Passed Cisco 350-018 Exam with Pass4sure and Lead2pass PDF & VCE (141-150)

QUESTION 141
Which of the following describes the DHCP “starvation” attack?

A.    Exhaust the address space available on the DHCP servers so that an attacker can inject their
own DHCP server for malicious reasons.
B.    Saturate the network with DHCP requests to prevent other network services from working.
C.    Inject a DHCP server on the network for the purpose of overflowing DNS servers with bogus learned
host names.
D.    Send DHCP response packets for the purpose of overloading CAM tables.

Answer: A

QUESTION 142
Which Cisco technology protects against Spanning Tree Protocol manipulation?

A.    spanning-tree protection
B.    root guard and BPDU guard
C.    Unicast Reverse Path Forwarding
D.    MAC spoof guard
E.    port security

Answer: B

QUESTION 143
Refer to the exhibit. Which two statements about this Cisco Catalyst switch configuration are correct? (Choose two.)

image

A.    The default gateway for VLAN 200 should be attached to the FastEthernet 5/1 interface.
B.    Hosts attached to the FastEthernet 5/1 interface can communicate only with hosts attached to
the FastEthernet 5/4 interface.
C.    Hosts attached to the FastEthernet 5/2 interface can communicate with hosts attached to the
FastEthernet 5/3 interface.
D.    Hosts attached to the FastEthernet 5/4 interface can communicate only with hosts attached to
the FastEthernet 5/2 and FastEthernet 5/3 interfaces.
E.    Interface FastEthernet 5/1 is the community port.
F.    Interface FastEthernet 5/4 is the isolated port.

Answer: BC

QUESTION 144
Which three configuration components are required to implement QoS policies on Cisco routers using MQC? (Choose three.)

A.    class-map
B.    global-policy
C.    policy-map
D.    service-policy
E.    inspect-map

Answer: ACD

QUESTION 145
Which type of PVLAN ports can communicate among themselves and with the promiscuous port?

A.    isolated
B.    community
C.    primary
D.    secondary
E.    protected

Answer: B

QUESTION 146
Which statement is true about the Cisco NEAT 802.1X feature?

A.    The multidomain authentication feature is not supported on the authenticator switch interface.
B.    It allows a Cisco Catalyst switch to act as a supplicant to another Cisco Catalyst authenticator switch.
C.    The supplicant switch uses CDP to send MAC address information of the connected host to the authenticator
switch.
D.    It supports redundant links between the supplicant switch and the authenticator switch.

Answer: B

QUESTION 147
Which additional configuration component is required to implement a MACSec Key Agreement policy on user-facing Cisco Catalyst switch ports?

A.    PKI
B.    TACACS+
C.    multi-auth host mode
D.    port security
E.    802.1x

Answer: E

QUESTION 148
Which option correctly describes the security enhancement added for OSPFv3?

A.    The AuType field in OSPFv3 now supports the more secure SHA-1 and SHA-2 algorithms in addition
to MD5.
B.    The AuType field is removed from the OSPFv3 header since simple password authentication is no
longer an option.
C.    The Authentication field in OSPFv3 is increased from 64 bits to 128 bits to accommodate more secure
authentication algorithms.
D.    Both the AuType and Authentication fields are removed from the OSPF header in OSPFv3, since now
it relies on the IPv6 Authentication Header (AH) and IPv6 Encapsulating Security Payload (ESP) to
provide integrity, authentication, and/or confidentiality.?
E.    The Authentication field is removed from the OSPF header in OSPFv3, because OSPFv3 must only
run inside of an authenticated IPSec tunnel.

Answer: D

QUESTION 149
Which IPv6 tunnel type is a standard that is defined in RFC 4214?

A.    ISATAP
B.    6to4
C.    GREv6
D.    manually configured

Answer: A

QUESTION 150
What IP protocol number is used in the protocol field of an IPv4 header, when IPv4 is used to tunnel IPv6 packets?

A.    6
B.    27
C.    41
D.    47
E.    51

Answer: C

If you want to pass Cisco 350-018 successfully, donot missing to read latest lead2pass Cisco 350-018 practice exams.
If you can master all lead2pass questions you will able to pass 100% guaranteed.

http://www.lead2pass.com/350-018.html

         

Why Choose Lead2pass?

If you want to pass the exam successfully in first attempt you have to choose the best IT study material provider, in my opinion, Lead2pass is one of the best way to prepare for the exam.

Lead2pass Testking Pass4sure Actualtests Others
$99.99 $124.99 $125.99 $189 $29.99-$49.99
Up-to-Dated
Real Questions
Error Correction
Printable PDF
Premium VCE
VCE Simulator
One Time Purchase
Instant Download
Unlimited Install
100% Pass Guarantee
100% Money Back