Cisco 400-251 Online Practice Questions and Exam Preparation

Cisco 400-251 Online Questions & Answers

• Question 301:

  In TLS implementation on the Cisco Email Security Appliance cluster, the machine is removed from the cluster and then added back. Which description of what happens to the machine-level certificate is true?

  A. ESA cannot provide privacy for point-to-point transmission of emails through encryption
  B. The machine-level certificates are lost
  C. The machine-level certificates are rebuilt by RAID 5
  D. The cluster goes down.
  C. The machine-level certificates are rebuilt by RAID 5

• Question 302:

  

  Refer to the exhibit. ASA at 1ess to SGT mapping from ISE at 161.1.7.14. Which of the following is true regarding packet capture from wireshark?

  A. SXP keep alive message using TCP originated from ISE
  B. ISE keep alive message for NDAC connection using TCP originated from ASA
  C. TACACS connection keep alive using UDP originated from ASA
  D. RADIUS connection keep alive using TCP originated from ISE
  E. NTP keep alive message using USP originated from ISE
  F. SXP keep alive message for SXP connection using UDP originated from ASA
  A. SXP keep alive message using TCP originated from ISE

• Question 303:

  DRAG DROP

  Drag and drop ESP header field on the left to the appropriate field length on the right.

  Select and Place:

  

  

• Question 304:

  Which statement about deploying policies with the Firepower Management Center is true?

  A. All policies are deployed on-demand when the administrator triggers them.
  B. Deploy tasks can be scheduled to deploy policies automatically.
  C. The leaf domain can deploy changes to all subdomains simultaneously.
  D. The global domain can deploy changes to individual subdomains.
  E. Policies are deployed automatically when the administrator saves them.
  B. Deploy tasks can be scheduled to deploy policies automatically.

• Question 305:

  Which statement is true about Social Engineering attack?

  A. It uses the reconnaissance method for exploitation.
  B. It is a method of extracting a non-confidential information.
  C. The Phishing technique is one of the ways to launch the attack.
  D. It is always performed through an email from a person that you know.
  E. It is always done by having malicious ads on untrusted websites for the users to browse.
  F. It can be only done by a person who is not part of the organization.
  A. It uses the reconnaissance method for exploitation.

• Question 306:

  

  Refer to the exhibit. A user authenticates to the NAS , which communicates to the TACACS+ sever for authentication. The TACACS+ server then accesses the Active Directory Server through the firewall to validate the user credentials. Which protocol-port pair must be allow access through the ASA Firewall?

  A. SMB over TCP 455
  B. DNS over UDP 53
  C. LDAP over UDP 389
  D. global catalog over UDP 3268
  E. TACACS+ over TCP 49
  F. DNS over TCP 53
  C. LDAP over UDP 389

• Question 307:

  What are two types of attacks against wireless networks that can be prevented by a WLC? (Choose two)

  A. DHCP rouge server attacks
  B. Layer 3 flooding attacks
  C. Inverse ARP attacks on specific ports
  D. IP spoofing attacks
  E. ARP sniffing attacks on specific ports
  A. DHCP rouge server attacks
  D. IP spoofing attacks

• Question 308:

  DRAG DROP

  Drag each IPv6 extension header on the left into the recommended order for more than one extension header In the same IPv6 packet on the right?

  Select and Place:

  

  

• Question 309:

  Drag the network scan type on the left to its definition on the right

  Select and Place:

  

  

• Question 310:

  Which feature of WEP was intended to prevent an attacker from altering and resending data packets over a WEP connection?

  A. The RC4 cipher
  B. Transport Layer Security
  C. Message Integrity checks
  D. MD5 hashing
  E. The cyclic redundancy check
  C. Message Integrity checks