최신 350-701 무료덤프 - Cisco Implementing and Operating Cisco Security Core Technologies

문제1

In a PaaS model, which layer is the tenant responsible for maintaining and patching?

A. application

B. hypervisor

C. virtual machine

D. network

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제2

An organization has DHCP servers set up to allocate IP addresses to clients on the LAN. What must be done to ensure the LAN switches prevent malicious DHCP traffic while also distributing IP addresses to the correct endpoints?

A. Configure DHCP snooping and set trusted interfaces for all client connections.

B. Configure Dynamic ARP inspection and antispoofing ACLs in the DHCP snooping database.

C. Configure DHCP snooping and set a trusted interface for the DHCP server.

D. Configure Dynamic ARP inspection and add entries in the DHCP snooping database.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which Cisco platform processes behavior baselines, monitors for deviations, and reviews for malicious processes in data center traffic and servers while performing software vulnerability detection?

A. Cisco Tetration

B. Cisco ISE

C. Cisco AMP for Network

D. Cisco AnyConnect

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Which function is the primary function of Cisco AMP threat Grid?

A. automated malware analysis

B. monitoring network traffic

C. applying a real-time URI blacklist

D. automated email encryption

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which cloud service model offers an environment for cloud consumers to develop and deploy applications without needing to manage or maintain the underlying cloud infrastructure?

A. PaaS

B. XaaS

C. SaaS

D. IaaS

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제6

Which feature is used in a push model to allow for session identification, host reauthentication, and session termination?

A. AV pair

B. AAA attributes

C. carrier-grade NAT

D. CoA request

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which Cisco security solution secures public, private, hybrid, and community clouds?

A. Cisco pxGrid

B. Cisco ISE

C. Cisco Cloudlock

D. Cisco ASAv

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제8

How does DNS Tunneling exfiltrate data?

A. An attacker sends an email to the target with hidden DNS resolvers in it to redirect them to a malicious domain.

B. An attacker registers a domain that a client connects to based on DNS records and sends malware through that connection.

C. An attacker uses a non-standard DNS port to gain access to the organization's DNS servers in order to poison the resolutions.

D. An attacker opens a reverse DNS shell to get into the client's system and install malware on it.

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which two statements about a Cisco WSA configured in Transparent mode are true? (Choose two)

A. WCCP v2-enabled devices can automatically redirect traffic destined to port 80.

B. It requires a proxy for the client web browser.

C. It requires a PAC file for the client web browser.

D. It can handle explicit HTTP requests.

E. Layer 4 switches can automatically redirect traffic destined to port 80.

정답: A,D

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Which method must be used to connect Cisco Secure Workload to external orchestrators at a client site when the client does not allow incoming connections?

A. source NAT

B. reverse tunnel

C. destination NAT

D. GRE tunnel

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제11

A customer has various external HTTP resources available including Intranet Extranet and Internet, with a proxy configuration running in explicit mode. Which method allows the client desktop browsers to be configured to select when to connect direct or when to use the proxy?

A. Bridge mode

B. Transport mode

C. PAC file

D. Forward file

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제12

A network administrator is configuring a rule in an access control policy to block certain URLs and selects the
"Chat and Instant Messaging" category. Which reputation score should be selected to accomplish this goal?

A. 1

B. 3

C. 5

D. 10

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제13

Refer to the exhibit.

What will happen when this Python script is run?

A. The compromised computers and what compromised them will be received from Cisco AMP

B. The list of computers and their current vulnerabilities will be received from Cisco AMP

C. The compromised computers and malware trajectories will be received from Cisco AMP

D. The list of computers, policies, and connector statuses will be received from Cisco AMP

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제14

What is a characteristic of Firepower NGIPS inline deployment mode?

A. ASA with Firepower module cannot be deployed.

B. It is out-of-band from traffic.

C. It must have inline interface pairs configured.

D. It cannot take actions such as blocking traffic.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

최신 350-701 무료덤프 - Cisco Implementing and Operating Cisco Security Core Technologies

우리와 연락하기

유용한 링크

최신 업데이트