Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (111-120)

QUESTION 111
A Cisco Easy VPN software client is unable to access its local LAN devices once the VPN tunnel is established. How can this issue be resolved?

A.    The IP address that is assigned by the Cisco Easy VPN Server to the client must be on thesame network
as the local LAN of the client.
B.    The Cisco Easy VPN Server should apply split-tunnel-policy excludespecified with asplit-tunnel- list
containing the local LAN addresses that are relevant to the client.
C.    The Cisco Easy VPN Server must push down an interface ACL that permits the traffic to thelocal LAN
from the client.
D.    The Cisco Easy VPN Server should apply a split-tunnel-policy tunnelall policy to theclient.
E.    The Cisco Easy VPN client machine needs to have multiple NICs to support this.

Answer: B

» Read more

Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (101-110)

QUESTION 101
Which three object tracking options are supported by Cisco IOS policy-based routing? (Choose three.)

A.    absence of an entry in the routing table
B.    existence of a CDP neighbor relationship
C.    existence of an entry in the routing table
D.    results of an SAA operation
E.    state of the line protocol of an interface

Answer: CDE

» Read more

Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (91-100)

QUESTION 91
Which statement regarding the routing functions of the Cisco ASA is true?

A.    The translation table can override the routing table for new connections.
B.    The ASA supports policy-based routing with route maps?.
C.    In a failover pair of ASAs, the standby firewall establishes a peer relationship with OSPF neighbors.
D.    Routes to the Null0 interface can be configured to black-hole traffic.

Answer: A

» Read more

Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (71-80)

QUESTION 71
Which two methods are used for forwarding traffic to the Cisco ScanSafe Web Security service? (Choose two.)

A.    Cisco AnyConnect VPN Client with Web Security and ScanSafe subscription
B.    Cisco ISR G2 Router with SECK9 and ScanSafe subscription
C.    Cisco ASA adaptive security appliance using DNAT policies to forward traffic to ScanSafe subscription servers
D.    Cisco Web Security Appliance with ScanSafe subscription

Answer: BC

» Read more

Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (61-70)

QUESTION 61
Which statement is true regarding Cisco ASA operations using software versions 8.3 and later?

A.    The global access list is matched first before the interface access lists.
B.    Both the interface and global access lists can be applied in the input or output direction.
C.    When creating an access list entry using the Cisco ASDM Add Access Rule window, choosing
“global” as the interface will apply the access list entry globally.
D.    NAT control is enabled by default.
E.    The static CLI command is used to configure static NAT translation rules.

Answer: A

» Read more

Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (41-50)

QUESTION 41
Which of the following best describes Chain of Evidence in the context of security forensics?

A.    Evidence is locked down, but not necessarily authenticated.
B.    Evidence is controlled and accounted for to maintain its authenticity and integrity.
C.    The general whereabouts of evidence is known.
D.    Someone knows where the evidence is and can say who had it if it is not logged.

Answer: B

» Read more

1 2 3