ExamGecko
Search Search Login
Home Home / Cisco / 350-401
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which option works with a DHCP server to return at least one WLAN management interface IP address during the discovery phase and is dependent upon the VCI of the AP?
What are two differences between the RIB and the FIB? (Choose two.)
An engineer must update the local web authentication details on a Cisco 5520 WLC. The engineer has one active SSID configured for web authentication and plans to update the virtual interface with a nonroutable IP address. Which command must the engineer apply?
An engineer is troubleshooting the Ap join process using DNS. Which FQDN must be resolvable on the network for the access points to successfully register to the WLC?
Which port is required to allow APs to join a WLC when directed broadcasts are used on a Cisco iOS switch?
An engineer must configure a multicast UDP jitter operation. Which configuration should be applied? A) B) C) D)
Reter to the exhibit. Refer to the exhibit. A network engineer must be notified when a user switches to configuration mode. Which script should be applied to receive an SNMP trap and a critical-level log message?
Refer to the exhibit. An engineer must allow R1 to advertise the 192 168.1 0/24 network to R2 R1 must perform this action without sending OSPF packets to SW1 Which command set should be applied?
Refer to the Exhibit. Refer to the exhibit. Which action must be performed to allow RESTCONF access to the device?
A company has an existing Cisco 5520 HA cluster using SSO. An engineer deploys a new single Cisco Catalyst 9800 WLC to test new features. The engineer successfully configures a mobility tunnel between the 5520 cluster and 9800 WLC. Client connected to the corporate WLAN roam seamlessly between access points on the 5520 and 9800 WLC. After a failure on the primary 5520 WLC, all WLAN services remain functional; however, Client roam between the 5520 and 9800 controllers without dropping their connection. Which feature must be configured to remedy the issue?

Question 780 - 350-401 discussion

Report
Export

A network administrator for a small office is adding a passive IDS to its network switch for the purpose of inspecting network traffic. Which of the following should the administrator use?

A.

SNMPtrap

Answers
A.

SNMPtrap

B.

Port mirroring

Answers
B.

Port mirroring

C.

Syslog collection

Answers
C.

Syslog collection

D.

API integration

Answers
D.

API integration

Suggested answer: B

Explanation:

This is because port mirroring is a feature that allows a switch to copy the traffic from one or more ports to another port, where a passive IDS can be connected. A passive IDS is a device that monitors the network traffic and detects any malicious or suspicious activity, but does not take any action to block or prevent it. Port mirroring can enable a passive IDS to inspect the network traffic without affecting the performance or availability of the network. The source of this answer is the Cisco ENCOR v1.1 course, module 6, lesson 6.2: Implementing SPAN, RSPAN, and ERSPAN.

Show Answer
asked 10/10/2024
Jose Osnayo
44 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms