Exam1pass
Easiest way to pass IT exams
Exam1pass Help You Pass Any IT Exam
http://www.exam1pass.com
Exam
: Cisco 642-533
Title
:
Implementing Cisco
Intrusion Prevention System
(IPS)
Version : Demo
Exam1pass
Easiest way to pass IT exams
Exam1pass Help You Pass Any IT Exam
http://www.exam1pass.com
1. You think users on your corporate network are disguising the use of file-sharing applications by tunneling
the traffic through port 80. How can you configure your Cisco IPS Sensor to identify and stop this activity?
A. Enable all signatures in the Service HTTP engine.
B. Assign the Deny Packet Inline action to all signatures in the Service HTTP engine.
C. Enable all signatures in the Service HTTP engine. Then create an event action override that adds the
Deny Packet Inline action to events triggered by these signatures if the traffic originates from your corporate
network.
D. Enable the alarm for the non-HTTP traffic signature. Then create an Event Action Override that adds the
Deny Packet Inline action to events triggered by the signature if the traffic originates from your corporate
network.
E. Enable both the HTTP application policy and the alarm on non-HTTP traffic signature.
Answer: E
2. A user with which user account role on a Cisco IPS Sensor can log into the native operating system shell
for advanced troubleshooting purposes when directed to do so by Cisco TAC?
A. administrator
B. operator
C. viewer
D. service
E. root
F. super
Answer: D
3. Which character must precede a variable to indicate that you are using a variable rather than a string?
A. percent sign
B. dollar sign
C. ampersand
D. pound sign
E. asterisk
Answer: B
4. Which statement accurately describes Cisco IPS Sensor automatic signature and service pack updates?
A. The Cisco IPS Sensor can automatically download service pack and signature updates from Cisco.com.
B. The Cisco IPS Sensor can download signature and service pack updates only from an FTP or HTTP
server.
C. You must download service pack and signature updates from Cisco.com to a locally acce