350-701 Free Practice Test

- (Exam Topic 3)

Refer to the exhibit When configuring this access control rule in Cisco FMC, what happens with the traffic destined to the DMZjnside zone once the configuration is deployed?

1. A. All traffic from any zone to the DMZ_inside zone will be permitted with no further inspection
2. B. No traffic will be allowed through to the DMZ_inside zone regardless of if it's trusted or not
3. C. All traffic from any zone will be allowed to the DMZ_inside zone only after inspection
4. D. No traffic will be allowed through to the DMZ_inside zone unless it's already trusted

Correct Answer: A

- (Exam Topic 3)
Which direction do attackers encode data in DNS requests during exfiltration using DNS tunneling?

1. A. inbound
2. B. north-south
3. C. east-west
4. D. outbound

Correct Answer: D

- (Exam Topic 2)
What are two Trojan malware attacks? (Choose two)

1. A. Frontdoor
2. B. Rootkit
3. C. Smurf
4. D. Backdoor
5. E. Sync

Correct Answer: BD

- (Exam Topic 3)
Refer to the exhibit.

The DHCP snooping database resides on router R1, and dynamic ARP inspection is configured only on switch SW2. Which ports must be configured as untrusted so that dynamic ARP inspection operates normally?

1. A. P2 and P3 only
2. B. P5, P6, and P7 only
3. C. P1, P2, P3, and P4 only
4. D. P2, P3, and P6 only

Correct Answer: D

- (Exam Topic 3)

Refer to the exhibit. What is the result of using this authentication protocol in the configuration?

1. A. The authentication request contains only a username.
2. B. The authentication request contains only a password.
3. C. There are separate authentication and authorization request packets.
4. D. The authentication and authorization requests are grouped in a single packet.

Correct Answer: D