642-504 Others Braindump
ExamSoon 642-504 Exams
Cisco Securing Networks with Cisco Routers and Switches
O rder : 642-504 Exam
Practice Exam: 642-504
Exam Number/Code: 642-504
Exam Name: Securing Networks with Cisco Routers and Switches
Questions and Answers: 62 Q&As
Free 642-504 Braindumps
Exam : Cisco 642-504
Title : Securing Networks with Cisco Routers and Switches
1. In DMVPN, the NHRP process allows which requirement to be met?
A. dynamic physical interface IP address at the spoke routers
B. high-availability DMVPN designs
C. dynamic spoke-to-spoke on-demand tunnels
D. dynamic routing over the DMVPN
E. dual DMVPN hub designs
Answer: A
2. Which information will be shown by entering the command show zone-pair security?
A. zone descriptions and assigned interfaces
B. all service policy maps
C. source and destination zones, and attached policy
D. physical interface members of the zone pair
Answer: C
3. Refer to the exhibit.
What is correct based on the partial configuration shown?
A. The policy is configured to use an authentication key of 'rsa-sig'.
B. The policy is configured to use Diffie-Hellman group sha-1.
C. The policy is configured to use Triple DES IPsec encryption.
D. The policy is configured to use digital certificates.
E. The policy is configured to use access list 101 to identify the IKE-protected traffic.
Answer: D
4. Which two are capabilities of the Cisco IOS Firewall Feature Set? (Choose two.)
A. protects against worms, malicious users, and denial of service
B. provides intrusion protection capabilities
C. when combined with application inspection, performs as an advanced application layer firewall gateway
D. interoperates with Network Address Translation to conserve and simplify network address use
E. provides for secure connectivity between branch offices
Answer: AD
5. Cisco IOS IPS uses which alerting protocol with a pull mechanism for getting IPS alerts to the network
management application?
A. HTTPS
B. SMTP
C. SNMP
D. syslog
E. SDEE
F. POP3
Answer: E
6. Cisco IOS SSL VPN t