[Free] 2018(May) EnsurePass Examcollection Cisco 350-018 Dumps with VCE and PDF 171-180

Ensurepass.com : Ensure you pass the IT Exams
2018 May Cisco Official New Released 350-018
100% Free Download! 100% Pass Guaranteed!

CCIE Security Exam (v4.1)

Question No: 171 – (Topic 2)

What are two enhancements in WCCP V2.0 over WCCP V1.0? (Choose two.)

  1. support for HTTP redirection

  2. multicast support

  3. authentication support

  4. IPv6 support

  5. encryption support

Answer: B,C

Explanation: WCCP V2.0 supports the following enhancements to the WCCP V1.0 Protocol:

* Multi-Router Support.

WCCP V2.0 allows a farm of web-caches to be attached to more than one router.

  • Multicast Support.

    WCCP V2.0 supports multicasting of protocol messages between web-caches and routers.

  • Improved Security.

WCCP V2.0 provides optional authentication of protocol packets received by web- caches and routers.

  • Support for redirection of non-HTTP traffic.

    WCCP V2.0 supports the redirection of traffic other than HTTP traffic through the concept of Service Groups.

  • Packet return.

WCCP V2.0 allows a web-cache to decline to service a redirected packet and to return it to a router to be forwarded. The method by which packets are returned to a router is negotiable.

Reference: https://tools.ietf.org/id/draft-wilson-wrec-wccp-v2-01.txt

Question No: 172 – (Topic 2)

What are the three probes supported by Cisco ISE profiling services? (Choose three)

  1. NetFlow (NetFlow Probe)

  2. DHCP (DHCP Probe)

  3. DHCP SPAN (DHCP SPAN Probe)

  4. HTTP (HTTP Probe)

  5. HTTP SPAN (HTTP SPAN Probe)

  6. RADIUS (RADIUS Probe)

  7. Network Scan (Network Scan Probe)

  8. DNS (DNS Probe)

  9. SNMP Query (SNMP Query Probe)

  10. SNMP Trap (SNMP Trap Probe)

Answer: A,B,D

Question No: 173 – (Topic 2)

Which two statements about TrustSec are true? (Choose two)

  1. It can simplify the management and configuration of security policies

  2. It can simplify the ASA management and configuration

  3. It can simplify SG-ACL provisioning to network router and switches

  4. It can apply access-control policies throughout the network

  5. It is a part of Cisco commerce work space

Answer: C,D

Question No: 174 – (Topic 2)

What is the default communication port used by RSA SDI and ASA?

  1. UDP 5500

  2. UDP 848

  3. UDP 500

  4. UDP 4500

Answer: A

Question No: 175 – (Topic 2)

Which two statements about ISO 27001 are true? (Choose two.)

  1. It is closely aligned to ISO 22000 standards.

  2. It is an ISO 17799 code of practice.

  3. It is an Information Security Management Systems specification.

  4. It is a code of practice for Informational Social Management.

  5. It was formerly known as BS7799-2.

Answer: C,E

Question No: 176 – (Topic 2)

Which statement describes RA?

  1. The RA is not responsible to verify users request for digital certificates.

  2. The RA is part of private key infrastructure.

  3. The RA has the power to accept registration requests and to issue certificates.

  4. The RA only forwards the requests to the CA to issue certificates.

Answer: D

Question No: 177 – (Topic 2)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

What is the effect of the given service policy configuration?

  1. It blocks cisco.com, msn.com, and facebook.com and permits all other domains.

  2. It blocks all domains except facebook.com, msn.com, cisco.com and google.com

  3. It blocks all domains except cisco.com, msn.com, and facebook.com

  4. It blocks facebook.com, msn.com, cisco.com and google.com, and permits all other domains

Answer: B

Question No: 178 – (Topic 2)

Your coworker is working on a project to prevent DDoS and ingress filtering and needs advice on the standard and associated process for a single-homed network. Which two options do you suggest? (Choose two.)

  1. RFC 5735

  2. RFC 3704

  3. BCP 84

  4. BCP 38

  5. RFC 2827

Answer: D,E

Question No: 179 – (Topic 2)

Refer to the exhibit.

Ensurepass 2018 PDF and VCE

What is the purpose of the command in the NAT-PT for IPv6 implementation on a Cisco IOS device?

  1. It defines address pool used by the IPv6 access-list.

  2. It defines the IPv4 address pool used by the NAT-PT for dynamic address mapping.

  3. It defines address pool used by the IPv4 access-list.

  4. It defines the IPv6 address pool used by the NAT-PT for dynamic address mapping.

  5. It defines the IPv4 address pool used by the NAT-PT for static address mapping

Answer: B Explanation:

ipv6 nat v6v4 pool name start-ipv4 end-ipv4 prefix-length prefix-length Example:

Device(config)# ipv6 nat v6v4 pool v4pool 10.21.8.1 10.21.8.10 prefix-length 24

Specifies a pool of IPv4 addresses to be used by NAT-PT for dynamic address mapping.

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/15- mt/nat-15-mt-book/ip6-natpt.html

Question No: 180 – (Topic 2)

Which two of the following pieces of information are communicated by the ASA in version

8.4 or later when the Stateful Failover is enabled? (Choose two.)

  1. DHCP server address leases.

  2. dynamic routing tables

  3. power status

  4. NAT translation table

  5. user authentication

Answer: B,D

Reference: http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_co nfig/ha_overview.html#wp1078922

100% Ensurepass Free Download!
Download Free Demo:350-018 Demo PDF
100% Ensurepass Free Guaranteed!
Download 2018 EnsurePass 350-018 Full Exam PDF and VCE

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No