Cisco 350-018 Online Practice Questions and Exam Preparation

Cisco 350-018 Online Questions & Answers

• Question 471:

  What are the features of Cisco IOS that can help mitigate Blaster worm attack on RPC ports? (Choose two) A. DCAR

  B. dynamic ARP inspection
  C. FPM
  D. IP Source Guard
  E. NABAR
  F. URPF
  D. IP Source Guard
  F. URPF

• Question 472:

  What IPS form factor is best suited to handling heavy traffic between virtualized servers in a data center?

  A. FirePOWER NGIPSv
  B. FirePOWER Appliance
  C. IOS with FirePOWER seivices
  D. ASA with FirePOWER services
  A. FirePOWER NGIPSv

• Question 473:

  Which statement is true regarding Transparent mode configuration on Cisco ASA firewall running version 9.x?

  A. Networks connected with the ASA data interfaces must be in different subnets for the traffic to flow.
  B. Bridge Groups are not supported in Transparent mode.
  C. Default route defined on the ASA is only for the management traffic return path.
  D. You need to make management interface of the ASA as the next-hop for the connected devices to establish reachability across the ASA.
  E. Management interface does not update the MAC address table.
  C. Default route defined on the ASA is only for the management traffic return path.

• Question 474:

  Which Cisco IPS appliance signature engine defines events that occur in a related manner, within a sliding time interval, as components of a combined signature?

  A. Service engine
  B. Sweep engine
  C. Multistring engine
  D. Meta engine
  D. Meta engine

• Question 475:

  Which option represents IPv6 address ff02::1?

  A. PIM routers.
  B. RIP routers.
  C. all nodes on the local network.
  D. NTP.
  C. all nodes on the local network.

• Question 476:

  Which three statements about RLDP are true? (Choose three)

  A. It can detect rogue Aps that use WPA encryption
  B. B. It detects rogue access points that are connected to the wired network
  C. C. The AP is unable to serve clients while the RLDP process is active
  D. D. It can detect rogue APs operating only on 5 GHz
  E. E. Active Rogue Containment can be initiated manually against rogue devices detected on the wired network
  F. F. It can detect rogue APs that use WEP encryption
  B. B. It detects rogue access points that are connected to the wired network
  E. E. Active Rogue Containment can be initiated manually against rogue devices detected on the wired network

• Question 477:

  Refer to the exhibit.

  

  Which two statements correctly describe the debug output that is shown in the exhibit? (Choose two.)

  A. The request is from NHS to NNC.
  B. The request is from NHC to NHS.
  C. 69.1.1.2 is the local non-routable address.
  D. 192.168.10.2 is the remote NBMA address.
  E. 192.168.10.1 is the local VPN address.
  F. This debug output represents a failed NHRP request.
  B. The request is from NHC to NHS.
  E. 192.168.10.1 is the local VPN address.

• Question 478:

  

  Refer to the exhibit.Which service or feature must be enabled on 209.165.200.225 to produce the given output?

  A. a ICP small service
  B. the PAD service
  C. the Finger service
  D. a BOOTP server
  A. a ICP small service

• Question 479:

  Which Cisco IPS appliance signature engine inspects IPv6 Layer 3 traffic?

  A. Atomic IP
  B. Meta
  C. Atomic IP Advanced
  D. Fixed
  E. Service
  C. Atomic IP Advanced

• Question 480:

  Interface tunnel 1 ip address 10.1.1.1 255.255.255.252 ip mtu 1400 Tunnel source 172.16.1.1

  Tunnel destination 172.16.1.2 Tunnel key 1111 Based on the above configuration, if the input packet size is 1300 bytes, what is the size of the packet leaves the tunnel after encapsulation?

  A. 1324
  B. 1325
  C. 1326
  D. 1328
  D. 1328