Cisco 350-018 Online Practice Questions and Exam Preparation

Cisco 350-018 Online Questions & Answers

• Question 611:

  Drag each step in the IPS anomaly detection configuration process on the left into the correct order of operations on the right.

  Select and Place:

  

  

• Question 612:

  Which two statements about an authoritative server in a DNS system are true? (Choose two.)

  A. It indicates that it is authoritative for a name by setting the AA bit in responses.
  B. It has a direct connection to one of the root name servers.
  C. It has a ratio of exactly one authoritative name server per domain.
  D. It cannot cache or respond to queries from domains outside its authority.
  E. It has a ratio of at least one authoritative name server per domain.
  A. It indicates that it is authoritative for a name by setting the AA bit in responses.
  E. It has a ratio of at least one authoritative name server per domain.

• Question 613:

  Your coworker is working on a project to prevent DDoS and ingress filtering and needs advice on the standard and associated process for a single-homed network. Which two options do you suggest? (Choose two.)

  A. RFC 5735
  B. RFC 3704
  C. BCP 84
  D. BCP 38
  E. RFC 2827
  D. BCP 38
  E. RFC 2827

• Question 614:

  Refer to the exhibit.

  

  What sequence of command would generate the given output?

  A. Exhibit A
  B. Exhibit B
  C. Exhibit C
  D. Exhibit D
  C. Exhibit C

• Question 615:

  Which protocol is an extension to SSH 2.0 that provides security for data traffic?

  A. AES
  B. SFTP
  C. Kerberos
  D. TKIP
  B. SFTP

• Question 616:

  Which address range is representative of Automatic Private IP Addressing?

  A. 10.1.x.x
  B. 172.10.1.x
  C. 169.254.x.x
  D. 196.245.x.x
  E. 128.1.1.x
  F. 127.1.x.x
  C. 169.254.x.x

• Question 617:

  What is needed to verify a digital signature that was created using an RSA algorithm?

  A. public key
  B. private key
  C. both public and private key
  D. trusted third-party certificate
  A. public key

• Question 618:

  Refer to the exhibit.

  

  Which option describes the behavior of this configuration?

  A. The peer session is dropped when 80 prefixes are received.
  B. A warning message is displayed when 1000 prefixes are received.
  C. The peer session is dropped when 800 prefixes are received.
  D. An Initial warning message is displayed when 800 prefixes are received. A different message is displayed when 1000 prefixes received and the session will not be disconnected
  E. An Initial warning message is displayed when 80 prefixes received. The same warning message is displayed when 1000 prefixes are received and the session will be disconnected.
  D. An Initial warning message is displayed when 800 prefixes are received. A different message is displayed when 1000 prefixes received and the session will not be disconnected

• Question 619:

  What term describes an access point which is detected by your wireless network, but is not a trusted or managed access point?

  A. rogue
  B. unclassified
  C. interferer
  D. malicious
  A. rogue

• Question 620:

  Which statement is true about IKEv2 preshared key authentication between two peers?

  A. IKEv2 allows usage of different preshared keys for local and remote authentication.
  B. IKEv2 allows usage of only one preshared key.
  C. IKEv2 allows usage of only one preshared key and only in hub-and-spoke topology.
  D. IKEv2 does not allow usage of preshared key authentication.
  A. IKEv2 allows usage of different preshared keys for local and remote authentication.