CCNA Security 640-553 Quick Reference

Posted by Download Free Pass4sure Crack Version on July 26th, 2008
Tags: Cisco, ,

CCNA Security Quick Reference (Digital Short Cut)

Anthony Sequeira, CCIE No. 15626

ISBN-10: 1-58705-766-2

As a final exam preparation tool, the CCNA Security Quick Reference provides a concise review of all objectives on the new IINS exam (640-553). This digital Short Cut provides you with detailed, graphical-based information, highlighting only the key topics in cram-style format.

With this document as your guide, you will review topics on implementing Cisco IOS network security. This fact-filled Quick Reference allows you to get all-important information at a glance, helping you focus your study on areas of weakness and to enhance memory retention of essential exam concepts.

TOC

1. Network Security Principles

2. Perimeter Security

3. Cisco IOS Firewalls

4. Site-to-Site VPNs

5. Cisco IOS IPS

6. LAN, SAN, Voice, and Endpoint Security

About the author:

Anthony Sequeira, CCIE No. 15626, completed the CCIE in Routing and Switching in January 2006. He is currently pursuing the CCIE in Security. For the past 15 years, he has written and lectured to massive audiences about the latest in networking technologies. He is currently a senior technical instructor and certified Cisco Systems instructor for SkillSoft. He lives with his wife and daughter in Florida. When he is not reading about the latest Cisco innovations, he is exploring the Florida skies in a Cessna.

About the Technical Editor:

Ryan Lindfield is an instructor and network administrator with Boson. He has more than ten years of network administration experience. He has taught many courses designed for CCNA, CCNP, and CCSP preparation, among others. He has written many practice exams and study guides for various networking technologies. He also works as a consultant, where among his tasks are installing and configuring Cisco routers, switches, VPNs, IDSs, and firewalls.

Question: 6
Which of these correctly matches the CLI command(s) to the equivalent SDM wizard that performs similar configuration functions?

A. Cisco Common Classification Policy Language configuration commands and the SDM Site-
to-Site VPNn wizard
B. Auto secure exec command and the SDM One-Step Lockdown wizard
C. Setup exec command and the SDM Security Audit wizard

D. Class-maps, policy-maps, and service-policy configuration commands and the SDM IPS
wizard
E. Aaa configuration commands and the SDM Basic Firewall wizard
Answer: B
Question: 7
What is the key difference between host-based and network-based intrusion prevention?

A. Network-based IPS is better suited for inspection of SSL and TLS encrypted data flows.
B. Network-based IPS provides better protection against OS kernel-level attacks against hosts and servers.
C. Network-based IPS can provide protection to desktops and servers without the need of installing specialized software on the end hosts and servers.
D. Host-based IPS can work in promiscuous mode or inline mode.
E. Host-based IPS is more scalable then network-based IPS.
F. Host-based IPS deployment requires less planning than network-based IPS.
Answer: C
Question: 8
Refer to the exhibit.
You are a network manager for your organization. You are looking at your Syslog server reports. Based on the Syslog message shown, which two statements are true? (Choose two.)

A. Service timestamps have been globally enabled.
B. This is a normal system-generated information message and does not require further investigation.
C. This message is unimportant and can be ignored. D. This message is a level 5 notification message.
Answer: A, D
Question: 9
You suspect an attacker in your network has configured a rogue layer 2 device to intercept traffic
from multiple VLANS, thereby allowing the attacker to capture potentially sensitive data. Which two methods will help to mitigate this type of activity? (Choose two.)

A. Turn off all trunk ports and manually configure each VLAN as required on each port
B. Disable DTP on ports that require trunking
C. Secure the native VLAN, VLAN 1 with encryption
D. Set the native VLAN on the trunk ports to an unused VLAN E. Place unused active ports in an unused VLAN
Answer: B, D Question: 10
Which three statements about SSL-based VPNs are true? (Choose three.)

A. Asymmetric algorithms are used for authentication and key exchange.
B. SSL VPNs and IPsec VPNs cannot be configured concurrently on the same router. C. Symmetric algorithms are used for bulk encryption.

Free download:pass4sure 640-553
Free download:PassGuide 640-553

password:www.ciscoexams.org

Bookmark and Share

Download Latest Passforsure P4S Rapidshare links

  1. Free Lock In Your Future With CCNA Security Download
  2. Free CCNA Security Practice Exam Training Questions Download
  3. Free 10 Things You Should Know About the Cisco CCNA Security Certification Download
  4. Free CCNA Security Certification Resource Page Download
  5. Free CCNA Wireless Quick Reference (Digital Short Cut) Download
  6. Free PassGuide ccna security 640-553 Download
  7. Free CCNA Voice 640-460 Quick Reference (Digital Short Cut) Download
  8. Free pass4sure ccna security 640-553 exam Download
  9. Free PassGuide ccna security 640-553 exam Download
  10. Free CCNA Quick Reference Sheets (Digital Short Cut, CCNA Exam 640-802) Download
  11. Free cisco 640-553 Performing One-Step Lockdown With Security Device Manager Download
  12. Free CCNA 640-533 Security Official Exam Certification Guide Download
  13. Free CCNA 640-553 IINS Certification Exam Download
  14. Free CCNA Security Quick Reference CHAPTER 5 Cisco IOS IPS Download
  15. Free Pass4sure CCNA Security 640-553 Download
latest pass4sure

Leave a Reply

«»