Ensurepass.com : Ensure you pass the IT Exams
2018 Aug Cisco Official New Released 400-251
100% Free Download! 100% Pass Guaranteed!
CCIE Security Written Exam (v5.0)
Question No: 91 – (Topic 1)
Refer to the exhibit.
What are two effects of the given configuration?(Choose two)
-
TCP connections will be completed only to TCP ports from 1 to 1024.
-
FTP clients will be able to determine the server’s system type
-
The client must always send the PASV reply.
-
The connection will remain open if the size of the STOP command is greater than a fixed constant.
-
The connection will remain open if the PASV reply command includes 5 commas.
Answer: B,E
Question No: 92 – (Topic 1)
Which two statements about MAB are true?(Choose two)
-
It requires the administratorto create and maintain an accurate database of MAC address.
-
It server at the primary authentication mechanism when deployed in conjunction with 802.1x.
-
It operates at layer 2 and layer 3 of the OSI protocol stack.
-
It can be used to authenticate network devices and users.
-
MAC addresses stored in the MAB database can be spoofed.
-
It is a strong authentication method.
Answer: A,E
Topic 2, Exam Pool B
Question No: 93 – (Topic 2)
Refer to the exhibit. Which statement about the effect of this configuration is true?
-
reply protection is disable
-
It prevent man-in-the-middle attacks
-
The replay window size is set to infinity
-
Out-of-order frames are dropped
Answer: D
Question No: 94 – (Topic 2)
Refer to the exhibit. What is the meaning of the given error massage ?
-
Ike is disable on the remote peer
-
The mirrored crypto ACLs are mismatched
-
The pre-shared keys are mismatched
-
The PFS group are mismatched
Answer: C
Question No: 95 – (Topic 2)
Refer to the exhibit. What type of attack is represented in the given Wireshark packet capture?
-
a SYN flood
-
spoofing
-
a duplicate ACK
-
TCP congestion control
-
a shrew attack
Answer: A
Question No: 96 – (Topic 2)
Which two network protocols can operate on the Application Layer?(Choose two)
-
DNS
-
UDP
-
TCP
-
NetBIOS
-
DCCP
-
SMB
Answer: A,F
Question No: 97 – (Topic 2)
Which option is a benefit of implementing RFC 2827?
-
prevents DoS from legitimate, non-hostile end systems
-
prevents disruption of special services such as Mobile IP
-
defeats DoS attacks which employ IP source address spoofing
-
restricts directed broadcasts at the ingress router
-
allows DHCP or BOOTP packets to reach the relay agents as appropriate
Answer: C
Question No: 98 – (Topic 2)
Which two statement about router Advertisement message are true? (Choose two)
-
Local link prefixes are shared automatically.
-
Each prefix included in the advertisement carries lifetime information f Or that prefix.
-
Massage are sent to the miscast address FF02::1
-
It support a configurable number of retransmission attempts for neighbor solicitation massage.
-
Flag setting are shared in the massage and retransmitted on the link.
-
Router solicitation massage are sent in response to router advertisement massage
Answer: A,F
Question No: 99 – (Topic 2)
What is the maximum pattern length supported by FPM searches within a packet ?
-
256 bytes B.1500 bytes
-
512 bytes
-
128 bytes
Answer: A
Question No: 100 – (Topic 2)
Which two options are differences between automation and orchestration? (Choose two)
-
Automation is to be used to replace human intervention
-
Automation is focused on automating a single or multiple tasks
-
Orchestration is focused on an end-to-end process or workflow
-
Orchestration is focused on multiple technologies to be integrated together
-
Automation is an IT workflow composed of tasks, and Orchestration is a technical task
Answer: B,C
100% Ensurepass Free Download!
–400-251 PDF
100% Ensurepass Free Guaranteed!
–400-251 Dumps
| EnsurePass | ExamCollection | Testking | |
|---|---|---|---|
| Lowest Price Guarantee | Yes | No | No |
| Up-to-Dated | Yes | No | No |
| Real Questions | Yes | No | No |
| Explanation | Yes | No | No |
| PDF VCE | Yes | No | No |
| Free VCE Simulator | Yes | No | No |
| Instant Download | Yes | No | No |