400-007無料問題集「Cisco Certified Design Expert (CCDE v3.0) Written」

質問 1

Which best practice ensures data security in the private cloud?

（A）Use IPsec for communication between unsecured network connection

（B）Use the same vendor for consistent encryption.

（C）Encrypt data at rest and in transition.

（D）Anonymize data ownership to comply with privacy rules.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

The SD-WAN architecture is composed of separate orchestration, management, control, and data planes.
Which activity happens at the orchestration plane?

（A）Central configuration and monitoring

（B）Packet forwarding

（C）Automatic onboarding of the SD-WAN routers into the SD-WAN overlay

（D）Decision-making process on where traffic flows

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Company XYZ wants to use the FCAPS ISO standard for network management design. The focus of the design should be to monitor and keep track of any performance issues by continuously collecting and analyzing statistical information to monitor, correct, and optimize any reduced responsiveness across the network. Which layer accomplishes this design requirement?

（A）accounting management

（B）fault management

（C）performance management

（D）security management

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Drag and drop the end-to-end network virtualization elements from the left onto the correct network areas on the right.

正解：

Explanation:
Graphical user interface Description automatically generated with medium confidence

質問 5

Refer to the table.

A customer investigates connectivity options for a DCI between two production data centers to aid a large- scale migration project. The solution must provide a single 10G connection between locations and be able to run its own varying QoS profiles without service provider interaction based on the migration stages. All connectivity methods are at 10 Gbps. Which transport technology costs the least if the connectivity is required for just one year?

（A）CWDM over dark fiber

（B）Metro Ethernet

（C）MPLS wires only

（D）DWDM over dark fiber

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

A healthcare provider discovers that protected health information of patients was altered without patient consent. The healthcare provider is subject to HIPAA compliance and is required to protect PHI data. Which type of security safeguard should be implemented to resolve this issue?

（A）technical and physical access control

（B）technical integrity and transmission security

（C）administrative security management processes

（D）physical device and media control

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which two benefits can software defined networks provide to businesses? (Choose two.)

（A）Enables innovation

（B）Reduction of OpEx/CapEx

（C）Provides additional redundancy

（D）Reduced latency

（E）Meets high traffic demands

（F）Decentralized management

正解：A、B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which development model is closely associated with traditional project management?

（A）Static model

（B）Evolutionary delivery model

（C）Lifecycle model

（D）Agile model

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Which two business areas support continuity during emergencies by understanding data flows and business processes? (Choose two)

（A）Centralized device management

（B）BYOD policy

（C）Decentralized device management

（D）Business continuity

（E）Disaster recovery

正解：D、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

A network security team observes phishing attacks on a user machine from a remote location. The organization has a policy of saving confidential data on two different systems using different types of authentication. What is the next step to control such events after the security team verifies all users in Zero Trust modeling?

（A）Assess real-time security health of devices.

（B）Enforce risk-based and adaptive access policies.

（C）Apply a context-based network access control policy for users.

（D）Ensure trustworthiness of devices.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which two design options are available to dynamically discover the RP in an IPv6 multicast network?
(Choose two)

（A）MLD

（B）Embedded RP

（C）Auto-RP

（D）MSDP

（E）BSR

正解：B、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Company XYZ is planning multicast routing over a mixed-vendor private WAN. What technique helps minimize PIM sparse mode configuration complexity?

（A）PIM sparse mode with RP using Auto-RP to announce itself

（B）PIM dense mode with RP using Auto-RP to announce itself

（C）PIM sparse mode with RP using BSR to announce itself

（D）PIM dense mode with RP using BSR to announce itself

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

You are a network designer and you must ensure that the network you design is secure. How do you plan to prevent infected devices on your network from sourcing random DDoS attacks using forged source addresses?

（A）ACL filtering by destination

（B）Unicast RPF loose mode

（C）Unicast RPF strict mode

（D）ACL-based forwarding

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Software-defined networking architecture is used for cost-effective, adaptable, and easily manageable applications. In which two software-defined networks is SDN commonly used? (Choose two.)

（A）Application network

（B）Mobile network

（C）Control network

（D）Metro network

（E）Wide area network

正解：B、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

(Choose two)

（A）New zero-day attacks

（B）Malware detection

（C）Intrusion threat detection

（D）Spyware detection

（E）Encrypted threat traffic

正解：A、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Company XYZ wants to prevent switch loops caused by unidirectional point-to-point link conditions on Rapid PVST+ and MST. Which technology can be used in the design to meet this requirement?

（A）STP Bridge Assurance

（B）MSTP

（C）STP BPDU Guard

（D）TRILL

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 17

Backups and mirror copies of data are part of RPO (Recovery Point Objective) strategies. If a business wants to reduce their CAPEX for disaster recovery, which solution is most applicable?

（A）Perform an annual cybersecurity assessment or penetration test

（B）Build a redundant infrastructure at another location

（C）Migrate parts of or all the infrastructure to the cloud

（D）Renew backup software annually to get the newest version

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

An external edge router provides connectivity from a service provider to an enterprise. Which two Internet edge best practices meet compliance regulations? (Choose two)

（A）Send logs to a centralized logging collection server.

（B）Implement EBGP to advertise all owned IP blocks.

（C）Implement filtering to control traffic that is sourced from the infrastructure IP space.

（D）Use login banners and interface access lists to restrict administrative access to the system.

（E）Enable and use only secure protocols.

正解：D、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 19

The major business applications of an enterprise are largely monolithic and hard-coded. As part of a major modernization and overhaul of the applications, the goal is to move to a modular and containerized application architecture model. At the same time, decoupling from the hardware is desired to move to an on- demand provisioning. However, the CyberOps team mandated that the final architecture must provide the same security levels as an air-gapped data center. Which cloud architecture meets these requirements?

（A）Private cloud

（B）PaaS

（C）IaaS

（D）Hybrid cloud

（E）Public cloud

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

400-007 無料問題集「Cisco Certified Design Expert (CCDE v3.0) Written」

弊社を連絡する

関連リンク

トップ試験