CCNA Security Practice Test Results

Question 1
55% answer correctly
Which statement is true when using zone-based firewalls on a Cisco router?
When configured with the "PASS" action, stateful inspection is applied to all traffic passing between the configured zones.
Policies are applied to traffic moving between zones, not between interfaces.
Interface ACLs are applied before zone-based policy firewalls when they are applied outbound.
The firewalls can be configured simultaneously on the same interface as classic CBAC using the ip inspect CLI command.
Question 2
25% answer correctly
Which statement describes a result of securing the Cisco IOS image using the Cisco IOS image resilience feature?
The Cisco IOS image file is not visible in the output from the show flash command.
When the router boots up, the Cisco IOS image is loaded from a secured FTP location.
The show version command does not show the Cisco IOS image file location.
The running Cisco IOS image is encrypted and then automatically backed up to the NVRAM.
The running Cisco IOS image is encrypted and then automatically backed up to a TFTP server.
Question 3
59% answer correctly
What is the first step you should take when considering securing your network?
Update servers and user PCs with the latest patches.
Develop a security policy.
Install an intrusion prevention system.
Install a firewall.