Welcome to download the newest Pass4itsure hp0-m52 VCE dumps: http://www.pass4itsure.com/hp0-m52.html
Flydumps bring you the best Cisco 642-541 Certification exam preparation materials which will make you pass in the first attempt.And we also provide you all the Cisco 642-541 exam updates as Microsoft announces a change in its Cisco 642-541 exam syllabus,we inform you about it without delay.
QUESTION 136
Which are the functional areas in SAFE Enterprise Network? Choose two.
A. Enterprise Network VPN/Remote Access
B. Enterprise Network Campus
C. Enterprise Network Distribution
D. Enterprise Network Corporate Internet
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 137
How are packet sniffer attacks mitigated in the SAFE SMR small network campus module?
A. host based virus scanning
B. the latest security fixes
C. the use of HIDS and application access control
D. switched infrastructure
E. HIDS
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 138
What are private VLANs?
A. tools that allow segregating traffic at Layer 3, turning broadcast segments into non-broadcast, multi-access-like segments
B. tools that allow segregating traffic at Layer 2, turning broadcast segments into non-broadcast, multi-access-like segments
C. tools that allow segregating traffic at Layer 2, turning non-broadcast, multi-access-like segments into broadcast segments
D. tools that allow segregating traffic at Layer 3, turning non-broadcast, multi-access-like segments into broadcast segments
Correct Answer: B Section: (none) Explanation
Explanation/Reference: QUESTION 139
Which IDS guideline should be followed, according to SAFE SMR?
A. use UDP resets more often than shunning, because UDP traffic is more difficult to spoof
B. use TCP resets more often than shunning, because TCP traffic is more difficult to spoof
C. use TCP resets no longer than 15 minutes
D. use UDP resets no longer than 15 minutes
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 140
What IKE proposal should be chosen on the VPN Concentrator for the Unity Client?
A. any proposal that ends with DH7
B. any IKE proposal, except the IKE proposal that ends with DH7
C. any proposal that starts with Cisco VPN Client
D. any proposal that starts with DH7
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 141
Which two Cisco components encompass secure management? Choose two.
A. Cisco VPN Concentrators
B. CiscoWorks
C. Cisco IDS Sensors
D. Cisco PIX Firewalls
E. Web Device Managers
Correct Answer: BE Section: (none) Explanation
Explanation/Reference:
QUESTION 142
What Radio Frequency (RF) band does the Home RF Shared Wireless Access Protocol (SWAP) specification use
A. 900 GHz
B. 2.4 GHz
C. 5.7 GHz
D. 900 MHz
Correct Answer: A Section: (none) Explanation Explanation/Reference:
QUESTION 143
What is the primary function of the IOS firewall in the SAFE SMR small network design?
A. provide connection state enforcement and detailed filtering for sessions initiated through the firewall
B. provide remote site connectivity and general filtering for sessions initiated through the firewall
C. provide host DoS mitigation
D. authenticate IPSec tunnels
E. provide remote site authentication
Correct Answer: A Section: (none) Explanation
Explanation/Reference:
QUESTION 144
How are virus and Trojan Horse attacks mitigated in the SAFE SMR midsize network design corporate Internet module?
A. filtering at the ISP, edge router, and corporate firewall
B. IDS at the host and network levels
C. mail content filtering, HIDS, and host-based virus scanning
D. OS and IDS detection
E. CAR at the ISP edge and TCP setup controls at the firewall
F. RFC 2827 and 1918 filtering at ISP edge and midsize network edge router
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 145
What threats are expected for the SAFE SMR small network campus module? Choose two.
A. IP spoofing
B. packets sniffers
C. denial of service
D. applications layer attacks
Correct Answer: BD Section: (none) Explanation
Explanation/Reference:
QUESTION 146
Which type of attack is usually implemented using packet sniffers?
A. man-in-the-middle
B. DoS
C. brute force
D. IP spoofing
Correct Answer: A Section: (none) Explanation
Explanation/Reference:
QUESTION 147
Which threats are expected in the SAFE SMR remote user network environment? Choose two.
A. trust exploitation
B. port redirection attacks
C. man in the middle attacks
D. network reconnaissance
Correct Answer: CD Section: (none) Explanation
Explanation/Reference:
QUESTION 148
Which is a design alternative in the SAFE SMR midsize network design campus module?
A. A NIDS appliance can be placed in front of the firewall.
B. A URL filtering server can be placed on the public services segment to filter the types of Web pages employees can access.
C. A separate router and Layer 2 switch can be used for the core and distribution rather than the higher-performing Layer 3 switch.
D. The router between the firewall and the campus module can be eliminated.
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 149
Drag Drop question A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:
Answer: Check certifyme eEngine, Download from Member Center
QUESTION 150
Which vulnerability is not expected in a network design comprised of multiple security zones, multiple user groups, and a single physical switch?
A. MAC spoofing
B. CAM table overflow
C. VTP attacks
D. VLAN hopping
E. private VLAN attacks
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 151
According to SAFE SMR guidelines, where do you implement the Cisco VPN 3000 Series Concentrator?
A. in front of the Internet access router
B. behind the PIX Firewall and parallel to the Internet access router
C. behind the Internet access router and parallel to the PIX Firewall
D. behind the corporate network module
Correct Answer: C Section: (none) Explanation
Explanation/Reference: QUESTION 152
What services do extranet VPNs provide?
A. link corporate headquarters to remote offices
B. link telecommuters and mobile users to corporate network resources
C. link network resources with third-party vendors and business partners
D. link private networks to public networks
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 153
Which vulnerability is not expected in a network design comprised of multiple security zones, multiple user groups, and a single physical switch?
A. MAC spoofing
B. CAM table overflow
C. VTP attacks
D. VLAN hopping
E. private VLAN attacks
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 154
According to SAFE, which statement is true about IPSec tunneling protocols?
A. L2TP supports data encryption and packet integrity.
B. GRE is better suited for site-to-site VPNs.
C. IPSec standard supports IP unicast and multicast traffic.
D. GRE is better suited for remote-access VPNs.
E. GRE supports data encryption and packet integrity.
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 155
Which are key devices in the SAFE SMR midsize network design midsize network campus module? Choose three.
A. Syslog hosts
B. corporate servers
C. Layer 3 switches
D. firewalls
E. VPN Concentrator
F. WAN router
Correct Answer: ABC Section: (none) Explanation
Explanation/Reference:
QUESTION 156
Which routing protocol does not support the use of MD5 authentication?
A. BGP
B. IGRP
C. EIGRP
D. OSPF
E. IS-IS
Correct Answer: E Section: (none) Explanation
Explanation/Reference:
QUESTION 157
Drag Drop question
A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:
Answer: Check certifyme eEngine, Download from Member Center
QUESTION 158
What version of the Cisco PIX Firewall is required to use the VPN accelerator card?
A. version 2.3 or higher
B. version 3.3 or higher
C. version 4.3 or higher
D. version 5.3 or higher
E. version 6.3 or higher
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
With the complete collection of Cisco 642-541 Questions and Answers, Flydumps has assembled to take you through Questions and Answers to your Cisco 642-541 Exam preparation. In the Cisco 642-541 exam resources, you will cover every field of Cisco 642-541 exam helping to ready you for your successful Adobe Certification.
Pass4itsure hp0-m52 dumps with PDF + Premium VCE + VCE Simulator: http://www.pass4itsure.com/hp0-m52.html
Cisco 642-541 Exam Practice, Valid and updated Cisco 642-541 Real Testing On Our Store