicant fails EAP-MD5 challenge with the authentication server.
    D. when the supplicant fails to respond to EAPOL messages from the authenticator.
    E. when the authenticator is missing the reauthentication timeout configuration under the port with which the supplicant is connected.

  • Question 446:

    Refer to the exhibit.

    Which option describes the behavior of this configuration?

    A. Traffic from the 30.30.0.0/16 network to the 10.10.0.0/32 network will be translated.
    B. Traffic from the 30.30.0.0/32 network to the 10.10.0.0/16 network will not be translated.
    C. Traffic from the 10.10.0.0/16 network to the 30.30.30.0/24 network will not be translated.
    D. Traffic from the 10.10.0.0/32 network to the 30.30.30.0/16 network will be translated.

  • Question 447:

    Refer to the exhibit.

    Which of the following is the correct output of the above executed command?

    A. Option A
    B. Option B
    C. Option C
    D. Option D

  • Question 448:

    Which three statements correctly describe the purpose and operation of IPv6 RS and RA messages? (Choose three.)

    A. Both IPv6 RS and RA packets are ICMPv6 messages.
    B. IPv6 RA messages can help host devices perform stateful or stateless address autoconfiguration; RS messages are sent by hosts to determine the addresses of routers.
    C. RS and RA packets are always sent to an all-nodes multicast address.
    D. RS and RA packets are used by the duplicate address detection function of IPv6.
    E. IPv6 hosts learn connected router information from RA messages which may be sent in response to an RS message.
    F. RS and RA packets are used for IPv6 nodes to perform address resolution that is similar to ARP in IPv4.

  • Question 449:

    Which statement about Sarbanes-Oxley (SOX) is true?

    A. SOX is an IEFT compliance procedure for computer systems security.
    B. SOX is a US law.
    C. SOX is an IEEE compliance procedure for IT management to produce audit reports.
    D. SOX is a private organization that provides best practices for financial institution computer systems.
    E. Section 404 of SOX is only related to IT compliance.

  • Question 450:

    Refer to the exhibit.

    When configuring a Cisco IPS custom signature, what type of signature engine must you use to block podcast clients from accessing the network?

    A. service HTTP
    B. service TCP
    C. string TCP
    D. fixed TCP
    E. service GENERIC

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-018 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.