350-018 Exam Details
-
Exam Code
:350-018 -
Exam Name
:CCIE Security written -
Certification
:Cisco Certifications -
Vendor
:Cisco -
Total Questions
:872 Q&As -
Last Updated
:Dec 11, 2021
Cisco 350-018 Online Questions & Answers
-
Question 631:
Which layer of the OSI model is referenced when utilizing http inspection on the Cisco ASA to filter Instant Messaging or Peer to Peer networks with the Modular Policy Framework?
A. application layer
B. presentation layer
C. network layer
D. transport layer -
Question 632:
Aggregate global IPv6 addresses begin with which bit pattern in the first 16-bit group?
A. 000/3
B. 001/3
C. 010/2
D. 011/2 -
Question 633:
What is the effect of the given command?
Refer to the exhibit.
A. It enables CoPP on the FastEthernet 0/0 interface for SSH and SNMP management traffic.
B. It enables MPP on the FastEthernet 0/0 interface for SSH and SNMP management traffic and CoPP for all other protocols.
C. It enables MPP on the FastEthernet 0/0 interface, allowing only SSH and SNMP management traffic.
D. It enables QoS policing on the control plane of the FasEthernet 0/0 interface.
E. It enables MPP on the FastEthernet 0/0 interface by enforcing rate-limiting for SSH and SNMP management traffic. -
Question 634:
Refer to the exhibit.What is the effect of the given configuration?
A. FTP connections are unaffected.
B. It resets and logs FTP connections to cisco.com and hp.com only.
C. It resets FTP connections to cisco.com and hp.com only.
D. It resets FTP connections to all sites except cisco.com and hp.com.
E. It resets and logs FTP connections to all except cisoc.com and hp.com. -
Question 635:
When implementing WLAN security, what are three benefits of using the TKIP instead of WEP? (Choose three.)
A. TKIP uses an advanced encryption scheme based on AES.
B. TKIP provides authentication and integrity checking using CBC-MAC.
C. TKIP provides per-packet keying and a rekeying mechanism.
D. TKIP provides message integrity check.
E. TKIP reduces WEP vulnerabilities by using a different hardware encryption chipset.
F. TKIP uses a 48-bit initialization vector. -
Question 636:
Which domain is used for a reverse lookup of IPv4 addresses?
A. in-addr.arpa
B. ip4.arpa
C. in-addr.net
D. ip4.net -
Question 637:
What is the purpose of the BGP TTL security check?
A. To use for IBGP session
B. To protect against CPU utilization-based attacks
C. To protect against routing table corruption
D. To authenticate a peer
E. To check for a TTL value in packet header of less than or equal to for successful peering -
Question 638:
Refer to the exhibit.
Which statement regarding the output is true?
A. Every 1800 seconds the secondary name server will query the SOA record of the primary name server for updates.
B. If the secondary name server has an SOA record with the serial number of 10973815, it will initiate a zone transfer on the next cycle.
C. Other DNS servers will cache records from this domain for 864000 seconds (10 days) before requesting them again.
D. Email queries concerning this domain should be sent to "[email protected]".
E. Both primary and secondary name servers will clear (refresh) their caches every 7200 seconds to ensure that up-to-date information is always in use. -
Question 639:
Refer to the exhibit.
What is the effect of the given configuration?
A. It sets the number of neighbor solicitation message to 60 and sets the retransmission interval to 3600 milliseconds
B. It sets the number of duplicate address detection attempts to 60 and sets the duplicate address detection interval to 3600 milliseconds
C. It sets the duplicate address detection interval to 60 seconds and sets the IPv6 neighbor solicitation interval to 3600 milliseconds
D. It sets the duplicate address detection interval 60 seconds and the IPv6 neighbor reachable time to 3600 milliseconds
E. It sets the number of neighbor solicitation message to 60 and sets the duplicate address detection interval to 3600 seconds -
Question 640:
Which two statements about SOX are true? (Choose two.)
A. SOX is an IEFT compliance procedure for computer systems security.
B. SOX is a US law.
C. SOX is an IEEE compliance procedure for IT management to produce audit reports.
D. SOX is a private organization that provides best practices for financial institution computer systems.
E. Section 404 of SOX is related to IT compliance.
Related Exams:
-
300-745
Designing Cisco Security Infrastructure (300-745 SDSI) v1.0 -
350-101
Implementing and Operating Cisco Wireless Core Technologies (350-101 WLCOR)v1.0 -
352-011
Cisco Certified Design Expert Practical -
500-052
Cisco Unified Contact Center Express -
500-173
Designing the FlexPod Solution (FPDESIGN) -
500-201
Deploying Cisco Service Provider Mobile Backhaul Solutions -
500-210
SP Optical Technology Field Engineer Representative -
500-220
Engineering Cisco Meraki Solutions (ECMS) v2.2 -
500-230
Cisco Service Provider Routing Field Engineer -
500-240
Cisco Mobile Backhaul for Field Engineers
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-018 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.