update 642-825 braindumps

March 6th, 2010

1. Refer to the exhibit. On the basis of the partial configuration, which two statements are true? (Choose two.)

642-825.jpg

A. A CBAC inspection rule is configured on router RTA.B. A named ACL called SDM_LOW is configured on router RTA.C. A QoS policy has been applied on interfaces Serial 0/0 and FastEthernet 0/1.D. Interface Fa0/0 should be the inside interface and interface Fa0/1 should be the outside interface.E. On interface Fa0/0, the ip inspect statement should be incoming.F. The interface commands ip inspect SDM_LOW in allow CBAC to monitor multiple protocols.Answer: AF 

2. Refer to the exhibit. Which two statements about the SDF Locations window of the IPS Rule wizard are true? (Choose two.)

642-825-2.jpg

 A. An HTTP SDF file location can be specified by clicking the Add button.B. If all specified SDF locations fail to load, the signature file that is named default.sdf will be loaded.C. The Autosave feature automatically saves the SDF alarms if the router crashes.D. The Autosave feature is automatically enabled for the default built-in signature file.E. The name of the built-in signature file is default.sdf.F. The Use Built-In Signatures (as backup) check box is selected by default.Answer: AF 3. Refer to the exhibit. Which two statements about the AAA configuration are true? (Choose two.)642-825-3.jpg

A. A good security practice is to have the none parameter configured as the final method used to ensure that no other authentication method will be used.

B. If a TACACS+ server is not available, then a user connecting via the console port would not be able to gain access since no other authentication method has been defined.C. If a TACACS+ server is not available, then the user Bob could be able to enter privileged mode as long as the proper enable password is entered.D. The aaa new-model command forces the router to override every other authentication method previously configured for the router lines.E. To increase security, group radius should be used instead of group tacacs+.F. Two authentication options are prescribed by the displayed aaa authentication command.Answer: DF

642-825 ISCW
Last day to test: July 31, 2010

Implementing Secure Converged Wide Area Networks (ISCW)


Categories : 642-825

Permalink
TrackBack URL

RSS feed for comments on this post

No Response