Dumps4cert.com : Latest Dumps with PDF and VCE Files
2018 July Microsoft Official New Released 77-601
100% Free Download! 100% Pass Guaranteed!
CCIE Security Exam (v4.1)
Question No: 81 – (Topic 1)
Refer to the exhibit.
What is the effect of the given command sequence?
-
The server will accept secure HTTP connections from clients with signed security
certificates
-
The client profile will match the authorization profile defined in the AAA server
-
The HTTP server and client will negotiate the cipher suite encryption parameters
-
The clients are added to the cipher suite*s profile
-
The server will accept secure HTTP connections from clients defined in the AAA server
Answer: A
Question No: 82 – (Topic 1)
What are three protocols that support Layer 7 class maps and policy maps for zone-based firewalls?(Choose three)
-
RDP
-
MIME
-
ICQ
-
IMAP
-
POP3
-
IKE
Answer: C,D,E
Question No: 83 – (Topic 1)
What are two advantages of NBAR2 over NBAR? (Choose two)
-
Only NBAR2 allows the administrator to apply individual PDL flies
-
Only NBAR2 supports custom protocols based on HTTP URLS
-
Only NBAR2 supports PDLM to support new protocols
-
Only NBAR2 supports Flexible NetFlow for extracting and exporting fields from the Packet header
-
Only NBAR2 can use Sampled NetFlow to extract pre-defined packet headers for reporting
Answer: B,D
Question No: 84 – (Topic 1)
Which statement about the Cisco ASA operation running versions 8.3 is true ?
-
NAT control is enabled by default
-
The interface and global access lists both can be applied in the input or output direction
-
The static CLI command is used to configure static NAT translation rules
-
The imperfect access list is matched first before the global access list
Answer: D
Question No: 85 – (Topic 1)
Which statement about the cisco AnyConnect Web Secruity module is true?
-
It is deployed on points to route HTTP traffic to ScanSafe.
-
It is VPN client software that works over the SSL protocol.
-
It is an endpoint component that is used with smart tunnels in a Clientless
-
It operates as an NAC Agent when it is configured with the AnyConnect VPN client
Answer: B
Question No: 86 – (Topic 1)
You want to enable users in your company’s branch offices to deploy their own access points using WAN links from the central office.but you are un able to deploy a controller in the branch offices.What Lighweight Access Point wireless mode should you choose?
-
Local mode
-
Monitor mode
-
REAP mode
-
H-REAP mode
-
TLS mode
Answer: D
Question No: 87 – (Topic 1)
If the ASA interfaces on a device are configured in passive mode, which mode must be configured on the remote device to enable EtherChannel?
-
Passive
-
On
-
Standby
-
Active
Answer: D
Question No: 88 – (Topic 1)
Which two statements about DTLS are true?(Choose two.)
-
If DPD is enabled.DTLS can fall back to a TLS connection.
-
It is disabled by default if you enable SSL VPN on the interface.
-
It uses two simultaneous IPSec tunnels to carry traffic.
-
If DTLS is disabled on an interface, then SSL VPN connections must use SSL/TLS tunnels.
-
Because if requires two tunnels, it may experience more latency issues than SSL connections.
Answer: A,C
Question No: 89 – (Topic 1)
Which technology builds on the vPath concept and can be used in virtual and physical environments?
-
NSH
-
VXLAN
-
ACL
-
SDN
Answer: A
Question No: 90 – (Topic 1)
Which two statements about ISO 27001 are true?(Choose two)
-
It is closely aligned to ISO 22000 standards
-
It is code of practice for information social management
-
It is an ISO 17799 code of practice
-
It is an information security management system specification
-
It was formerly known as BS7799-2
Answer: D,E
100% Dumps4cert Free Download!
–Download Free Demo:77-601 Demo PDF
100% Dumps4cert Pass Guaranteed!
–77-601 Dumps
Dumps4cert | ExamCollection | Testking | |
---|---|---|---|
Lowest Price Guarantee | Yes | No | No |
Up-to-Dated | Yes | No | No |
Real Questions | Yes | No | No |
Explanation | Yes | No | No |
PDF VCE | Yes | No | No |
Free VCE Simulator | Yes | No | No |
Instant Download | Yes | No | No |