350-701 Free Practice Test

- (Exam Topic 3)
Which solution should be leveraged for secure access of a CI/CD pipeline?

1. A. Duo Network Gateway
2. B. remote access client
3. C. SSL WebVPN
4. D. Cisco FTD network gateway

Correct Answer: A

- (Exam Topic 1)
An engineer configured a new network identity in Cisco Umbrella but must verify that traffic is being routed through the Cisco Umbrella network. Which action tests the routing?

1. A. Ensure that the client computers are pointing to the on-premises DNS servers.
2. B. Enable the Intelligent Proxy to validate that traffic is being routed correctly.
3. C. Add the public IP address that the client computers are behind to a Core Identity.
4. D. Browse to http://welcome.umbrella.com/ to validate that the new identity is working.

Correct Answer: B

- (Exam Topic 3)
A large organization wants to deploy a security appliance in the public cloud to form a site-to-site VPN and link the public cloud environment to the private cloud in the headquarters data center. Which Cisco security appliance meets these requirements?

1. A. Cisco Cloud Orchestrator
2. B. Cisco ASAV
3. C. Cisco WSAV
4. D. Cisco Stealthwatch Cloud

Correct Answer: B

- (Exam Topic 1)
What are two rootkit types? (Choose two)

1. A. registry
2. B. virtual
3. C. bootloader
4. D. user mode
5. E. buffer mode

Correct Answer: CD
The term ‘rootkit’ originally comes from the Unix world, where the word ‘root’ is used to describe a user with thehighest possible level of access privileges, similar to an ‘Administrator’ in Windows. The word ‘kit’ refers to thesoftware that grants root-level access to the machine. Put the two together and you get ‘rootkit’, a program thatgives someone – with legitimate or malicious intentions – privileged access to a computer.There are four main types of rootkits: Kernel rootkits, User mode rootkits, Bootloader rootkits, Memory rootkits

- (Exam Topic 1)
What is a characteristic of Cisco ASA Netflow v9 Secure Event Logging?

1. A. It tracks flow-create, flow-teardown, and flow-denied events.
2. B. It provides stateless IP flow tracking that exports all records of a specific flow.
3. C. It tracks the flow continuously and provides updates every 10 seconds.
4. D. Its events match all traffic classes in parallel.

Correct Answer: A
Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/configuration/general/asa-general-cli/ monitor-nsel.html