Cisco 350-018 Online Practice Questions and Exam Preparation

Cisco 350-018 Online Questions & Answers

• Question 711:

  Which two statement about Infrastructure ACLs on Cisco IOS software are true? (Choose two.)

  A. Infrastructure ACLs are used to block-permit the traffic in the router forwarding path.
  B. Infrastructure ACLs are used to block-permit the traffic handled by the route processor.
  C. Infrastructure ACLs are used to block-permit the transit traffic.
  D. Infrastructure ACLs only protect device physical management interface.
  B. Infrastructure ACLs are used to block-permit the traffic handled by the route processor.
  D. Infrastructure ACLs only protect device physical management interface.

• Question 712:

  Which two certificate enrollment methods can be completed without an RA and require no direct connection to a CA by the end entity? (Choose two.)

  A. SCEP
  B. TFTP
  C. manual cut and paste
  D. enrollment profile with direct HTTP
  E. PKCS#12 import/export
  C. manual cut and paste
  E. PKCS#12 import/export

• Question 713:

  Which statement describes an IPv6 benefit?

  A. Broadcast is not available.
  B. Routing tables are more complicated.
  C. The address pool is limited.
  D. Data encryption is not built into the packet frame.
  E. Increased NAT is required.
  A. Broadcast is not available.

• Question 714:

  According ISO27001 ISMS, which of the following are mandatory documents? (Choose 4)

  A. ISMS Policy
  B. Corrective Action Procedure C. IS Procedures
  D. Risk Assessment Reports
  E. Complete Inventory of all information assets
  A. ISMS Policy
  B. Corrective Action Procedure C. IS Procedures
  D. Risk Assessment Reports

• Question 715:

  Which statement about the ASA redundant interface is true?

  A. It is a logical interface that combines two physical interfaces, both of which are active.
  B. It can only be used for failover links.
  C. By default, the first physical interface that is configured in the pair is the active interface.
  D. The redundant interface uses the MAC address of the second physical interface in the pair.
  C. By default, the first physical interface that is configured in the pair is the active interface.

• Question 716:

  Which four IPv6 messages should be allowed to transit a transparent firewall? (Choose four.)

  A. router solicitation with hop limit = 1
  B. router advertisement with hop limit = 1
  C. neighbor solicitation with hop limit = 255
  D. neighbor advertisement with hop limit = 255
  E. listener query with link-local source address
  F. listener report with link-local source address
  C. neighbor solicitation with hop limit = 255
  D. neighbor advertisement with hop limit = 255
  E. listener query with link-local source address
  F. listener report with link-local source address

• Question 717:

  Which three statements about the IANA are true? (Choose three.)

  A. IANA is a department that is operated by the IETF.
  B. IANA oversees global IP address allocation.
  C. IANA managed the root zone in the DNS.
  D. IANA is administered by the ICANN.
  E. IANA defines URI schemes for use on the Internet.
  B. IANA oversees global IP address allocation.
  C. IANA managed the root zone in the DNS.
  D. IANA is administered by the ICANN.

• Question 718:

  Which command enables fast-switched PBR?

  A. Router(config-if)# ip route-cache policy
  B. Router(config-if)# ip policy route-map map-tag
  C. Router(config-if)# no ip route-cache policy
  D. Router(config-if)# no ip policy route-map map-tag
  A. Router(config-if)# ip route-cache policy

• Question 719:

  Which algorithm is used to generate the IKEv2 session key?

  A. Diffie-Hellman
  B. Rivest, Shamir, and Adleman
  C. Secure Hash Algorithm
  D. Rivest Cipher 4
  A. Diffie-Hellman

• Question 720:

  Which three configuration components are required to implement QoS policies on Cisco routers using MQC? (Choose three.)

  A. class-map
  B. global-policy
  C. policy-map
  D. service-policy
  E. inspect-map
  A. class-map
  C. policy-map
  D. service-policy