[Free] 2018(Aug) Ensurepass Cisco 350-018 Dumps with VCE and PDF 301-310

Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 350-018
100% Free Download! 100% Pass Guaranteed!

CCIE Security Exam (v4.1)

Question No: 301 – (Topic 4)

Which IPS module can be installed on the Cisco ASA 5520 appliance?

  1. IPS-AIM

  2. AIP-SSM

  3. AIP-SSC

  4. NME-IPS-K9

  5. IDSM-2

Answer: B

Question No: 302 – (Topic 4)

Which two options describe the main purpose of EIGRP authentication? (Choose two.)

  1. To identify authorized peers.

  2. To allow faster convergence

  3. To provide redundancy

  4. To prevent injection of incorrect routing information.

  5. To provide routing updates confidentiality

Answer: A,D

Question No: 303 – (Topic 4)

Which action is performed first on the Cisco ASA appliance when it receives an incoming packet on its outside interface?

  1. check if the packet is permitted or denied by the inbound ACL applied to the outside interface

  2. check if the packet is permitted or denied by the global ACL

  3. check if the packet matches an existing connection in the connection table

  4. check if the packet matches an inspection policy

  5. check if the packet matches a NAT rule

  6. check if the packet needs to be passed to the Cisco ASA AIP-SSM for inspections

Answer: C

Question No: 304 – (Topic 4)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

If SW4 is sending superior BPDUs, where should the root guard feature be configured to preserve SW3 as a root bridge?

  1. SW4 Gi0/0 interface.

  2. Sw3 Gi0/0 interface.

  3. Sw2 Gi0/1 interface.

  4. SW2 Gi0/1 and SW3 Gi0/1

Answer: C

Question No: 305 – (Topic 4)

Which two methods are used for forwarding traffic to the Cisco ScanSafe Web Security service? (Choose two.)

  1. Cisco AnyConnect VPN Client with Web Security and ScanSafe subscription

  2. Cisco ISR G2 Router with SECK9 and ScanSafe subscription

  3. Cisco ASA adaptive security appliance using DNAT policies to forward traffic to ScanSafe subscription servers

  4. Cisco Web Security Appliance with ScanSafe subscription

Answer: B,C

Question No: 306 – (Topic 4)

Which two statements about DHCP are true? (Choose two.)

  1. DHCP uses TCP port 67.

  2. DHCP uses UDP ports 67 and 68.

  3. The DHCPDiscover packet has a multicast address of 239.1.1.1.

  4. DHCPRequest is a broadcast message.

  5. The DHCPOffer packet is sent from the DHCP server.

Answer: B,E

Question No: 307 – (Topic 4)

Which two statements about NHRP are true? (Choose two.)

  1. NHRP is used for broadcast multi-access networks.

  2. NHRP allows NHC to dynamically learn the mapping of VPN IP to NBMA IP.

  3. NHRP allows NHS to dynamically learn the mapping of VPN IP to BMA IP.

  4. NHC registers with NHS.

  5. Traffic between two NHCs always flows through the NHS.

  6. NHRP provides Layer-2 to Layer-3 address mapping.

Answer: B,D

Question No: 308 – (Topic 4)

When is the supplicant considered to be clientless?

  1. when the authentication server does not have credentials to authenticate.

  2. when the authenticator is missing the dot1x guest VLAN under the port with which the supplicant is connected.

  3. when the supplicant fails EAP-MD5 challenge with the authentication server.

  4. when the supplicant fails to respond to EAPOL messages from the authenticator.

  5. when the authenticator is missing the reauthentication timeout configuration under the port with which the supplicant is connected.

Answer: D

Question No: 309 – (Topic 4)

Which three RADIUS protocol statements are true? (Choose three.)

  1. RADIUS protocol runs over TCP 1645 and 1646.

  2. Network Access Server operates as a server for RADIUS.

  3. RADIUS packet types for authentication include Access-Request, Access-Challenge, Access-Accept, and Access-Reject.

  4. RADIUS protocol runs over UDP 1812 and 1813.

  5. RADIUS packet types for authentication include Access-Request, Access-Challenge, Access-Permit, and Access-Denied.

  6. RADIUS supports PPP, PAP, and CHAP as authentication methods.

Answer: C,D,F

Question No: 310 – (Topic 4)

Which two MAC authentication methods are supported on WLCs? (Choose two.)

  1. local MAC authentication

  2. MAC authentication using a RADIUS server

  3. MAC authentication using tokens

  4. MAC authentication using a PIN

Answer: A,B

100% Ensurepass Free Download!
350-018 PDF
100% Ensurepass Free Guaranteed!
350-018 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.