1. Home
  2. Cisco
  3. 400-251

Cisco 400-251 Online Practice Questions and Exam Preparation

400-251 Exam Details

  • Exam Code
    :400-251
  • Exam Name
    :CCIE Security Written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :665 Q&As
  • Last Updated
    :Dec 10, 2021

Cisco 400-251 Online Questions & Answers

  • Question 251:

    Which encryption type is used by ESA for implementing the Email Encryption?

    A. PKI
    B. S/MIME Encryption
    C. Identity Based Encryption(IBE)
    D. TLS
    E. SSL Encryption

  • Question 252:

    Refer the exhibit. Which Cisco Firepower policy has detected a "CnC connected" indicator of compromise event?

    A. DNS policy
    B. Network analysis policy
    C. Identify policy
    D. SSL policy
    E. File policy
    F. Intrusion policy

  • Question 253:

    Which two design options are best to reduce security concerns when adopting loT into an organization? (Choose two) A. Segment the Field Area Network from the Data Center network.

    B. Encypt sensor data in transit
    C. Ensure that application can gather and analyze data at the edge.
    D. Implement video analytics on IP cameras.
    E. Encrypt data at rest on all devices in the loT network.

  • Question 254:

    What are three features that are enabled by generating Change of Authorization (CoA) requests in a push model? (Choose three)

    A. session reauthentication
    B. session identification
    C. host reauthentication
    D. MAC identification
    E. session termination
    F. host termination

  • Question 255:

    Which of the following could be an evasion technique used by the attacker?

    A. Port access using Dot1x
    B. ACL implementation to drop unwanted traffic
    C. TELNET to launch device administration session
    D. Traffic encryption to bypass IPS detection
    E. URL filtering to block malicious sites
    F. NAT translations on routers and switches

  • Question 256:

    Which three policies are building blocks of vSmart policies architecture? (Choose three.)

    A. data policy
    B. control policy
    C. site policy
    D. bandwidth policy
    E. service policy
    F. application aware policy

  • Question 257:

    Refer to the exhibit. Users cannot access web servers 192.168.101.3/24 and 192.168.102.3/24 using Are Fox web browser when initiated from 172.61.1.0/24 network. Which possible cause is true?

    A. The access policy "Allow policy" is porting to an incorrect identification profile
    B. The identification profile "Allowed Profile" has a misconfigured user agent
    C. The custom URL cat egory "Allowed Sites" has an Incorrect server address listed
    D. The identification profile "Allow Profile" has an incorrect protocol
    E. The access policy "Allow Polley" has an Incorrect action set for the custom URL category
    F. The identification profile "allow profile" has an incorrect source network

  • Question 258:

    Refer to the exhibit, which type of attack is illustrated?

    A. ARP spoofing
    B. CAM overflow
    C. IP address spoofing
    D. ICMP flood

  • Question 259:

    Refer to the exhibit. Which effect of this configuration is true?

    A. The downloadable ACL and AV pair ACL are merged after three connection attempts are made to the RADIUS server.
    B. The downloadable ACL and AV pair ACL are merged immediately when the RADIUS server is activated.
    C. For all users, entries in a downloadable ACL are given priority over entries in an AC pair ACL.
    D. The downloadable ACL and AV pair ACL entries are merged together,one ACE at a time.
    E. A downloadable ACL is applied after an AV pair ACL.

  • Question 260:

    Which statement is true about Social Engineering attack?

    A. It uses the reconnaissance method for exploitation.
    B. It is a method of extracting a nonconfidential information.
    C. The "Phishing" technique is one of the ways to launch the attack.
    D. It is always performed through an email from a person that you know.
    E. It is always done by having malicious ads on untrusted websites for the users to browse.
    F. It can be only done by a person who is not part of the organization.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 400-251 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.