Cisco 400-251 Online Practice Questions and Exam Preparation

Cisco 400-251 Online Questions & Answers

• Question 281:

  Which statement is true for email processing pipeline in Cisco Email Security Appliance (ESA)?

  A. VOF (Virus Outbreak Filters) scanning is done before Graymail scanning
  B. Anti-Spam scanning is done before Anti-Virus scanning
  C. VOF (Virus Outbreak Filters) scanning is done at very beginning of the workqueue part of email pipeline
  D. Content filters are used before Message filters in ESA pipeline
  C. VOF (Virus Outbreak Filters) scanning is done at very beginning of the workqueue part of email pipeline

• Question 282:

  A customer implemented Profiling with Cisco ISE but has recently received complaints of new devices not getting the correct access permissions unless they are power cycled once after the initial attempt to connect them to the network. What is the most likely cause of this problem?

  A. Incorrect Profiling Probes have been configured on ISE.
  B. The profiling data is delayed causing the RADIUS authentication to complete before devices are profiled.
  C. The affected devices timeout their DHCP requests before Profiling completes.
  D. The CoA Type in global profiling configuration is set to "No CoA".
  E. The Minimum Certainty Factor for the profiling policies is very high.
  C. The affected devices timeout their DHCP requests before Profiling completes.

• Question 283:

  Which statement is true about Remote Triggered Black Hole Filtering feature (RTBH)?

  A. It drops malicious traffic at the customer edge router by forwarding it to a Null0 interface
  B. In RTBH filtering, the trigger device redistributes static route to the iBGP peers
  C. The Null0 interface used for filtering able to receive the traffic but never forwards it
  D. It works in conjunction with QoS to drop the traffic that has a less priority
  E. It helps mitigate DDoS attack based only on source address
  F. In RTBH filtering the trigger device is always an ISP edge router
  B. In RTBH filtering, the trigger device redistributes static route to the iBGP peers

• Question 284:

  Which of the following is the correct statement regarding enabling SMTP encryption on ESA?

  A. Enabling TLS is an optional step.
  B. TLS can be enabled only for receiving.
  C. Enabling TLS for delivery goes under the "Destination Controls" menu of mail policies.
  D. It only allows to use the self signed certificates.
  E. TLS can be enabled only for delivery.
  F. It allows to import certificate from CA.
  C. Enabling TLS for delivery goes under the "Destination Controls" menu of mail policies.

• Question 285:

  Which statement correctly describes Botnet attack?

  A. It is launched by a single machine controlled by command and control system
  B. It is a form of a fragmentation attack to evade an intrusion prevention security device
  C. It is a form of a man-in-the-middle attack where the compromised machine is controlled remotely
  D. It is launched by a collection of machines controllers by command and control system
  E. It is a form a wireless attack where attacker installs an access point to create backdoor to a network
  F. It is launched by a collection of machines to execute DDoS against the attacker
  D. It is launched by a collection of machines controllers by command and control system

• Question 286:

  On Nexus 9000, in Python interactive mode, which command is correctly used to disable an interface?

  A. cli("conf t; interface eth1/1 ; shutdown")
  B. cli("conf t"),cli("interface eth1/1"),cli("shutdown")
  C. cli("interface eth1/1 ; shutdown")
  D. cli("conf t"), cli("interface eth1/1 shutdown")
  A. cli("conf t; interface eth1/1 ; shutdown")

• Question 287:

  Which statement about managing Cisco ISE Guest Services is true?

  A. Only a Super Admin or System Admin can delete the default Sponsor portal.
  B. Only ISE administrators from an external identify store can be members of a Sponsor group.
  C. By default, an ISE administrator can manage only the guest accounts he or she created in the Sponsor portal.
  D. ISE administrators can view and set a guests password to a custom value in the Sponsor portal.
  E. ISE administrators can access the Sponsor portal only if they have valid Sponsor accounts.
  F. ISE administrators can access the Sponsor portal only from the Guest Access menu.
  E. ISE administrators can access the Sponsor portal only if they have valid Sponsor accounts.

• Question 288:

  A client computer at 10.10.7.14 is trying to access a Linux server (11.0.1.9) that is running a Tomcat Server application. What TCP dump filter would be best to verify that traffic is reaching the Linux Server eth0 interface?

  A. tcpdump -i eth0 host 10.10.7.4 and host 11.0.1.9 and port 8080
  B. tcpdump -i eth0 host 10.10.7.4 and 11.0.1.9
  C. tcpdump -i eth0 dst 11.0.1.9 and dst port 8080
  D. tcpdump -i eth0 src 10.10.7.4 and dst 11.0.1.9 and dst port 8080
  A. tcpdump -i eth0 host 10.10.7.4 and host 11.0.1.9 and port 8080

• Question 289:

  

  Refer to the exhibit. You applied this VPN cluster configuration to a Cisco ASA and the cluster failed to form. How do you edit the configuration to correct the problem?

  A. Define the maximum allowable number of VPN connections.
  B. Define the master/slave relationship.
  C. Configuer the cluster IP address.
  D. Enable load balancing.
  C. Configuer the cluster IP address.

• Question 290:

  Which requirement for the FTD high availability setup is true?

  A. Units must have the major, minor and maintenance version running on them
  B. Units must be configuration in routes mode
  C. Units must not synchronize using the same NTP source
  D. Units can have any uncommitted changes on FMC and need not be fully deployed
  E. Units must be in different domains in FMC
  F. Units must have DHCP configured for the interfaces
  G. Units must be configured In transparent mode
  A. Units must have the major, minor and maintenance version running on them