Cisco CCSP 642-524 SNAF Securing Networks with ASA Foundation

Posted by Download Free Pass4sure Crack Version on September 19th, 2008
Tags: Cisco,

642-524 SNAF
Securing Networks with ASA Foundation
Exam Number: 642-524
Associated Certifications: CCSP
Duration: 90 minutes (60 questions)
Available Languages: English
Click Here to Register: Pearson VUE
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions

Exam Description Introduction
The Securing Networks with ASA Foundation exam is one of the exams associated with the Cisco Certified Security Professional and the Cisco Firewall Specialist certifications. Candidates can prepare for this exam by taking the SNAF course. This exam includes simulations and tests a candidate’s knowledge and ability to describe, configure, verify and manage the Cisco ASA Security Appliance product.

Exam Topics
The following topics are general guidelines for the content likely to be included. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Configure Security Appliances for secured network connectivity

* Configure and verify network and interface settings using ASDM and CLI
* Configure and verify NAT globals, statics, NAT exemption, and Identity NAT using ASDM
* Configure and verify access-lists with or without object groups using ASDM

Configure and verify routing and switching on Security Appliances

* Describe the routing capabilities of the Security Appliance
* Use ASDM to configure VLANs on a Security Appliance interface
* Use ASDM to configure the passive RIP routing functionality of the Security Appliance

Configure and verify Authentication, Authorization, & Accounting services for Security Appliances

* Configure ACS for Security Appliance support
* Use ASDM to configure the Security Appliance AAA features
* Configure and verify Auth-Proxy (cut-through proxy) using ASDM

Configure and verify Layer 3 & 4 protocol inspection, Modular Policy Framework, and threat detection for Security Appliances

* Configure and verify Layer 3 and Layer 4 protocol inspection using ASDM
* Configure and verify Modular Policy Framework using ASDM
* Use ASDM to configure and verify threat detection

Configure and verify secure connectivity using VPNs

* Configure and verify remote access VPNs using ASDM
* Configure and verify IPsec VPN clients with preshared keys using ASDM
* Configure and verify site-to-site VPNs with preshared keys using ASDM
* Verify IKE and IPsec using ASDM and CLI
* Configure and verify clientless SSL VPN using ASDM

Configure and verify active/standby and active/active failover features on Security Appliances

* Configure and verify active/standby failover using ASDM
* Configure and verify active/active failover using ASDM
* Configure and verify redundant Interface using ASDM

Configure transparent firewall and virtual firewall features on a Security Appliance

* Explain the purpose of virtual & transparent firewalls
* Configure and verify the transparent firewall feature of the Security Appliance using CLI
* Configure and verify the virtual firewall feature of the Security Appliance using ASDM

Monitor and manage installed Security Appliances

* Update, backup, and restore configurations and software images using ASDM and CLI
* Install and verify Licensing using ASDM
* Configure and verify Console and SSH/Telnet access
* Configure and utilize Logging using ASDM

QUESTION 26:
Which command will set the default route for an adaptive security appliance to the IP
Address 10.10.10.1?
A. route outside 0 0 10.10.10.1.1
B. route add default 0 10.10.10.1
C. route management 10.10.10.0 0.0.0.255 10.10.10.1.1
D. route 0 0 10.10.10.1.1
Answer: A
QUESTION 27:
Which of the following statements about adaptive security appliance failover is true?
A. The PIX adaptive security appliance only supports LAN-based failover
B. The PIX adaptive security appliance supports LAN-based and cable-based failover
C. The Cisco ASA security appliance only supports cable-based failover
D. The Cisco ASA and PIX security appliance support LAN-based and cable-based
failover
Answer: B
QUESTION 28:
Which three of these are encryption algorithms used by Cisco ASA security appliances?
(Choose three.)
A. RC4
B. DES
C. Diffie-Hellman Group 5
D. AES
E. Blowfish
F. 3DES
Answer: B,D,F
642-523
www.actualtest.org – The Power of Knowing
QUESTION 29:
Exhibit:
You work as a network technician at PassGuide .com. Please study the exhibit carefully.
The network administrator for this small site has chosen to authenticate HTTP
cut-through proxy traffic via a local database on the Cisco ASA. Which set of command
strings should the administrator enter to accomplish this?
A. PassGuide 1(config)#static (dmz,outside) 192.168.16.6 172.16.16.6
PassGuide 1(config)#access-list 150 permit tcp any host 172.16.16.6 eq www
PassGuide 1(config)#aaa authentication match 150 outside LOCAL
B. PassGuide 1(config)#static (dmz,outside) 192.168.16.6 172.16.16.6
PassGuide 1(config)#access-list 150 permit tcp any host 192.168.16.6 eq www
PassGuide 1(config)#aaa authentication match 150 outside LOCAL
C. PassGuide 1(config)#static (dmz,outside) 192.168.16.6 172.16.16.6
PassGuide 1(config)#access-list 150 permit tcp any host 172.16.16.6 eq www
PassGuide 1(config)#aaa authentication match 150 outside PassGuide 1
D. PassGuide 1(config)#static (dmz,outside) 192.168.16.6 172.16.16.6
PassGuide 1(config)#access-list 150 permit tcp any host 172.16.16.6 eq www
PassGuide 1(config)#aaa authentication match 150 outside asa2
Answer: B
QUESTION 30:
Exhibit:
642-523
www.actualtest.org – The Power of Knowing
You work as a network technician at PassGuide .com. Please study the exhibit carefully.
Given the configuration commands shown, what traffic will be logged to the AAA
Server?
A. Only the authenticated console connection information will be logged int eh
accounting database
B. All connection information will be logged in the accounting database
C. No information will be logged. This is not a valid configuration because TACACS+
connection information can’t be captured and logged
D. All outbound connection information will be logged in the accounting database
Answer: D

Free download:pass4sure 642-524
Free download:PassGuide 642-524

password:www.ciscoexams.org

Bookmark and Share

Download Latest Passforsure P4S Rapidshare links

  1. Free 642-515 SNAA Securing Networks with ASA Advanced Download
  2. Free Latest Pass4sure Cisco Ccsp Exam Dumps Download
  3. Free pass4sure ccsp 642-532 v2.93 Download
  4. Free P4S Cisco CCSP Exam 642-532 v2.95 Download
  5. Free offer new latest pass4sure cisco ccsp dumps Download
  6. Free pass4sure ccsp 642-522 v2.83 Download
  7. Free P4S Cisco CCSP Exam 642-552 v2.93 Download
  8. Free Pass4sure Cisco CCSP Exam 642-504 2.77 Download
  9. Free P4S Cisco CCSP Exam 642-521 v2.83 Download
  10. Free P4S Cisco CCSP Exam 642-551 v2.93 Download
  11. Free Pass4sure cisco ccsp mars 642-545 2.95 Download
  12. Free pass4sure ccsp 642-591 v2.93 Download
  13. Free P4S Cisco CCSP Exam 642-522 v2.93 Download
  14. Free pass4sure ccsp 642-523 v2.95 Download
  15. Free pass4sure CCSP 642-524 v2.83 Download
latest pass4sure

Leave a Reply

«»