CCIE Security Lab (v6.0) Quiz Questions and Answers

Which two options represent definitions that are found in the syslog protocol (RFC 5426)? (Choose two.)

Answer :
  • Each syslog datagram must contain only one message.
  •  IPv6 syslog receivers must be able to receive datagrams of up to 1180 bytes.

Which PKCS is invoked during IKE MM5 and MM6 when digital certificates are used as the authentication method?

Answer :
  •  PKCS#7

Which option is representative of automatic IP addressing in IPv4?

Answer :
  • 169.254.x.x

Which NTP stratum level means that the clock is unsynchronized?

Answer :
  • 16

Which three IP resources is IANA responsible for? (Choose three.)

Answer :
  • IP address allocation
  • autonomous system number allocation
  • root zone management in DNS

Which two MAC authentication methods are supported on WLCs? (Choose two.)

Answer :
  •  local MAC authentication
  • MAC authentication using a RADIUS server

Which three statements apply to the behavior of Cisco AnyConnect client auto-reconnect? (Choose three.)

Answer :
  • By default, Cisco AnyConnect attempts to re-establish a VPN connection when you lose connectivity to the secure gateway.
  • Cisco AnyConnect reconnects when the network interface changes, whether the IP of the NIC changes or whether connectivity switches from one NIC to another; for example, wireless to wired or vice versa.
  • With respect to VPN load balancing and Cisco AnyConnect reconnect, the client reconnects directly to the cluster member to which it was previously connected.

Client MFP supplements rather than replaces infrastructure MFP. Which three are client MFP components? (Choose three.)

Answer :
  • key generation and distribution
  • protection and validation of management frames
  • error reports

Which VPN technology is based on GDOI (RFC 3547)?

Answer :
  • GET VPN

In an operating system environment, which three attacks give a user elevated privileges to access resources that are otherwise blocked? (Choose three.)

Answer :
  • backdoor
  • rootkit
  •  privilege escalation