Free Download Pass4sure Cisco 350-018 Exam Questions And Answers (121-130)

QUESTION 121
Which type of VPN is based on the concept of trusted group members using the GDOI key management protocol?

A.    DMVPN
B.    SSLVPN
C.    GETVPN
D.    EzVPN
E.    MPLS VPN
F.    FlexVPN

Answer: C

QUESTION 122
Based on RFC 4890, what is the ICMP type and code that should never be dropped by the firewall to allow PMTUD?

A.    ICMPv6 Type 1 ?Code 0 ?no route to host
B.    ICMPv6 Type 1 ?Code 1 ?communication with destination administratively prohibited
C.    ICMPv6 Type 2 ?Code 0 ?packet too big
D.    ICMPv6 Type 3 ?Code 1 ?fragment reassembly time exceeded
E.    ICMPv6 Type 128 ?Code 0 ?echo request
F.    ICMPv6 Type 129 ?Code 0 ?echo reply

Answer: C

QUESTION 123
A firewall rule that filters on the protocol field of an IP packet is acting on which layer of the OSI reference model?

A.    network layer
B.    application layer
C.    transport layer
D.    session layer

Answer: A

QUESTION 124
Which layer of the OSI model is referenced when utilizing http inspection on the Cisco ASA to filter Instant Messaging or Peer to Peer networks with the Modular Policy Framework?

A.    application layer
B.    presentation layer

C.    network layer
D.    transport layer

Answer: A

QUESTION 125
When a Cisco IOS Router receives a TCP packet with a TTL value less than or equal to 1, what will it do?

A.    Route the packet normally
B.    Drop the packet and reply with an ICMP Type 3, Code 1 (Destination Unreachable, Host Unreachable)
C.    Drop the packet and reply with an ICMP Type 11, Code 0 (Time Exceeded, Hop Count Exceeded)
D.    Drop the packet and reply with an ICMP Type 14, Code 0 (Timestamp Reply)

Answer: C

QUESTION 126
In an 802.11 WLAN, which option is the Layer 2 identifier of a basic service set, and also is typically the MAC address of the radio of the access point?

A.    BSSID
B.    SSID
C.    VBSSID
D.    MBSSID

Answer: A

QUESTION 127
What term describes an access point which is detected by your wireless network, but is not a trusted or managed access point?

A.    rogue
B.    unclassified
C.    interferer
D.    malicious

Answer: A

QUESTION 128
A router has four interfaces addressed as 10.1.1.1/24, 10.1.2.1/24, 10.1.3.1/24, and 10.1.4.1/24. What is the smallest summary route that can be advertised covering these four subnets?

A.    10.1.2.0/22
B.    10.1.0.0/22
C.    10.1.0.0/21
D.    10.1.0.0/16

Answer: C

QUESTION 129
Which two address translation types can map a group of private addresses to a smaller group of public addresses? (Choose two.)

A.    static NAT
B.    dynamic NAT
C.    dynamic NAT with overloading
D.    PAT
E.    VAT

Answer: CD

QUESTION 130
Which authentication mechanism is available to OSPFv3?

A.    simple passwords
B.    MD5
C.    null
D.    IKEv2
E.    IPsec AH/ESP

Answer: E

Free Download Pass4sure Cisco 350-018 Exam Questions And Answers