Q:41-60

Question 1

41. A company has contracted with a network security firm to help identify the vulnerabilities of the corporate network. The firm sends a team to perform penetration tests to the company network. Why would the team use applications such as John the Ripper,THC Hydra, RainbowCrack, and Medusa?

to capture and analyze packets within traditional Ethernet LANs or WLANs
to probe and test the robustness of a firewall by using specially created forged packets
to make repeated guesses in order to crack a password

Answer 1

to make repeated guesses in order to crack a password

Question 2

42. What are two syntax rules for writing a JSON array? (Choose two.)

Each value in the array is separated by a comma.
The array can include only one value type.
A space must separate each value in the array.
A semicolon separates the key and list of values.
Values are enclosed in square brackets.

Answer 2

Each value in the array is separated by a comma.

Values are enclosed in square brackets.

Question 3

43. What is a characteristic of a Trojan horse as it relates to network security?

An electronic dictionary is used to obtain a password to be used to infiltrate a key network device.
Malware is contained in a seemingly legitimate executable program.
Extreme quantities of data are sent to a particular network device interface.
Too much information is destined for a particular memory block, causing additional memory areas to be affecte

Answer 3

Malware is contained in a seemingly legitimate executable program.

Question 4

44. An attacker is redirecting traffic to a false default gateway in an attempt to intercept the data traffic of a switched network. What type of attack could achieve this?

TCP SYN flood
DNS tunneling
DHCP spoofing
ARP cache poisoning

Answer 4

DHCP spoofing

Question 5

45. A company is developing a security policy for secure communication. In the exchange of critical messages between a headquarters office and a branch office, a hash value should only be recalculated with a predetermined code, thus ensuring the validity of data source. Which aspect of secure communications is addressed?

data integrity
non-repudiation
origin authentication
data confidentiality

Answer 5

origin authentication

Question 6

46. A company has contracted with a network security firm to help identify the vulnerabilities of the corporate network. The firm sends a team to perform penetration tests to the company network. Why would the team use packet sniffers?

to detect installed tools within files and directories that provide threat actors remote access and control over a computer or network

to detect any evidence of a hack or malware in a computer or network

to probe and test the robustness of a firewall by using specially created forged packets

to capture and analyze packets within traditional Ethernet LANs or WLANs

Answer 6

to capture and analyze packets within traditional Ethernet LANs or WLANs

Question 7

47. An administrator is configuring single-area OSPF on a router. One of the networks that must be advertised is 172.20.0.0 255.255.252.0. What wildcard mask would the administrator use in the OSPF network statement?
48. 0.15.255
49. 0.3.255
50. 0.7.255
51. 0.1.255

Answer 7

0.0.3.255

Question 8

48. Match the HTTP method with the RESTful operation.

POST
GET
PUT/PATCH
DELETE

Create
Read
Update/replace
delete

Answer 8

POST –» Create
GET –» Read
PUT/PATCH –» Update/Replace?Modify
Delete –» Delete

Question 9

49. Refer to the exhibit. What is the OSPF cost to reach the West LAN 172.16.2.0/24 from East?​

782
74
128
65

Answer 9

65

Question 10

50. What is one reason to use the ip ospf priority command when the OSPF routing protocol is in use?

to activate the OSPF neighboring process
to influence the DR/BDR election process
to provide a backdoor for connectivity during the convergence process
to streamline and speed up the convergence process

Answer 10

to influence the DR/BDR election process

Question 11

51. An ACL is applied inbound on a router interface. The ACL consists of a single entry:

access-list 210 permit tcp 172.18.20.0 0.0.0.31 172.18.20.32 0.0.0.31 eq ftp .

If a packet with a source address of 172.18.20.14, a destination address of 172.18.20.40, and a protocol of 21 is received on the interface, is the packet permitted or denied?

Answer 11

permitted

Question 12

52. What is a characteristic of the two-tier spine-leaf topology of the Cisco ACI fabric architecture?​

The spine and leaf switches are always linked through core switches.
The spine switches attach to the leaf switches and attach to each other for redundancy.
The leaf switches always attach to the spines and they are interlinked through a trunk line.
The leaf switches always attach to the spines, but they never attach to each other.

Answer 12

The leaf switches always attach to the spines, but they never attach to each other.

Question 13

53. Which two scenarios would result in a duplex mismatch? (Choose two.)

connecting a device with autonegotiation to another that is manually set to full-duplex
starting and stopping a router interface during a normal operation
connecting a device with an interface running at 100 Mbps to another with an interface running at 1000 Mbps
configuring dynamic routing incorrectly
manually setting the two connected devices to different duplex modes

Answer 13

connecting a device with autonegotiation to another that is manually set to full-duplex

manually setting the two connected devices to different duplex modes

Question 14

54. A network technician is configuring SNMPv3 and has set a security level of auth . What is the effect of this setting?

authenticates a packet by a string match of the username or community string

authenticates a packet by using either the HMAC with MD5 method or the SHA method

authenticates a packet by using either the HMAC MD5 or 3.HMAC SHA algorithms and encrypts the packet with either the DES, 3DES or AES algorithms

authenticates a packet by using the SHA algorithm only

Answer 14

authenticates a packet by using either the HMAC with MD5 method or the SHA method

Question 15

55. What are two types of attacks used on DNS open resolvers? (Choose two.)

amplification and reflection
resource utilization
fast flux
ARP poisoning
cushioning

Answer 15

amplification and reflection

resource utilization

Question 16

56. An ACL is applied inbound on a router interface. The ACL consists of a single entry:

access-list 101 permit udp 192.168.100.0 0.0.2.255 64.100.40.0 0.0.0.15 eq telnet .
If a packet with a source address of 192.168.101.45, a destination address of 64.100.40.4, and a protocol of 23 is received on the interface, is the packet permitted or denied?

denied
permitted

Answer 16

denied

Question 17

57. Which type of resources are required for a Type 1 hypervisor?

a dedicated VLAN
a management console
a host operating system

Answer 17

a management console

Question 18

58. In JSON, what is held within square brackets [ ]?

nested values
key/value pairs
an object
an array

Answer 18

an array

Question 19

59. What are three components used in the query portion of a typical RESTful API request? (Choose three.)

resources
protocol
API server
format
key
parameters

Answer 19

format
key
parameters

Question 20

60. A user reports that when the corporate web page URL is entered on a web browser, an error message indicates that the page cannot be displayed. The help-desk technician asks the user to enter the IP address of the web server to see if the page can be displayed. Which troubleshooting method is being used by the technician?

top-down
bottom-up
divide-and-conquer
substitution

Answer 20

divide-and-conquer

Question 21

61. Which protocol provides authentication, integrity, and confidentiality services and is a type of VPN?

MD5
AES
IPsec
ESP

Answer 21

IPsec