A. by flooding the destination host with unreachable packets B. by sending large numbers of ICMP packets with a targeted hosts source IP address using an IP broadcast address C. by encrypting the payload in an ICMP packet to carry out command and control tasks on a compromised host D. by overwhelming a targeted host with ICMP echo-request packets
C. by encrypting the payload in an ICMP packet to carry out command and control tasks on a compromised host
Explanation
Question 763:
Refer to the exhibit.
Consider that any feature of DNS requests, such as the length off the domain name and the number of subdomains, can be used to construct models of expected behavior to which observed values can be compared. Which type of malicious attack are these values associated with?
A. Spectre Worm B. Eternal Blue Windows C. Heartbleed SSL Bug D. W32/AutoRun worm
D. W32/AutoRun worm
Explanation
Question 764:
An engineer has been tasked with implementing a solution that can be leveraged for securing the cloud users, data, and applications. There is a requirement to use the Cisco cloud native CASB and cloud cybersecurity platform. What should be used to meet these requirements?
A. Cisco Umbrella B. Cisco Cloud Email Security C. Cisco NGFW D. Cisco Cloudlock
A security engineer must add destinations into a destination list in Cisco Umbrella. What describes the application of these changes?
A. The changes are applied immediately if the destination list is part of a policy. B. The destination list must be removed from the policy before changes are made to it. C. The changes are applied only after the configuration is saved in Cisco Umbrella. D. The user role of Block Page Bypass or higher is needed to perform these changes.
A. The changes are applied immediately if the destination list is part of a policy.
Explanation
Question 766:
What are two facts about WSA HTTP proxy configuration with a PAC file? (Choose two.)
A. It is defined as a Transparent proxy deployment. B. In a dual-NIC configuration, the PAC file directs traffic through the two NICs to the proxy. C. The PAC file, which references the proxy, is deployed to the client web browser. D. It is defined as an Explicit proxy deployment. E. It is defined as a Bridge proxy deployment.
C. The PAC file, which references the proxy, is deployed to the client web browser. D. It is defined as an Explicit proxy deployment.
Explanation
Question 767:
An engineer wants to generate NetFlow records on traffic traversing the Cisco ASA. Which Cisco ASA command must be used?
A. flow-export destination inside 1.1.1.1 2055 B. ip flow monitor input C. ip flow-export destination 1.1.1.1 2055 D. flow exporter
Which feature is supported when deploying Cisco ASAv within AWS public cloud?
A. multiple context mode B. user deployment of Layer 3 networks C. IPv6 D. clustering
B. user deployment of Layer 3 networks
Explanation
The ASAv on AWS supports the following features:+ Support for Amazon EC2 C5 instances, the next generation of the Amazon EC2 Compute Optimized instancefamily.+ Deployment in the Virtual Private Cloud (VPC)+ Enhanced networking (SR-IOV) where available+ Deployment from Amazon Marketplace+ Maximum of four vCPUs per instance+ User deployment of L3 networks+ Routed mode (default)Note: The Cisco Adaptive Security Virtual Appliance (ASAv) runs the same software as physical Cisco ASAs to deliver proven security functionality in a virtual form factor. The ASAv can be deployed in the public AWS cloud.It can then be configured to protect virtual and physical data center workloads that expand, contract, or shift their location over time. Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa96/asav/quick-start- book/asav-96 qsg/asavaws.html
Question 769:
Which two parameters are used to prevent a data breach in the cloud? (Choose two.)
A. DLP solutions B. strong user authentication C. encryption D. complex cloud-based web proxies E. antispoofing programs
B. strong user authentication C. encryption
Explanation
Question 770:
How is Cisco Umbrella configured to log only security events?
A. per policy B. in the Reporting settings C. in the Security Settings section D. per network in the Deployments section
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only Cisco exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your 350-701 exam preparations
and Cisco certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.