Free Online Cisco 350-701 Practice Test

Prepare Your Cisco 350-701 Exam Questions with Free online 350-701 Practice Test. Get Brilliant Implementing and Operating Cisco Security Core Technologies Exam Results with Valid 350 701 Exam Dumps.

Page: 1 / 123

Total 615 Questions | Updated On: Apr 22, 2024

Question 1

Which IETF attribute is supported for the RADIUS CoA feature?

A : 24 State

B : 30 Calling-Station-ID

C : 42 Acct-Session-ID

D : 81 Message-Authenticator

Answer: A

Question 2

Which two conditions are prerequisites for stateful failover for IPsec? (Choose two)

A : Only the IKE configuration that is set up on the active device must be duplicated on the standby device; the
IPsec configuration is copied automatically

B : The active and standby devices can run different versions of the Cisco IOS software but must be the same
type of device.

C : The IPsec configuration that is set up on the active device must be duplicated on the standby device

D : Only the IPsec configuration that is set up on the active device must be duplicated on the standby device;
the IKE configuration is copied automatically.

E : The active and standby devices must run the same version of the Cisco IOS software and must be the
same type of device

Answer: A,C

Question 3

An organization has DHCP servers set up to allocate IP addresses to clients on the LAN. What must be

done to ensure the LAN switches prevent malicious DHCP traffic while also distributing IP addresses to

the correct endpoints?

A : Configure Dynamic ARP Inspection and add entries in the DHCP snooping database

B : Configure DHCP snooping and set an untrusted interface for all clients

C : Configure Dynamic ARP Inspection and antispoofing ACLs in the DHCP snooping database

D : Configure DHCP snooping and set a trusted interface for the DHCP server

Answer: A

Question 4

An administrator configures a Cisco WSA to receive redirected traffic over ports 80 and 443. The organization requires that a network device with specific WSA integration capabilities be configured to send the traffic to the WSA to proxy the requests and increase visibility, while making this invisible to the users. What must be done on the Cisco WSA to support these requirements?

A : Configure transparent traffic redirection using WCCP in the Cisco WSA and on the network device

B : Configure active traffic redirection using WPAD in the Cisco WSA and on the network device

C : Use the Layer 4 setting in the Cisco WSA to receive explicit forward requests from the network device

D : Use PAC keys to allow only the required network devices to send the traffic to the Cisco WSA

Answer: A

Question 5

What is the most common type of data exfiltration that organizations currently experience?

A : HTTPS file upload site

B : Microsoft Windows network shares

C : SQL database injections

D : encrypted SMTP

Answer: A

Page: 1 / 123

Total 615 Questions | Updated On: Apr 22, 2024