Cisco 350-701 Online Practice Questions and Exam Preparation

Cisco 350-701 Online Questions & Answers

• Question 541:

  What is a characteristic of traffic storm control behavior?

  A. Traffic storm control drops all broadcast and multicast traffic if the combined traffic exceeds the level within the interval.
  B. Traffic storm control cannot determine if the packet is unicast or broadcast.
  C. Traffic storm control monitors incoming traffic levels over a 10-second traffic storm control interval.
  D. Traffic storm control uses the Individual/Group bit in the packet source address to determine if the packet is unicast or broadcast.
  A. Traffic storm control drops all broadcast and multicast traffic if the combined traffic exceeds the level within the interval.

  ---

  Explanation

  https://www.cisco.com/c/en/us/td/docs/routers/7600/ios/12-1E/configuration/guide/storm.html

• Question 542:

  An organization wants to implement a cloud-delivered and SaaS-based solution to provide visibility and threat detection across the AWS network. The solution must be deployed without software agents and rely on AWS VPC flow logs instead. Which solution meets these requirements?

  A. Cisco Stealthwatch Cloud
  B. Cisco Umbrella
  C. NetFlow collectors
  D. Cisco Cloudlock
  A. Cisco Stealthwatch Cloud

  ---

  Explanation

  https://www.cisco.com/c/en/us/products/security/stealthwatch-cloud/index.html

• Question 543:

  Which Cisco ASA deployment model is used to filter traffic between hosts in the same IP subnet using higher-level protocols without readdressing the network?

  A. routed mode
  B. transparent mode
  C. single context mode
  D. multiple context mode
  B. transparent mode

  ---

  Explanation

• Question 544:

  Which CLI command is used to register a Cisco FirePower sensor to Firepower Management Center?

  A. configure system add
  B. configure manager add host
  C. configure manager delete
  D. configure manager add
  D. configure manager add

  ---

  Explanation

• Question 545:

  An engineer is configuring 802.1X authentication on Cisco switches in the network and is using CoA as a mechanism. Which port on the firewall must be opened to allow the CoA traffic to traverse the network?

  A. TCP 6514
  B. UDP 1700
  C. TCP 49
  D. UDP 1812
  B. UDP 1700

  ---

  Explanation

  CoA Messages are sent on two different udp ports depending on the platform. Cisco standardizes on UDP port1700, while the actual RFC calls out using UDP port 3799.

• Question 546:

  What is a difference between an XSS attack and an SQL injection attack?

  A. SQL injection is a hacking method used to attack SQL databases, whereas XSS attacks can exist in many different types of applications
  B. XSS is a hacking method used to attack SQL databases, whereas SQL injection attacks can exist in many different types of applications
  C. SQL injection attacks are used to steal information from databases whereas XSS attacks are used to redirect users to websites where attackers can steal data from them
  D. XSS attacks are used to steal information from databases whereas SQL injection attacks are used to redirect users to websites where attackers can steal data from them
  C. SQL injection attacks are used to steal information from databases whereas XSS attacks are used to redirect users to websites where attackers can steal data from them

  ---

  Explanation

  In XSS, an attacker will try to inject his malicious code (usually malicious links) into a database. When other users follow his links, their web browsers are redirected to websites where attackers can steal data from them. In a SQL Injection, an attacker will try to inject SQL code (via his browser) into forms, cookies, or HTTP headers that do not use data sanitizing or validation methods of GET/POST parameters.

• Question 547:

  Which two methods are valid to be included in an authentication method list? (Choose two.)

  A. default
  B. login
  C. console
  D. line
  E. enable
  B. login
  E. enable

  ---

  Explanation

• Question 548:

  What is a feature of the open platform capabilities of Cisco DNA Center?

  A. intent-based APIs
  B. automation adapters
  C. domain integration
  D. application adapters
  A. intent-based APIs

  ---

  Explanation

  The Cisco DNA Center open platform for intent-based networking provides 360-degree extensibility across multiple components, including:

  Intent-based APIs Process adapters, Domain adapters, SDKs

• Question 549:

  A network administrator has configured DHCP snooping on a Cisco switch to prevent unauthorized DHCP servers from assigning IP addresses. During configuration, a device with MAC address 04:66:96:79:0:AB received an IP address from an unauthorized DHCP server. Which configuration step must the network administrator take to accomplish the requirement?

  A. Apply DHCP option 82 to identify the trusted DHCP server.
  B. Configure each device on the network to use authorize DHCP server manually.
  C. Configure an access control list to only allow DHCP traffic from trusted DHCP server.
  D. Implement DHCP option 82 to relay DHCP requests to the trusted DHCP server.
  D. Implement DHCP option 82 to relay DHCP requests to the trusted DHCP server.

  ---

  Explanation

• Question 550:

  Which function is included when Cisco AMP is added to web security?

  A. multifactor, authentication-based user identity
  B. detailed analytics of the unknown file's behavior
  C. phishing detection on emails
  D. threat prevention on an infected endpoint
  B. detailed analytics of the unknown file's behavior

  ---

  Explanation