Download Free Pass4sure Q&A-CCNA Security(640-553) Dumps

Pass4sure Q&A-CCNA Security(640-553)

Friday, August 1st, 2008 | Exam Braindumps

free Pass4sure Q&A-CCNA Security(640-553)1.Which consideration is important when implementing Syslogging in your network?
A. Use SSH to access your Syslog information.
B. Enable the highest level of Syslogging available to ensure you log all possible
event messages.
C. Log all messages to the system buffer so that they can be displayed when accessing
the router.
D. Syncronize clocks on the network with a protocol such as Network Time Protocol.
Answer: D

2.Which statement is true when you have generated RSA keys on your Cisco router to
prepare for secure device management?
A. You must then zeroize the keys to reset secure shell before configuring other
parameters.
B. The SSH protocol is automatically enabled.
C. You must then specify the general-purpose key size used for authentication with
the crypto key generate rsa general-keys modulus command.
D. All vty ports are automatically enabled for SSH to provide secure management.
Answer: B
3.What does level 5 in the following enable secret global configuration mode
command indicate? router#enable secret level 5 password
A. The enable secret password is hashed using MD5.
B. The enable secret password is hashed using SHA.
C. The enable secret password is encrypted using Cisco proprietary level 5
encryption.
D. Set the enable secret command to privilege level 5.
E. The enable secret password is for accessing exec privilege level 5.
Answer: E
4.Which of these correctly matches the CLI command(s) to the equivalent SDM
wizard that performs similar configuration functions?
A. Cisco Common Classification Policy Language configuration commands and the
SDM Site-to-Site VPN wizard
B. auto secure exec command and the SDM One-Step Lockdown wizard
C. setup exec command and the SDM Security Audit wizard
D. class-maps, policy-maps, and service-policy configuration commands and the
SDM IPS wizard
E. aaa configuration commands and the SDM Basic Firewall wizard
Answer: B

Using PassGuide online virtual Cisco practice engine, easy to know well Cisco Training knowledge and pass the Cisco certification exams.

5.What is the key difference between host-based and network-based intrusion
prevention?

A. Network-based IPS is better suited for inspection of SSL and TLS encrypted data
flows.
B. Network-based IPS provides better protection against OS kernel-level attacks
against hosts and servers.
C. Network-based IPS can provide protection to desktops and servers without the
need of installing specialized software on the end hosts and servers.
D. Host-based IPS can work in promiscuous mode or inline mode.
E. Host-based IPS is more scalable then network-based IPS.
F. Host-based IPS deployment requires less planning than network-based IPS.
Answer: C

Full Verion:Pass4sure Q&A-CCNA Security(640-553)

Testking 640-553

http://rapidshare.com/files/140014382/www.ccna.cc_CCNA_Security_640-553.rar.html

password:www.ciscoexams.org