400-251 Latest Exam (Aug 2018)

[Free] 2018(Aug) Ensurepass Cisco 400-251 Dumps with VCE and PDF 191-200

August 12, 2018

Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 400-251
100% Free Download! 100% Pass Guaranteed!

CCIE Security Written Exam (v5.0)

Question No: 191 – (Topic 2)

Which two options are open-source SDN controllers? (Choose two)

  1. OpenContrail

  2. OpenDaylight

  3. Big Cloud Fabric

  4. Virtual Application Networks SDN Controller

  5. Application Policy Infrastructure Controller

Answer: A,B

Question No: 192 – (Topic 2)

Which two statements about WPA 2 with AES CCMP encryption are true? (Choose two)

  1. AES CCMP is a block cipher

  2. It is compatible with TACACS servers running LEAP authentication

  3. Every wireless packet sent to the host is tagged with CCMP frames

  4. It uses a 256-bit hashing key

  5. The MIC prevents modifications of wireless frames and replay attacks

  6. It uses a 128-bit hashing key

Answer: A,F

Question No: 193 – (Topic 2)

Which command sets the Key-length for the IPv6 send protocol?

  1. IPv6 nd ns-interval

  2. Ipv6 ndra-interval

  3. IPv6 nd prefix

  4. IPv6 nd inspection

  5. IPv6 nd secured

Answer: E

Question No: 194 – (Topic 2)

What technique can an attacker use to obfuscate a malware application payload, allowing it to bypass standard security mechanisms?

  1. Teredo tunnelling

  2. Decryption

  3. A PE32 header

  4. Steganography

  5. BASE64

Answer: E

Question No: 195 – (Topic 2)

Ensurepass 2018 PDF and VCE

Refer to the exhibit which two statement about the given IPV6 ZBF configuration are true? (Choose two)

  1. It provides backward compability with legacy IPv6 inspection

  2. It inspect TCP, UDP,ICMP and FTP traffic from Z1 to Z2.

  3. It inspect TCP, UDP,ICMP and FTP traffic from Z2 to Z1.

  4. It inspect TCP,UDP,ICMP and FTP traffic in both direction between z1 and z2.

  5. It passes TCP, UDP,ICMP and FTP traffic from z1 to z2.

  6. It provide backward compatibility with legacy IPv4 inseption.

Answer: A,B

Question No: 196 – (Topic 2)

What are three pieces of data you should review in response to a suspected SSL MITM attack? (Choose three)

  1. The IP address of the SSL server

  2. The X.509 certificate of the SSL server

  3. The MAC address of the attacker

  4. The MAC address of the SSL server

  5. The X.509 certificate of the attacker

  6. The DNS name off the SSL server

Answer: A,B,F

Question No: 197 – (Topic 2)

When you are configuring QoS on the Cisco ASA appliance Which four are valid traffic selection criteria? (Choose four)

  1. default-inspection-traffic

  2. qos-group

  3. DSCP

  4. VPN group

  5. tunnel group

  6. IP precedence

Answer: A,C,E,F

Question No: 198 – (Topic 2)

Which two statements about the ISO are true? (Choose two)

  1. The ISO is a government-based organization.

  2. The ISO has three membership categories: member, correspondent, and subscribers.

  3. Only member bodies have voting rights.

  4. Correspondent bodies are small countries with their own standards organization.

  5. Subscriber members are individual organizations.

Answer: B,C

Question No: 199 – (Topic 2)

What context-based access control (CBAC. command sets the maximum time that a router running Cisco IOS Will wait for a new TCP session to reach the established state?

  1. IP inspect max-incomplete

  2. IP inspect tcp finwait-time

  3. Ip inspect udp idle-time

  4. Ip inspect tcpsynwait-time

  5. Ip inspect tcp idle-time

Answer: D

Question No: 200 – (Topic 2)

Ensurepass 2018 PDF and VCE

Refer to the exhibit. Which statement about this debug output is true ?

  1. It was generated by a LAN controller when it responded to a join request from an access point

  2. It was generated by a LAN controller when it generated a join request to an access point

  3. It was generated by an access point when it sent a join reply message to a LAN controller

  4. It was generated by an access point when it received a join request message from a LAN controller

Answer: A

100% Ensurepass Free Download!
400-251 PDF
100% Ensurepass Free Guaranteed!
400-251 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No