400-251 Latest Exam (Aug 2018)

[Free] 2018(Aug) Ensurepass Cisco 400-251 Dumps with VCE and PDF 71-80

August 12, 2018

Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 400-251
100% Free Download! 100% Pass Guaranteed!

CCIE Security Written Exam (v5.0)

Question No: 71 – (Topic 1)

In Which type of multicast does the Cisco ASA forward IGMP messages to the upstream router?

  1. clustering

  2. PIM multicast routing

  3. sub multicast routing

  4. multicast group concept

Answer: C

Question No: 72 – (Topic 1)

AMP for Endpoints is supported on Which of these platforms?

  1. Windows, MAC,ANDROID.



  4. Windows, ANDROID, LINUX(REDHAT, Centos)MAC.

Answer: D

Question No: 73 – (Topic 1)

In which two situations is web authentication appropriate?(Choose two)

  1. When secure connections to the network are unnecessary.

  2. When a fallback authentication method is necessary.

  3. When 802.1x authentication is required.

  4. When devices outside the control of the organization’s IT department are permitted to connect to the network.

  5. When WEP encryption must be deployed on a large scale

Answer: B,C

Question No: 74 – (Topic 1)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

Which effect of this configuration is true?

  1. If the RADIUS server is unreachable, SSH users cannot authenticate.

  2. All commands are validated by the RADIUS server before thedevice executes them.

  3. Only SSH users are authenticated against the RADIUS server.

  4. Users must be in the RADIUS server to access the serial console.

  5. Users accessing the device via SSH and those assessing enable mode are authenticated against the RADIUS server.

Answer: E

Question No: 75 – (Topic 1)

Refer to exhibit

Ensurepass 2018 PDF and VCE

You applied this CPN cluster configuration to n a Cisco ASA and the cluster failed to form. How do you edit the configuration to correct the problem?

  1. Define the maximum allowable number of VPN connections.

  2. Define the master/slave relationship.

  3. Configure the cluster IP address.

  4. Enable load balancing.

Answer: C

Question No: 76 – (Topic 1)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

Which effect of this configuration is true?

  1. It allows each context to use all available resources.

  2. It over sub scribes VPN session for the given class.

  3. It creates a default class.

  4. It creates a resource class

Answer: D

Question No: 77 – (Topic 1)

Which two statements about the TTL value in an IPv4 header are true?(Choose two)

  1. It is a 4-bit value.

  2. It can be used for trace route operations.

  3. When it reaches 0,the router sends an ICMP Type 11 message to the originator.

  4. Its maximum value is 128.

  5. It is a 16-bit value.

Answer: B,C

Question No: 78 – (Topic 1)

Which three Cisco attributes for LDAP authorization are supported on the ASA? (Choose three)

  1. L2TP-Encryption

  2. Web-VPN-ACL-Filters

  3. IPsec-Client-Firewall-Filter-Name

  4. Authenticated-User-Idle-Timeout

  5. IPsec-Default-Domain

  6. Authorization-Type

Answer: B,D,E

Question No: 79 – (Topic 1)

Which two design options are best to reduce security concerns when adopting loT into an organization?(Choose two)

  1. Ensure that applications can gather and analyze data at the edge.

  2. Implement video analytics on IP cameras.

  3. Encrypt sensor data in transit.

  4. Segment the Field Area Network form the Data Center network.

  5. Encrypt data at rest on all devices in the IOT network.

Answer: D,E

Question No: 80 – (Topic 1)

Which type of header attack is detected by Cisco ASA basic threat detection?

  1. Connection limit exceeded.

  2. Denial by access list.

  3. Failed application inspection.

  4. Bad packet format.

Answer: D

100% Ensurepass Free Download!
400-251 PDF
100% Ensurepass Free Guaranteed!
400-251 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No