Cisco 350-701 SCOR Exam Practice Test Instant Access

Question 1

Which two types of connectors are used to generate telemetry data from IPFIX records in a Cisco Secure Workload implementation? (Choose two.)

AADC

BERSPAN

CCisco ASA

DNetFlow

ECisco Secure Workload

Answer : D, E

In a Cisco Secure Workload implementation, telemetry data can be generated from IPFIX (Internet Protocol Flow Information Export) records using NetFlow connectors and Cisco Secure Workload itself. NetFlow provides insights into network traffic flow and volume, while Cisco Secure Workload uses this data for visibility, segmentation, and security analytics within the data center.

Question 2

Which two devices support WCCP for traffic redirection? (Choose two.)

ACisco Secure Web Appliance

BCisco IOS

Cproxy server

DCisco ASA

ECisco IPS

Answer : B, D

Web Cache Communication Protocol (WCCP) is supported on Cisco IOS routers and Cisco ASA firewalls. WCCP allows these devices to redirect traffic to a WCCP-capable device, such as a web cache or a Cisco Secure Web Appliance, for processing. This redirection can be used for tasks like content filtering, web caching, and load balancing.

Question 3

Which technology must De used to Implement secure VPN connectivity among company branches over a private IP cloud with any-to-any scalable connectivity?

AGET VPN

BIPsec DVTI

CDMVPN

DFlexVPN

Answer : A

Group Encrypted Transport VPN (GET VPN) is used to implement secure VPN connectivity among company branches over a private IP cloud with any-to-any scalable connectivity. GET VPN provides a way to encrypt traffic between sites without the need for point-to-point tunnels, supporting efficient, scalable, and secure communication across a broad network infrastructure.

Question 4

Which method must be used to connect Cisco Secure Workload to external orchestrators at a client site when the client does not allow incoming connections?

Asource NAT

Breverse tunnel

CGRE tunnel

Ddestination NAT

Answer : B

To connect Cisco Secure Workload to external orchestrators at a client site where incoming connections are not allowed, a reverse tunnel must be used. A reverse tunnel initiates the connection from the inside of the client's network out to the external orchestrator, thereby bypassing restrictions on incoming connections and enabling secure communication.

Question 5

What is a benefit of a Cisco Secure Email Gateway Virtual as compared to a physical Secure Email Gateway?

Asimplifies the distribution of software updates

Bprovides faster performance

Cprovides an automated setup process

Denables the allocation of additional resources

Answer : D

One of the benefits of a Cisco Secure Email Gateway Virtual appliance compared to a physical one is the ability to allocate additional resources as needed. Virtual appliances can be easily scaled up by allocating more CPU, memory, or storage resources, providing flexibility and scalability in response to changing demands or growth.

Question 6

An engineer must configure Cisco AMP for Endpoints so that it contains a list of files that should not be executed by users. These files must not be quarantined. Which action meets this configuration requirement?

AIdentity the network IPs and place them in a blocked list.

BModify the advanced custom detection list to include these files.

CCreate an application control blocked applications list.

DAdd a list for simple custom detection.

Answer : C

Question 7

A security engineer must add destinations into a destination list in Cisco Umbrell

a. What describes the application of these changes?

AThe changes are applied immediately it the destination list is part or a policy.

BThe destination list must be removed from the policy before changes are made to It.

CThe changes are applied only after the configuration is saved in Cisco Umbrella.

DThe user role of Block Page Bypass or higher is needed to perform these changes.

Answer : A

Cisco 350-701 Implementing and Operating Cisco Security Core Technologies SCOR Exam Practice Test