1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 621:

    Which feature requires a network discovery policy on the Cisco Firepower Next Generation Intrusion Prevention System?

    A. Security Intelligence
    B. Impact Flags
    C. Health Monitoring
    D. URL Filtering

  • Question 622:

    What are two Trojan malware attacks? (Choose two)

    A. Frontdoor
    B. Rootkit
    C. Smurf
    D. Backdoor
    E. Sync

  • Question 623:

    Which firewall mode does a Cisco Adaptive Security Appliance use to inspect Layer 2 traffic?

    A. Routed
    B. Passive
    C. Inline
    D. Transparent

  • Question 624:

    What is a difference between weak passwords and missing encryption?

    A. Weak passwords allow programs to be renamed, and missing encryption hides .exe extensions.
    B. Weak passwords cause programs to crash, and missing encryption sends data to a memory location.
    C. Weak passwords consume bandwidth, and missing encryption allows user information to be hijacked.
    D. Weak passwords are guessed easily, and missing encryption allows information to be decrypted.

  • Question 625:

    DRAG DROP

    Drag and drop the Cisco CWS redirection options from the left onto the capabilities on the right.

    Select and Place:

  • Question 626:

    Which two behavioral patterns characterize a ping of death attack? (Choose two)

    A. The attack is fragmented into groups of 16 octets before transmission.
    B. The attack is fragmented into groups of 8 octets before transmission.
    C. Short synchronized bursts of traffic are used to disrupt TCP connections.
    D. Malformed packets are used to crash systems.
    E. Publicly accessible DNS servers are typically used to execute the attack.

  • Question 627:

    DRAG DROP

    Drag and drop the security responsibilities from the left onto the corresponding cloud service models on the right.

    Select and Place:

  • Question 628:

    Refer to the exhibit.

    Which configuration item makes it possible to have the AAA session on the network?

    A. aaa authentication login console ise
    B. aaa authentication enable default enable
    C. aaa authorization network default group ise
    D. aaa authorization exec default ise

  • Question 629:

    Which Cisco WSA feature supports access control using URL categories?

    A. transparent user identification
    B. SOCKS proxy services
    C. web usage controls
    D. user session restrictions

  • Question 630:

    An engineer is onboarding a teleworker to Cisco Umbrella. After the worker's home network identity is configured, which additional action must be taken to complete the network registration?

    A. Change the public IP addresses from static to dynamic.
    B. Point the home modem DHCP to Cisco Umbrella DHCP.
    C. Set up a point-to-point VPN with the head-office.
    D. Point the home modem DNS to Cisco Umbrella DNS.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.