Jump to content
assassin2005

400-251 PassWritten CCIE Security written

Recommended Posts

@pwn2own33

Congrats man!

Where did u get the additional 16Q? Any chance you can share them....

Plus I think the updated one is 270Q now.

Share this post


Link to post
Share on other sites

Correct answer according to me !

 

 

 

38: DTLS

Answer: A, C

 

 

67: DTLS

Answer: B, C, D

 

 

 

66: uRPF

Answer: B, C

 

 

 

 

 

118: ASA 9.2

Answer: ???

 

 

160: DHCP

Answer: C

 

171: TCP Intercept

Answer: A

 

 

180: Cisco ISR to cloud web security connector

Answer: F

 

 

187: Firepower GIO

Answer: FA

 

 

190: Certificate Protocols0

Answer: CDF

 

 

229: Firepower Mode

Answer: A

 

 

233: TRUST

Answer: F

 

 

233: WannaCry Strategy

Answer: C, D, E

 

 

234: DHCP Starvation

Answer: A, B

 

 

 

242: Stealth watch

Answer: A, F

 

 

 

246:

Answer: C,D

 

 

251:

Answer: D

 

 

256:

Answer: A,G

 

 

 

261:

Answer: F

 

262: Anycast OpenDNS

 

Answer: A, F

 

 

 

 

265:

Answer: D

 

 

266:

Answer: C, F

 

Could you upload the 16 new questions please!!!!!!!!!!!!!!!!!!!!!!!

Share this post


Link to post
Share on other sites

Has anyone seen question 178, Opendns. They ask for two answers but it could be A, C, D, or E. I.e.,

Hidden Content

    Give reaction to this post to see the hidden content.

 

It's not F as it uses anycast to route and that's not multicast. This rules out G too as it doesn't use geocast but anycast.

 

Also, Q176 Tacacs+ is wrong, it's A,B (MS-CHAP and Chap). NASI and HDLC really lol

 

Q190, answers are D,E,F. EAP-PEAP and TLS def use certs and EAP-FAST can use certificates, it's optional.

 

Q208, Threat Grid, I'd say this is B and F not D and F.

 

I would also query Q211

Edited by dexter744

Share this post


Link to post
Share on other sites

Passed my Written yesterday.

Still 251 Q set is valid. No new questions.

Score 925.

 

I did refer the corrected answers in this forum.

 

Here are the answers which I crossed and believe are correct:

 

18 - BC???

86 - BD - correct

97 - A - correct

98 - CE - correct

 

 

105 - 1-F, 2-E, 3-G, 4-B 5-D, 6-C, 7-A

108 - C - wrong ?????

117 - BCE - correct

118 - C - correct

151 - B - not correct

159 - B ???

160 - C

166 - DE correct

171 - A - correct

177 - B ????

180 - F - correct

187 - A correct

190 - C,D,F - correct

191 - C - correct

 

203 - B,E,F

218 - E - correct

226 - D - correct

227 - B - correct

228 - B - correct

229 - A - correct

231 - F - correct

234 - A,B - correct

240 - A,D - correct

241 - F - correct

242 - A,H - correct ???

249 - B correct

251 - D correct

Share this post


Link to post
Share on other sites

pass today from 2 hrs wr exam with score +900

 

All the questions from 251passwriten dumb.

 

focus on answers with 2 selected round 60 Qs .Again al Questions from 251passwriten dumb no any new questions .

 

90 Questions .

passdgree 845

 

Good Luck

Share this post


Link to post
Share on other sites

@mado1980

Good to hear that.

By the way , what do u mean by " focus on answers with 2 selected round 60 Qs"

Do you mean to say, the Questions where you have to choose 2 answers?????

 

Also did you get any Drag and Drop Qs ???

 

Thanks for sharing.

Share this post


Link to post
Share on other sites

yah answer with 2 selected... almost all in dumb come in exam

1 drag and drop OVSDP ,NETCONF....etc

Share this post


Link to post
Share on other sites

Q29 is wrong, its saying B,15 sessions but it is A,10.

 

From researching,

Hidden Content

    Give reaction to this post to see the hidden content.

 

"Examples

For example, to set the default class limit for conns to 10 percent instead of unlimited, and to allow 5 site-to-site VPN tunnels with 2 tunnels allowed for VPN burst, enter the following commands:

 

hostname(config)# class default

hostname(config-class)# limit-resource conns 10%

hostname(config-class)# limit-resource vpn other 5

hostname(config-class)# limit-resource vpn burst other 2"

 

So, if we relate this to our question Q29 where we have "limit-resource vpn other 10", so answer is A, 10 (not B, 15)

Edited by dexter744

Share this post


Link to post
Share on other sites

Q29 is wrong, its saying B,15 sessions but it is A,10.

 

From researching,

Hidden Content

    Give reaction to this post to see the hidden content.

 

"Examples

For example, to set the default class limit for conns to 10 percent instead of unlimited, and to allow 5 site-to-site VPN tunnels with 2 tunnels allowed for VPN burst, enter the following commands:

 

hostname(config)# class default

hostname(config-class)# limit-resource conns 10%

hostname(config-class)# limit-resource vpn other 5

hostname(config-class)# limit-resource vpn burst other 2"

 

So, if we relate this to our question Q29 where we have "limit-resource vpn other 10", so answer is A, 10 (not B, 15)

 

"The number of site-to-site VPN sessions allowed beyond the amount assigned to a context with vpn other . For example, if your model supports 5000 sessions, and you assign 4000 sessions across all contexts with vpn other , then the remaining 1000 sessions are available for vpn burst other . Unlike vpn other , which guarantees the sessions to the context, vpn burst other can be oversubscribed; the burst pool is available to all contexts on a first-come, first-served basis."

Share this post


Link to post
Share on other sites

"The number of site-to-site VPN sessions allowed beyond the amount assigned to a context with vpn other . For example, if your model supports 5000 sessions, and you assign 4000 sessions across all contexts with vpn other , then the remaining 1000 sessions are available for vpn burst other . Unlike vpn other , which guarantees the sessions to the context, vpn burst other can be oversubscribed; the burst pool is available to all contexts on a first-come, first-served basis."

 

Thanks Shumon, appreciate the clarification, cheers

Share this post


Link to post
Share on other sites

Additional Corrections I'd suggest:

83 - A (“logging traps” command doesn’t exist “logging trap does)

144 - A,D (“WebVPN Context” is router’s configuration, not ASA’s)

182 - B

183 - A,F

212 - F,G (Question is cut out If it’s “Highly” Secure policy it’s option F. there is no “monitor” option for IPS policy, the option is to not drop - Option G

213 - C,D’

219 - D could be correct, it’s tricky. The question says the failing scenario is from Outside, so the inside interface will receive the response, hence the destination ip and port responding to the source IP and port.

223 - E I’m positive about it

226 - B

233 - A,C,D,E -

Hidden Content

    Give reaction to this post to see the hidden content.

241 - E

242 - A,F -

Hidden Content

    Give reaction to this post to see the hidden content.

Share this post


Link to post
Share on other sites

Dear All:

 

Currently there is a group activity going on in the relevant section of the forum at the following link for the latest updated dumps.

 

Hidden Content

    Give reaction to this post to see the hidden content.

 

Participate ASAP if you are interested and taking Security written in next few days.

 

Thanks

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

×
×
  • Create New...