1. Home
  2. Cisco
  3. 351-018

Cisco 351-018 Online Practice Questions and Exam Preparation

351-018 Exam Details

  • Exam Code
    :351-018
  • Exam Name
    :CCIE Security written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :420 Q&As
  • Last Updated
    :Dec 09, 2021

Cisco 351-018 Online Questions & Answers

  • Question 61:

    An attacker configures an access point to broadcast the same SSID that is used at a public hot- spot, and launches a deauthentication attack against the clients that are connected to the hot-spot, with the hope that the clients will then associate to the AP of the attacker.

    In addition to the deauthentication attack, what attack has been launched?

    A. man-in-the-middle
    B. MAC spoofing
    C. Layer 1 DoS
    D. disassociation attack

  • Question 62:

    In what subnet does address 192.168.23.197/27 reside?

    A. 192.168.23.0
    B. 192.168.23.128
    C. 192.168.23.160
    D. 192.168.23.192
    E. 192.168.23.196

  • Question 63:

    Refer to the exhibit.

    With the client protected by the firewall, an HTTP connection from the client to the server on TCP port 80 will be subject to which action?

    A. inspection action by the HTTP_CMAP
    B. inspection action by the TCP_CMAP
    C. drop action by the default class
    D. inspection action by both the HTTP_CMAP and TCP_CMAP
    E. pass action by the HTTP_CMAP
    F. drop action due to class-map misclassification

  • Question 64:

    Which of these is a core function of the risk assessment process? (Choose one.)

    A. performing regular network upgrades
    B. performing network optimization
    C. performing network posture validation
    D. establishing network baselines
    E. prioritizing network roll-outs

  • Question 65:

    Which four configuration steps are required to implement a zone-based policy firewall configuration on a Cisco IOS router? (Choose four.)

    A. Create the security zones and security zone pairs.
    B. Create the self zone.
    C. Create the default global inspection policy.
    D. Create the type inspect class maps and policy maps.
    E. Assign a security level to each security zone.
    F. Assign each router interface to a security zone.
    G. Apply a type inspect policy map to each zone pair.

  • Question 66:

    Which three statements about NetFlow version 9 are correct? (Choose three.)

    A. It is backward-compatible with versions 8 and 5.
    B. Version 9 is dependent on the underlying transport; only UDP is supported.
    C. A version 9 export packet consists of a packet header and flow sets.
    D. Generating and maintaining valid template flow sets requires additional processing.
    E. NetFlow version 9 does not access the NetFlow cache entry directly.

  • Question 67:

    Which layer of the OSI model is referenced when utilizing http inspection on the Cisco ASA to filter Instant Messaging or Peer to Peer networks with the Modular Policy Framework?"

    A. application layer
    B. presentation layer
    C. network layer
    D. transport layer

  • Question 68:

    What type of attack consists of injecting traffic that is marked with the DSCP value of EF into the network?

    A. brute-force attack
    B. QoS marking attack
    C. DHCP starvation attack
    D. SYN flood attack

  • Question 69:

    Which three statements are true about MACsec? (Choose three.)

    A. It supports GCM modes of AES and 3DES.
    B. It is defined under IEEE 802.1AE.
    C. It provides hop-by-hop encryption at Layer 2.
    D. MACsec expects a strict order of frames to prevent anti-replay.
    E. MKA is used for session and encryption key management.
    F. It uses EAP PACs to distribute encryption keys.

  • Question 70:

    Refer to the exhibit.

    Which message could contain an authenticated initial_contact notify during IKE main mode negotiation?

    A. message 3
    B. message 5
    C. message 1
    D. none, initial_contact is sent only during quick mode
    E. none, notify messages are sent only as independent message types

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 351-018 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.