The Secret of Cisco 400-251 dumps

Q1. Which two statements about SOX are true? (Choose two.)

A. SOX is an IEFT compliance procedure for computer systems security.

B. SOX is a US law.

C. SOX is an IEEE compliance procedure for IT management to produce audit reports.

D. SOX is a private organization that provides best practices for financial institution computer systems.

E. Section 404 of SOX is related to IT compliance.

View Answer

Q2. Which three statements about the Unicast RPF in strict mode and loose mode are true?(Choose three)

A. Loose mode requires the source address to be present in the routing table.

B. Inadvertent packet loss can occur when loose mode is used with asymmetrical routing.

C. Interfaces in strict mode drop traffic with return that point to the Null 0 Interface.

D. Strict mode requires a default route to be associated with the uplink network interface.

E. Strict mode is recommended on interfaces that will receive packets only from the same subnet to which is assigned.

F. Both loose and strict modes are configured globally on the router.

View Answer

Q3. Refer to the Exhibit, Which two Statements about the given Configuration are true? (Choose two)

A. It is an inbound policy.

B. It will allow 209.165.202.129 to connect to 202.165.200.225 on an IMAP port.

C. It will allow 209.165.202.129 to connect to 202.165.200.225 on an RDP port.

D. It will allow 202.165.200.225 to connect to 209.165.202.129 on an RDP port.

E. It will allow 202.165.200.225 to connect to 209.165.202.129 on a VNC port.

F. It is an outbound policy.

View Answer

Q4. Refer to the Exhibit. What is the effect of the given ACL policy ?

A. The policy will deny all IPv6 eBGP session.

B. The policy will disable IPv6 source routing.

C. The policy will deny all IPv6 routing packet.

D. The policy will deny all IPv6 routed packet.

View Answer

Q5. What functionality is provided by DNSSEC?

A. origin authentication of DNS data

B. data confidentiality of DNS queries and answers

C. access restriction of DNS zone transfers

D. storage of the certificate records in a DNS zone file

View Answer

Q6. Which two u.s government entities are authorized to execute and enforce the penalties for violations of the

Sarbanes-oxley(SOX)act?(choose two)

A. Federal trade commission (FTC.

B. internal Revenue service (IRS)

C. Office of Civil Rights (OCR)

D. federal reserve board

E. Securities and exchange commission (SEC.

F. United states Citizenship and immigration services (USCIS)

View Answer

Q7. What are three QoS features supported on the ASA running version 8.x? (Choose Three)

A. Traffic shaping and standard priority queuing on the same interface.

B. IPSec-over-TCP priority queuing.

C. Traffic shaping within the class-default class map only.

D. Priority queuing.

E. Traffic shaping within any class map.

F. Traffic policing.

View Answer

Q8. According to RFC 4890, which three message must be dropped at the transit firewall/router?(Choose three.)

A. Router Renumbering(Type 138)

B. Node Information Query(Type 139)

C. Router Solicitation(Type 133)

D. Node information Response(Type

E. Router Advertisement(Type 134)

F. Neighbor Solicitaion(Type 135)

View Answer

Q9. DRAG DROP

Drag each OSPF security feature on the left to its description on the right.

View Answer

Q10. Why is the IPv6 type 0 routing header vulnerable to attack?

A. It allows the receiver of a packet to control its flow.

B. It allows the sender to generate multiple NDP requests for each packet.

C. It allows the sender of a packet to control its flow.

D. It allows the sender to generate multiple ARP requests for each packet.

E. It allows the receiver of a packet to modify the source IP address.

View Answer