- (Exam Topic 3)
Which IETF attribute is supported for the RADIUS CoA feature?

1. A. 24 State
2. B. 30 Calling-Station-ID
3. C. 42 Acct-Session-ID
4. D. 81 Message-Authenticator

Correct Answer: A

- (Exam Topic 3)
What are two features of NetFlow flow monitoring? (Choose two)

1. A. Can track ingress and egress information
2. B. Include the flow record and the flow importer
3. C. Copies all ingress flow information to an interface
4. D. Does not required packet sampling on interfaces
5. E. Can be used to track multicast, MPLS, or bridged traffic

Correct Answer: AE
Reference:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/netflow/configuration/15-mt/nf-15-mt-book/cfgmpls-netflow

- (Exam Topic 3)
Which direction do attackers encode data in DNS requests during exfiltration using DNS tunneling?

1. A. inbound
2. B. north-south
3. C. east-west
4. D. outbound

Correct Answer: D

- (Exam Topic 1)
What is a commonality between DMVPN and FlexVPN technologies?

1. A. FlexVPN and DMVPN use IS-IS routing protocol to communicate with spokes
2. B. FlexVPN and DMVPN use the new key management protocol
3. C. FlexVPN and DMVPN use the same hashing algorithms
4. D. IOS routers run the same NHRP code for DMVPN and FlexVPN

Correct Answer: D
Reference: https://packetpushers.net/cisco-flexvpn-dmvpn-high-level-design/

- (Exam Topic 3)
An administrator enables Cisco Threat Intelligence Director on a Cisco FMC. Which process uses STIX and allows uploads and downloads of block lists?

1. A. consumption
2. B. sharing
3. C. editing
4. D. authoring

Correct Answer: A