642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 141-150

By on September 29, 2013
EnsurepassQUESTION 141 What is the maximum number of virtual sensors that can be configured on a Cisco IPS 4260 Sensor appliance?   A.      2 B.      4 C.      6 D.      8 E.       16 F.       There is no fixed limit.   Answer: B     QUESTION 142 Which Cisco IPS appliance feature has the following three potential Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 131-140

By on
EnsurepassQUESTION 131 Refer to the exhibit. What does an action of Rotate indicate?   A.      A new knowledge base is created, but is not loaded. You can view it to decide if you want to load it. B.      A new knowledge base is created and loaded. C.      The knowledge base is rolled back to the previous version. D.      The knowledge base is rotated on a periodic schedule using the different Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 121-130

By on
EnsurepassQUESTION 121 Referring to the monitor session 1 destination GigabitEthernet0/47 ingress Cisco Catalyst switch command, what does the "ingress" command option enable?   A.      Allow the capture of bidirectional traffic on the GigabitEthernet0/47 switch port. B.      Add .1Q headers on the SPAN port (GigabitEthernet0/47) to indicate the source VLAN to the Cisco IPS appliance in promiscuous mode. C.      Allow Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 111-120

By on
EnsurepassQUESTION 111 Refer to the exhibit. When viewing the All Signatures pane, clicking on the Advanced option can be used to enable which two IPS configurations? (Choose two.)   A.      normalizer mode B.      signature variables C.      HTTP and FTP AIC D.      network participation mode E.       event action overrides F.       Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 101-110

By on
EnsurepassQUESTION 101 Refer to the exhibit. Which three statements are true? (Choose three.)   A.      Triggered inline blocks will last for 1 hour while triggered requests for external systems to block will last for 30 minutes. B.      Triggered inline blocks will last for 30 minutes while triggered requests for external systems to block will last for 1 hour. C.      TCP Resets will only be sent to the victim IP Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 91-100

By on
EnsurepassQUESTION 91 You are tasked to create a custom IPS signature using the IDM Custom Signature Wizard to detect a network reconnaissance attack in which one system makes connections to multiple hosts on multiple TCP ports. Which Cisco IPS signature engine should be selected to configure this custom IPS signature?   A.      Atomic IP B.      Atomic IP Advanced C.      String TCP D.      Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 81-90

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 81 When setting up a Cisco IPS appliance in promiscuous mode, which Cisco Catalyst switch CLI command is used to configure SPAN on the switch?   A.      span source in interface configuration mode B.      span session in global configuration mode C.      monitor destination in interface configuration mode D.      monitor session in global Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 71-80

By on
EnsurepassQUESTION 71 You want your inline Cisco IPS appliance to drop packets that pose the most severe risk to your network, especially to the servers on your DMZ. Which two parameters should you set to protect your DMZ servers in the most-time-efficient manner? (Choose two.)   A.      event action filter B.      reputation filter C.      target value rating D.      signature fidelity rating Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 51-60

By on
EnsurepassQUESTION 51 Which three statements about the Cisco IntelliShield Alert Manager are true? (Choose three.)   A.      Alert information is analyzed and validated by Cisco security analysts. B.      Alert analysis is vendor-neutral. C.      The built-in workflow system provides a mechanism for tracking vulnerability remediation and integration with Cisco Security Manager and Cisco Security MARS. D.      Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 31-40

By on
EnsurepassQUESTION 31 Refer to the exhibit. What does the Risk Threshold setting of 95 specify? A.      the low risk rating threshold B.      the low threat rating threshold C.      the low target value rating threshold D.      the high risk rating threshold E.       the high threat rating threshold F.       the high target value rating Read more [...]

Continue Reading

642-627 DUMPS | CCNP SECURITY | Cisco

Latest CCNP Security 642-627 Real Exam Download 11-20

By on
Ensurepass="margin: 0cm 0cm 0pt" align="left">QUESTION 11 Which statement about inline VLAN pair deployment with the Cisco IPS 4200 Series appliance is true?   A.      The sensing interface acts as an 802.1q trunk port, and the Cisco IPS appliance performs VLAN translation between pairs of VLANs. B.      The Cisco IPS appliance connects to two physically distinct switches using two paired physical interfaces. C.      Read more [...]

Continue Reading