642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 121-130

By on September 29, 2013
EnsurepassQUESTION 121 Which two configurations are the minimum needed to enable EIGRP on the Cisco ASA appliance? (Choose two.)   A.      Enable the EIGRP routing process and specify the AS number. B.      Define the EIGRP default-metric. C.      Configure the EIGRP router ID. D.      Use the neighbor command(s) to specify the EIGRP neighbors. E.       Use Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 101-110

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 101 Refer to the exhibit. Which three CLI commands are generated by these Cisco ASDM configurations? (Choose three.)   A.      object-group network testobj B.      object network testobj C.      ip address 10.1.1.0 255.255.255.0 D.      subnet 10.1.1.0 255.255.255.0 E.       nat (any,any) static 192.168.1.0 Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 91-100

By on
EnsurepassQUESTION 91 When configuring security contexts on the Cisco ASA, which three resource class limits can be set using a rate limit? (Choose three.)   A.      address translation rate B.      Cisco ASDM session rate C.      connections rate D.      MAC-address learning rate (when in transparent mode) E.       syslog messages rate F.       Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 81-90

By on
EnsurepassQUESTION 81 Which option can cause the interactive setup script not to work on a Cisco ASA 5520 appliance running software version 8.4.1?   A.      The clock has not been set on the Cisco ASA appliance using the clock set command. B.      The HTTP server has not been enabled using the http server enable command. C.      The domain name has not been configured using the domain-name command. D.      Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 71-80

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 71 Refer to the exhibit. A Cisco ASA in transparent firewall mode generates the log messages seen in the exhibit. What should be configured on the Cisco ASA to allow the denied traffic?   A.      extended ACL on the outside and inside interface to permit the multicast traffic B.      EtherType ACL on the outside and inside interface to permit the multicast traffic C.      Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 61-70

By on
EnsurepassQUESTION 61 Where in the Cisco ASA appliance CLI are Active/Active Failover configuration parameters configured?   A.      admin context B.      customer context C.      system execution space D.      within the system execution space and admin context E.       within each customer context and admin context   Answer: C      QUESTION Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 51-60

By on
EnsurepassQUESTION 51 Which option lists the main tasks in the correct order to configure a new Layer 3 and 4 inspection policy on the Cisco ASA appliance using the Cisco ASDM Configuration > Firewall > Service Policy Rules pane?   A.        1. Create a class map to identify which traffic to match. 2. Create a policy map and apply action(s) to the traffic class(es). 3. Apply the policy map to an interface or globally using a service policy.   B. Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 41-50

By on
EnsurepassQUESTION 41 For which purpose is the Cisco ASA CLI command aaa authentication match used?   A.      Enable authentication for SSH and Telnet connections to the Cisco ASA appliance. B.      Enable authentication for console connections to the Cisco ASA appliance. C.      Enable authentication for connections through the Cisco ASA appliance. D.      Enable authentication for IPsec Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 31-40

By on
EnsurepassQUESTION 31 Refer to the exhibit. Which corresponding Cisco ASA Software Version 8.3 command accomplishes the same Cisco ASA Software Version 8.2 NAT configuration?   A.      nat (any,any) dynamic interface B.      nat (any,any) static interface C.      nat (inside,outside) dynamic interface D.      nat (inside,outside) static interface E.       Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-618 Real Exam Download 21-30

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 21 A Cisco ASA is operating in transparent firewall mode, but the MAC address table of the Cisco ASA is always empty, which causes connectivity issues. What should you verify to troubleshoot this issue?   A.      if ARP inspection has been disabled B.      if MAC learning has been disabled C.      if NAT has been disabled D.      if ARP Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY

Latest CCNP Security 642-618 Real Exam Download 11-20

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 11 Refer to the exhibit. What is a reasonable conclusion?   A.      The maximum number of TCP connections that the 10.1.1.99 host can establish will be 146608. B.      All the connections from the 10.1.1.99 have completed the TCP three-way handshake. C.      The 10.1.1.99 hosts are generating a vast number of outgoing connections, probably due to a virus. D.      Read more [...]

Continue Reading

642-618 DUMPS | CCNP SECURITY

Latest CCNP Security 642-618 Real Exam Download 1-10

By on
EnsurepassQUESTION 1 On the Cisco ASA, tcp-map can be applied to a traffic class using which MPF CLI configuration command?   A. inspect B. sysopt connection C. tcp-options D. parameters E. set connection advanced-options   Answer: E     QUESTION 2 By default, which traffic can pass through a Cisco ASA that is operating in transparent mode without explicitly allowing it using an ACL?   A.      ARP B.      BPDU Read more [...]

Continue Reading