[Free] Download New Updated (October 2016) Cisco 350-018 Real Exam 161-170

Ensurepass

QUESTION 161

An internal DNS server requires a NAT on a Cisco IOS router that is dual-homed to separate ISPs using distinct CIDR blocks. Which NAT capability is required to allow hosts in each CIDR block to contact the DNS server via one translated address?

 

A.

NAT overload

B.

NAT extendable

C.

NAT TCP load balancing

D.

NAT service-type DNS

E.

NAT port-to-application mapping

 

Correct Answer: B

 

 

QUESTION 162

Which QoS marking is only locally significant on a Cisco router?

 

A.

MPLS EXP

B.

DSCP

C.

QoS group

D.

IP precedence

E.

traffic class

F.

flow label

 

Correct Answer: C

 

QUESTION 163

Refer to the exhibit. Which three command sets are required to complete this IPv6 IPsec site-to-site VTI? (Choose three.)

 

clip_image002

 

A.

interface Tunnel0

tunnel mode ipsec ipv6

B.

crypto isakmp-profile

match identity address ipv6 any

C.

interface Tunnel0

ipv6 enable

D.

ipv6 unicast-routing

E.

interface Tunnel0

ipv6 enable-ipsec

 

Correct Answer: ACD

 

 

QUESTION 164

Which three control plane subinterfaces are available when implementing Cisco IOS Control Plane Protection? (Choose three.)

 

A.

CPU

B.

host

C.

fast-cache

D.

transit

E.

CEF-exception

F.

management

 

Correct Answer: BDE

 

 

 

 

 

QUESTION 165

Refer to the exhibit. Which option correctly identifies the point on the exhibit where Control Plane Policing (input) is applied to incoming packets?

 

clip_image004

 

A.

point 6

B.

point 7

C.

point 4

D.

point 1

E.

points 5 and 6

 

Correct Answer: A

 

 

QUESTION 166

Management Frame Protection is available in two deployment modes, Infrastructure and Client. Which three statements describe the differences between these modes? (Choose three.)

 

A.

Infrastructure mode appends a MIC to management frames.

B.

Client mode encrypts management frames.

C.

Infrastructure mode can detect and prevent common DoS attacks.

D.

Client mode can detect and prevent common DoS attacks.

E.

Infrastructure mode requires Cisco Compatible Extensions version 5 support on clients.

 

Correct Answer: ABD

 

 

QUESTION 167

Which three object tracking options are supported by Cisco IOS policy-based routing? (Choose three.)

 

A.

absence of an entry in the routing table

B.

existence of a CDP neighbor relationship

C.

existence of an entry in the routing table

D.

results of an SAA operation

E.

state of the line protocol of an interface

< font style="font-size: 10pt" color="#000000"> 

Correct Answer: CDE

 

 

QUESTION 168

Which four protocols are supported by Cisco IOS Management Plane Protection? (Choose four.)

 

A.

Blocks Extensible Exchange Protocol (BEEP)

B.

Hypertext Transfer Protocol Secure (HTTPS)

C.

Secure Copy Protocol (SCP)

D.

Secure File Transfer Protocol (SFTP)

E.

Secure Shell (SSH)

F.

Simple Network Management Protocol (SNMP)

 

Correct Answer: ABEF

 

 

QUESTION 169

Which four Cisco IOS features are used to implement First Hop Security in IPv6? (Choose four.)

 

A.

IPv6 First-Hop Security Binding Table

B.

IPv6 Device Tracking

C.

IPv6 RA Guard

D.

SeND

E.

IPv6 Selective Packet Discard

F.

IPv6 Source Guard

 

Correct Answer: ABCD

 

 

QUESTION 170

According ISO27001 ISMS, which of the following are mandatory documents? (Choose four.)

 

A.

ISMS Policy

B.

Corrective Action Procedure

C.

IS Procedures

D.

Risk Assessment Reports

E.

Complete Inventory of all information assets

 

Correct Answer: ABCD

 

Free VCE & PDF File for Cisco 350-018 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …