Practice Exams:

Free 350-401 Exam Braindumps

Pass your Implementing and Operating Cisco Enterprise Network Core Technologies exam with these free Questions and Answers

Page 9 of 150
PDF with 747 Questions
QUESTION 36

- (Exam Topic 4)
Based on the router's API output in JSON format below, which Python code will display the value of the “hostname" key?
350-401 dumps exhibit
350-401 dumps exhibit

  1. A. Option A
  2. B. Option B
  3. C. Option C
  4. D. Option D

Correct Answer: B

QUESTION 37

- (Exam Topic 4)
Which Quality of Service (QoS) mechanism allows the network administrator to control the maximum rate of traffic received or sent on a given interface?

  1. A. Policing
  2. B. Marking
  3. C. Queueing
  4. D. Classification

Correct Answer: A
Traffic Policing In general, traffic policing allows you to control the maximum rate of traffic sent or received on an interface and to partition a network into multiple priority levels or class of service (CoS).

QUESTION 38

- (Exam Topic 1)
What is a characteristic of MACsec?

  1. A. 802.1AE provides encryption and authentication services
  2. B. 802.1AE is bult between the host and switch using the MKA protocol, which negotiates encryption keys based on the master session key from a successful 802.1X session
  3. C. 802.1AE is bult between the host and switch using the MKA protocol using keys generated via the Diffie-Hellman algorithm (anonymous encryption mode)
  4. D. 802.1AE is negotiated using Cisco AnyConnect NAM and the SAP protocol

Correct Answer: B
MACsec, defined in 802.1AE, provides MAC-layer encryption over wired networks by using out-of-band methods for encryption keying. The MACsec Key Agreement (MKA) Protocol provides the required session keys and manages the required encryption keys. MKA and MACsec are implemented after successful authentication using the 802.1x Extensible Authentication Protocol (EAP-TLS) or Pre Shared Key (PSK) framework.
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9300/software/release/16-9/configuration_guide/sec

QUESTION 39

- (Exam Topic 2)
An engineer is configuring local web authentication on a WLAN. The engineer chooses the Authentication radio button under the Layer 3 Security options for Web Policy. Which device presents the web authentication for the WLAN?

  1. A. ISE server
  2. B. local WLC
  3. C. RADIUS server
  4. D. anchor WLC

Correct Answer: B
“The next step is to configure the WLC for the Internal web authentication. Internal web authentication is the defaultweb authentication type on WLCs.”
In step 4 of the link above, we will configure Security as described in this question. Therefore we can deduce thisconfiguration is for Internal web authentication.
This paragraph was taken from the link
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/69340-web-auth-config.html#c5 :

QUESTION 40

- (Exam Topic 4)
Simulation 09
350-401 dumps exhibit
350-401 dumps exhibit
350-401 dumps exhibit
Solution:
Sw1 Config t
Monitor session 20 source vlan 99 tx
Monitor session 20 destination interface ethernet 0/1 Copy run start
R1
Config t
Ip flow-top-talkers Top 50
Sort-by packets Cache time-out 30 Eth 0/2
Ip flow egress Copy run start Sw02
Config t Ip sla 10
Icmp-echo 1.1.1.1 source-ip 172.16.2.2
Frequency 5
Threshold 250
Timeout 3000
Ip sla schedule 10 start-time now life forever
Copy run start

Does this meet the goal?

  1. A. Yes
  2. B. No

Correct Answer: A

Page 9 of 150
PDF with 747 Questions

Post your Comments and Discuss Cisco 350-401 exam with other Community members: