December/2021 Latest Braindump2go 312-38 Exam Dumps with PDF and VCE Free Updated Today! Following are some new 312-38 Real Exam Questions!
Which BC/DR activity works on the assumption that the most critical processes are brought back from a remote location first, followed by the less critical functions?
Richard has been working as a Linux system administrator at an MNC. He wants to maintain a productive and secure environment by improving the performance of the systems through Linux patch management. Richard is using Ubuntu and wants to patch the Linux systems manually. Which among the following command installs updates (new ones) for Debian-based Linux OSes?
A. sudo apt-get upgrade
B. sudo apt-get dist-update
C. sudo apt-get dist-upgrade
D. sudo apt-get update
Which of the following connects the SDN controller and SDN networking devices and relays information from network services to network devices such as switches and routers?
A. Southbound API
B. Eastbound API
C. Westbound API
D. Northbound API
Henry, head of network security at Gentech, has discovered a general report template that someone has reserved only for the CEO. Since the file has to be editable, viewable, and deletable by everyone, what permission value should he set?
Which of the following provides a set of voluntary recommended cyber security features to include in network-capable IoT devices?
Which type of wireless network threats an attacker stakes out the area from a nearby location with a high gain amplifier drowning out the legitimate access point?
A. Rogue access point attack
B. Jamming signal attack
C. Ad Hoc Connection attack
D. Unauthorized association
Which of the following type of UPS is used to supply power above 10kVA and provides an ideal electric output presentation, and its constant wear on the power components reduces the dependability?
A. Line Interactive
B. Double conversion on-line
C. Stand by Ferro
D. Stand by On-line hybrid
John has planned to update all Linux workstations in his network. The organization is using various Linux distributions including Red hat, Fedora and Debian. Which of following commands will he use to update each respective Linux distribution?
A. 1-ii, 2-i,3-iv,4-iii
Andrew would like to configure IPsec in a manner that provides confidentiality for the content of packets. What component of IPsec provides this capability?
Which characteristic of an antenna refers to how directional an antennas radiation pattern is?
A. Radiation pattern
D. Typical gain
Which field is not included in the TCP header?
A. Acknowledgment number
B. Sequence number
C. Source port
D. Source IP address
A network designer needs to submit a proposal for a company, which has just published a web portal for its clients on the internet. Such a server needs to be isolated from the internal network, placing itself in a DMZ. Faced with this need, the designer will present a proposal for a firewall with three interfaces, one for the internet network, another for the DMZ server farm and another for the internal network. What kind of topology will the designer propose?
A. Screened subnet
B. Multi-homed firewall
C. Bastion host
D. DMZ, External-Internal firewall
You are tasked to perform black hat vulnerability assessment for a client. You received official written permission to work with: company site, forum, Linux server with LAMP, where this site hosted. Which vulnerability assessment tool should you consider to use?
What is the best way to describe a mesh network topology?
A. A network in which every computer in the network has a connection to each and every computer in the network.
B. A network in which every computer meshes together to form a hybrid between a star and bus topology.
C. A network in which every computer in the network can communicate with a single central computer.
D. A network that is extremely cost efficient, offering the best option for allowing computers to communicate amongst each other.
The security network team is trying to implement a firewall capable of operating only in the session layer, monitoring the TCP inter-packet link protocol to determine when a requested session is legitimate or not. Using this type of firewall, they could be able to intercept the communication, making the external network see that the firewall is the source, and facing the user, who responds from the outside is the firewall itself. They are just limiting a requirements previous listed, because they already have a packet filtering firewall and they must add a cheap solution that meets the objective. What kind of firewall would you recommend?
A. Packet Filtering with NAT
B. Circuit Level Gateway
C. Application Proxies
D. Application Level Gateways
If a network is at risk resulting from misconfiguration performed by unskilled and/or unqualified individuals, what type of threat is this?
A. External Threats
B. Unstructured Threats
C. Structured Threats
D. Internal Threats
John is a network administrator and is monitoring his network traffic with the help of Wireshark. He suspects that someone from outside is making a TCP OS fingerprinting attempt on his organization’s network. Which of following Wireshark filter(s) will he use to locate the TCP OS fingerprinting attempt? (Choose all that apply.)
Michael decides to view the ________ to track employee actions on the organization’s network.
A. Firewall policy
B. Firewall settings
C. Firewall log
D. Firewall rule set
Which of the following systems includes an independent NAS Head and multiple storage arrays?
B. None of these
C. Gateway NAS System
D. Integrated NAS System
Which of the following can be used to suppress fire from Class K sources?
B. Carbon dioxide
D. Dry Chemical
Match the following NIST security life cycle components with their activities:
A. 1-iv, 2- iii,3-v,4-i
What is the correct order of activities that a IDS is supposed to attempt in order of detect an intrusion?
A. Prevention, Intrusion Monitoring, intrusion Detection, Response
B. Intrusion Detection, Response, Prevention, Intrusion Monitoring
C. Intrusion Monitoring, Intrusion Detection, Response, Prevention
D. Prevention, intrusion Detection, Response, Intrusion Monitoring
Larry is a network administrator working for a manufacturing company in Detroit. Larry is responsible for the entire company’s network which consists of 300 workstations and 25 servers. After using a hosted email service for a year, the company wants to cut back on costs and bring the email control internal. Larry likes this idea because it will give him more control over email. Larry wants to purchase a server for email but he does not want the server to be on the internal network because this might cause security risks. He decides to place the email server on the outside of the company’s internal firewall. There is another firewall connected directly to the Internet that will protect some traffic from accessing the email server; the server will essentially be place between the two firewalls. What logical area is Larry going to place the new email server into?
A. He is going to place the server in a Demilitarized Zone (DMZ).
B. He will put the email server in an IPSec zone.
C. For security reasons, Larry is going to place the email server in the company’s Logical Buffer Zone (LBZ).
D. Larry is going to put the email server in a hot-server zone.
Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user’s email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures. What is Stephanie working on?
D. Data Integrity
Which of the following interfaces uses hot plugging technique to replace computer components without the need to shut down the system?
Alex is administering the firewall in the organization’s network. What command will he use to check all the remote addresses and ports in numerical form?
A. netstat -a
B. netstat -ao
C. netstat -o
D. netstat -an
Which type of wireless network attack is characterized by an attacker using a high gain amplifier from a nearby location to drown out the legitimate access point signal?
A. Rogue access point attack
B. Ad Hoc Connection attack
C. Jamming signal attack
D. Unauthorized association
Which of the following RAID storage techniques divides the data into multiple blocks, which are further written across the RAID system?
B. None of these
Management decides to implement a risk management system to reduce and maintain the organization’s risk to an acceptable level. Which of the following is the correct order in the risk management phase?
A. Risk Identification, Risk Assessment, Risk Treatment, Risk Monitoring & Review
B. Risk Identification, Risk Assessment, Risk Monitoring & Review, Risk Treatment
C. Risk Treatment, Risk Monitoring & Review, Risk Identification, Risk Assessment
D. Risk Assessment, Risk Treatment, Risk Monitoring & Review, Risk Identification
You want to increase your network security implementing a technology that only allows certain MAC addresses in specific ports in the switches; which one of the above is the best choice?
A. Port Security
B. Port Authorization
C. Port Detection
D. Port Knocking
An IDS or IDPS can be deployed in two modes. Which deployment mode allows the IDS to both detect and stop malicious traffic?
A. passive mode
B. inline mode
C. promiscuous mode
D. firewall mode
Which protocol could choose the network administrator for the wireless network design, if he need to satisfied the minimum requirement of 2.4 GHz, 22 MHz of bandwidth, 2 Mbits/s stream for data rate and use DSSS for modulation.
Physical access controls help organizations monitor, record, and control access to the information assets and facility. Identify the category of physical security controls which includes security labels and warning signs.
A. Technical control
B. Environmental control
C. Physical control
D. Administrative control
Which Internet access policy starts with all services blocked and the administrator enables safe and necessary services individually, which provides maximum security and logs everything, such as system and network activities?
A. Internet access policy
B. Paranoid policy
C. Permissive policy
D. Prudent policy
Daniel who works as a network administrator has just deployed an IDS in his organization’s network. He wants to calculate the False Positive rate for his implementation. Which of the following formulas will he use, to calculate the False Positive rate?
A. False Negative/True Negative+True Positive
B. False Positive/False Positive+True Negative
C. True Negative/False Negative+True Positive
D. False Negative/False Negative+True Positive
The SNMP contains various commands that reduce the burden on the network administrators. Which of the following commands is used by SNMP agents to notify SNMP managers about an event occurring in the network?
Your company is planning to use an uninterruptible power supply (UPS) to avoid damage from power fluctuations. As a network administrator, you need to suggest an appropriate UPS solution suitable for specific resources or conditions. Match the type of UPS with the use and advantage:
Which filter to locate unusual ICMP request an Analyst can use in order to detect a ICMP probes from the attacker to a target OS looking for the response to perform ICMP based fingerprinting?
A. (icmp.type==9 && ((!(icmp.code==9))
B. (icmp.type==8 && ((!(icmp.code==8))
C. (icmp.type==12) | | (icmp.type==15| |(icmp.type==17)
D. (icmp.type==14) | | (icmp.type==15| |(icmp.type==17)
1.2021 Latest Braindump2go 312-38 Exam Dumps (PDF & VCE) Free Share:
2.2021 Latest Braindump2go 312-38 PDF and 312-38 VCE Dumps Free Share:
3.2021 Free Braindump2go 312-38 Exam Questions Download:
Free Resources from Braindump2go,We Devoted to Helping You 100% Pass All Exams!