Exam Code: 350-018 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: CCIE Pre-Qualification Test for Security
Certification Provider: Cisco
Free Today! Guaranteed Training- Pass 350-018 Exam.
2021 Jun 350-018 Study Guide Questions:
Q91. Refer to the exhibit.
What will be the default action?
A. HTTP traffic to the Facebook, Youtube, and Twitter websites will be dropped.
B. HTTP traffic to the Facebook and Youtube websites will be dropped.
C. HTTP traffic to the Youtube and Twitter websites will be dropped.
D. HTTP traffic to the Facebook and Twitter websites will be dropped.
Q92. Which of the following provides the features of route summarization, assignment of contiguous blocks of addresses, and combining routes for multiple classful networks into a single route?
A. classless interdomain routing
B. route summarization
D. private IP addressing
Q93. Which four IPv6 messages should be allowed to transit a transparent firewall? (Choose four.)
A. router solicitation with hop limit = 1
B. router advertisement with hop limit = 1
C. neighbor solicitation with hop limit = 255
D. neighbor advertisement with hop limit = 255
E. listener query with link-local source address
F. listener report with link-local source address
Up to date 350-018 braindump:
Q94. Which statement describes the computed authentication data in the AH protocol?
A. The computed authentication data is never sent across.
B. The computed authentication data is part of a new IP header.
C. The computed authentication data is part of the AH header.
D. The computed authentication data is part of the original IP header.
Q95. Refer to the exhibit.
To configure the Cisco ASA, what should you enter in the Name field, under the Group Authentication option for the IPSec VPN client?
A. group policy name
B. crypto map name
C. isakmp policy name
D. crypto ipsec transform-set name
E. tunnel group name
Q96. Which layer of the OSI reference model typically deals with the physical addressing of interface cards?
A. physical layer
B. data-link layer
C. network layer
D. host layer
Realistic 350-018 pdf download:
Q97. Which type of PVLAN ports can communicate among themselves and with the promiscuous port?
Q98. Refer to the exhibit.
Which statement correctly describes the configuration?
A. The configuration is the super view configuration of role-based access control.
B. The configuration would not work unless the AAA server is configured for authentication and authorization.
C. The exec commands in the configuration will be excluded from the test view.
D. The configuration is the CLI configuration of role-based access control.
Q99. Which two statements about NHRP are true? (Choose two.)
A. NHRP is used for broadcast multi-access networks.
B. NHRP allows NHC to dynamically learn the mapping of VPN IP to NBMA IP.
C. NHRP allows NHS to dynamically learn the mapping of VPN IP to BMA IP.
D. NHC registers with NHS.
E. Traffic between two NHCs always flows through the NHS.
F. NHRP provides Layer-2 to Layer-3 address mapping.
Q100. Which three statements are true about the Cisco NAC Appliance solution? (Choose three.)
A. In a Layer 3 OOB ACL deployment of the Cisco NAC Appliance, the discovery host must be configured as the untrusted IP address of the Cisco NAC Appliance Server.
B. In a Cisco NAC Appliance deployment, the discovery host must be configured on a Cisco router using the "NAC discovery-host" global configuration command.
C. In a VRF-style OOB deployment of the Cisco NAC Appliance, the discovery host may be the IP address that is on the trusted side of the Cisco NAC Appliance Server.
D. In a Layer 3 IB deployment of the Cisco NAC Appliance, the discovery host may be configured as the IP address of the Cisco NAC Appliance Manager.