CCIE Security

Pass4Test의 완벽한 Cisco 350-018 (CCIE Security Written Exam v4.0)덤프는 고객님이  Cisco 350-018 (CCIE Security Written Exam v4.0)시험을 패스하는 지름길입니다. 시간과 돈을 적게 들이는 반면 효과는 십점만점에 십점입니다. Pass4Test의 Cisco 350-018 (CCIE Security Written Exam v4.0)덤프를 선택하시면 고객님께서 원하시는 시험점수를 받아 자격증을 쉽게 취득할수 있습니다.

NO.1 Which IPV4 header field increments every time when packet is sent from a source to a
destination?
A. Flag
B. Fragment Offset
C. Identification
D. Time To Live
Answer: C

NO.2 Which standard prescribes a risk assessment to identify whether each control is required to
decrease risks and if so, to which extent it should be applied?
A. ISO 27001
B. ISO 27002
C. ISO 17799
D. HIPPA
E. ISO 9000
Answer: A

NO.3 Which three options are the types of zones that are defined for anomaly detection on the Cisco
IPS Sensor? (Choose three.)
A. inside
B. outside
C. internal
D. external
E. illegal
F. baseline
Answer: C,D,E

NO.4 Refer to the exhibit.
On R1, encrypt counters are incrementing. On R2, packets are decrypted, but the encrypt counter is
not being incremented. What is the most likely cause of this issue?
A. a routing problem on R1
B. a routing problem on R2
C. incomplete IPsec SA establishment
D. crypto engine failure on R2
E. IPsec rekeying is occurring
Answer: B

NO.5 Refer to the exhibit.
What will be the default action?
A. HTTP traffic to the Facebook, Youtube, and Twitter websites will be dropped.
B. HTTP traffic to the Facebook and Youtube websites will be dropped.
C. HTTP traffic to the Youtube and Twitter websites will be dropped.
D. HTTP traffic to the Facebook and Twitter websites will be dropped.
Answer: D

NO.6 Identify three IPv6 extension headers? (Choose three.)
A. traffic class
B. flow label
C. routing
D. fragment
E. encapsulating security payload
Answer: C,D,E

NO.7 Which two options correctly describe Remote Triggered Black Hole Filtering (RFC 5635)?
(Choose two.)
A. RTBH destination based filtering can drop traffic destined to a host based on triggered entries in
the FIB.
B. RTBH source based filtering will drop traffic from a source destined to a host based on triggered
entries in the RIB
C. Loose uRPF must be used in conjunction with RTBH destination based filtering
D. Strict uRPF must be used in conjunction with RTBH source based filtering
E. RTBH uses a discard route on the edge devices of the network and a route server to send triggered
route updates
F. When setting the BGP community attribute in a route-map for RTBH use the no-export community
unless BGP confederations are used then use local-as to advertise to sub-as confederations
Answer: A,E

NO.8 Which three basic security measures are used to harden MSDP? (Choose three.)
A. MSDP SA filters
B. MSDP state limitation
C. MSDP MD5 neighbor authentication
D. MSDP neighbor limitation
E. loopback interface as MSDP originator-ID
Answer: A,B,C