Cisco CCIE Security Written v4.0 (Beta) Set 1

1.

Which four options are valid EAP mechanisms to be used with WPA2? (Choose four.)

PEAP EAP-TLS EAP-FAST EAP-TTLS EAPOL

2.

How does a DHCP client request its previously used IP address in a DHCP DISCOVER packet?

It is included in the CIADDR field. It is included as DHCP Option 50 in the OPTIONS field. It is included in the YIADDR field. It is the source IP address of the UDP/53 wrapper packet. The client cannot request its last IP address; it is assigned automatically by the server.

3.

Which common Microsoft protocol allows Microsoft machine administration and operates over TCP port 3389?

remote desktop protocol desktop mirroring desktop shadowing Tarantella remote desktop

4.

To prevent a potential attack on a Cisco IOS router with the echo service enabled, what action should you take?

Disable the service with the no ip echo command. Disable the service with the no echo command. Disable tcp-small-servers. Disable this service with a global access-list.

5.

Which query type is required for an nslookup on an IPv6 addressed host?

type=AAAA type=ANY type=PTR type=NAME-IPV6

6.

According to OWASP guidelines, what is the recommended method to prevent cross-site request forgery?

Allow only POST requests. Mark all cookies as HTTP only. Use per-session challenge tokens in links within your web application. Always use the "secure" attribute for cookies. Require strong passwords.

7.

Which option is used to collect wireless traffic passively, for the purposes of eavesdropping or information gathering?

network taps repeater Access Points wireless sniffers intrusion prevention systems

8.

Which traffic class is defined for non-business-relevant applications and receives any bandwidth that remains after QoS policies have been applied?

scavenger class best effort discard eligible priority queued 15

9.

In the context of a botnet, what is true regarding a command and control server?

It can launch an attack using IRC or Twitter. It is another name for a zombie. It is used to generate a worm. It sends the command to the botnets via adware.

10.

Which option is used for anti-replay prevention in a Cisco IOS IPsec implementation?

session token one-time password time stamps sequence number nonce

Cisco CCIE Security Written v4.0 (Beta) Set 1

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

Cisco CCIE Security Written v4.0 (Beta) Set 1

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner