CCIE Security Lab (v6.0) Quiz Questions and Answers

Which PKCS is invoked during IKE MM5 and MM6 when digital certificates are used as the authentication method?

Answer :
  •  PKCS#7

Which two options represent definitions that are found in the syslog protocol (RFC 5426)? (Choose two.)

Answer :
  • Each syslog datagram must contain only one message.
  •  IPv6 syslog receivers must be able to receive datagrams of up to 1180 bytes.

Which NTP stratum level means that the clock is unsynchronized?

Answer :
  • 16

Which option is representative of automatic IP addressing in IPv4?

Answer :
  • 169.254.x.x

Which three IP resources is IANA responsible for? (Choose three.)

Answer :
  • IP address allocation
  • autonomous system number allocation
  • root zone management in DNS

Which three statements apply to the behavior of Cisco AnyConnect client auto-reconnect? (Choose three.)

Answer :
  • By default, Cisco AnyConnect attempts to re-establish a VPN connection when you lose connectivity to the secure gateway.
  • Cisco AnyConnect reconnects when the network interface changes, whether the IP of the NIC changes or whether connectivity switches from one NIC to another; for example, wireless to wired or vice versa.
  • With respect to VPN load balancing and Cisco AnyConnect reconnect, the client reconnects directly to the cluster member to which it was previously connected.

Which two MAC authentication methods are supported on WLCs? (Choose two.)

Answer :
  •  local MAC authentication
  • MAC authentication using a RADIUS server

Which of the following is an advanced networking function performed by VEM?

Answer :
  • QoS

Which three options describe the interface and direction on which ACL capture can be applied on a Cisco Nexus 7000 switch? (Choose three.)

Answer :
  • In a VLAN interface
  • In the ingress direction on all interfaces
  • In the egress direction on all Layer 3 interfaces

IANA is responsible for which three IP resources? (Choose three.)

Answer :
  • IP address allocation
  •  Autonomous system number allocation
  • Root zone management in DNS