Pass4sure 642-552 SND
Filed Under (Cisco) by Best PassGuide Certification PDF Dumps on 26-09-2008
Tagged Under : ccsp
Securing Cisco Network Devices Exam
Last day to test November 17, 2008
Exam Number: 642-552
Associated Certifications: CCSP/Cisco Firewall Specialist/Cisco IPS Specialist/Cisco VPN Specialist
Duration: 75 minutes
Available Languages: English
Click Here to Register: Pearson VUE
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions
Exam Description Exam Topics Recommended Training Additional Resources
Exam Description
The Securing Cisco Network Devices 642-552 SND is the exam associated with the Cisco Certified Security Professional, Cisco Firewall Specialist, Cisco IPS Specialist, and Cisco VPN Specialist certifications. Candidates can prepare for this exam by taking the Securing Cisco Network Devices v2.0 (SND) course. This exam tests a candidate’s knowledge of securing Cisco routers and switches and their associated networks. Topics covered include; Security threats facing modern network infrastructures, Securing Cisco routers, Implementing basic AAA, Using ACLs to mitigate router and network threats, Implementing secure management and reporting, Mitigating common Layer 2 attacks, and Implementing Cisco IOS Firewall features, Cisco IOS IPS features, and IPsec VPN features using Cisco Security Device Manager
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Describe the security threats facing modern network infrastructures
Describe and mitigate the common threats to the physical installation
Describe and list mitigation methods for common network attacks
Describe and list mitigation methods for Worm, Virus, and Trojan Horse attacks
Describe the main activities in each phase of a secure network lifecycle
Explain how to meet the security needs of a typical enterprise with a comprehensive security policy
Describe the Cisco Self Defending Network architecture
Secure Cisco routers
Secure Cisco routers using the SDM Security Audit feature
Use the One-Step Lockdown feature in SDM to secure a Cisco router
Secure administrative access to Cisco routers by setting strong encrypted passwords, exec timeout, login failure rate and using IOS login enhancements
Secure administrative access to Cisco routers by configuring multiple privilege levels
Secure administrative access to Cisco routers by configuring role based CLI
Secure the Cisco IOS image and configuration file
Implement basic AAA using Cisco routers
Explain the functions and importance of AAA
Describe the features of TACACS+ and RADIUS AAA protocols
Describe the methods of authentication that are used to provide access through a router (packet mode) and to provide access to the router (character mode)
Mitigate threats to Cisco routers and networks using ACLs
Explain the functionality of standard, extended, and named IP ACLs used by routers to filter packets
Configure and verify IP ACLs to mitigate given threats (filter IP traffic destined for Telnet, SNMP, and DDoS attacks) in a network using CLI
Configure IP ACLs to prevent IP address spoofing using CLI
Discuss the caveats to be considered when building ACLs
Implement secure network management and reporting
Describe the factors to be considered when planning for secure management and reporting of network devices
Use CLI to configure SSH on Cisco routers to enable secured management access
Use CLI to configure Cisco routers to send Syslog messages to a Syslog server
Describe SNMPv3 and NTPv3
Mitigate common Layer 2 attacks
Describe the common Layer 2 attacks and how to mitigate them (VLAN hopping, STP attacks, ARP spoofing, MAC spoofing, CAM overflow)
Describe the function and benefit of the security features in Cisco Catalyst switches (IBNS, PVLAN, SPAN port)
Describe common threats to WLANs
Describe the security features of the 802.11 protocol
Implement the Cisco IOS firewall feature set using SDM
Describe the operational strengths and weaknesses of the different firewall technologies
Explain stateful firewall operations and the function of the state table
Explain the types of NAT that can be implemented in a firewall
Configure and verify basic and advanced firewall on a Cisco router using SDM
Implement the Cisco IOS IPS feature set using SDM
Define network based vs. host based intrusion detection and prevention
Explain IPS technologies, attack responses, and monitoring options
Enable and verify Cisco IOS IPS operations using SDM
Implement IPsec VPN on Cisco routers using SDM
Explain IKE protocol functionality and phases
Describe the building blocks of IPsec and the security functions it provides
Explain hash-based message authentication code (HMAC) operations
Explain the different methods of encryption
Explain the purpose of the Diffie-Hellman key agreement protocol
Describe how IPsec establishes origin authentication
Describe the PKI environment at a high level
Describe the different types of IPsec VPN implementations
Configure and verify an IPsec site-to-site VPN with pre-shared key authentication using SDM
Explain Cisco Easy VPN Server and Cisco Easy VPN Remote
Configure and verify remote access VPNs using the Cisco Easy VPN Server feature of Cisco SDM
QUESTION 1:
A malicious program is disguised as another useful program; consequently, when the user executes the program, files get erased and then the malicious program spreads itself using emails as the delivery mechanism. Which type of attack best describes how this scenario got started?
A. DoS B. worm C. virus
D. trojan horse
E. DDoS Answer: D
Explanation:
Denial of Service (DoS) is an attack designed to render a computer or network incapable
of providing normal services. The most common DoS attacks will target the computer’s network bandwidth or connectivity. Bandwidth attacks flood the network with such a
high volume of traffic, that all available network resources are consumed and legitimate user requests cannot get through. Connectivity attacks flood a computer with such a high volume of connection requests, that all available operating system resources are
consumed and the computer can no longer process legitimate user requests.
A “denial-of-service” attack is characterized by an explicit attempt by attackers to prevent legitimate users of a service from using that service. Examples include
* attempts to “flood” a network, thereby preventing legitimate network traffic
* attempts to disrupt connections between two machines, thereby preventing access to a service
* attempts to prevent a particular individual from accessing a service
* attempts to disrupt service to a specific system or person
Distributed Denial of Service
* An attacker launches the attack using several machines. In this case, an attacker breaks into several machines, or coordinates with several zombies to launch an attack against a target or network at the same time.
* This makes it difficult to detect because attacks originate from several IP addresses.
* If a single IP address is attacking a company, it can block that address at its firewall. If
it is 300 00 this is extremely difficult.
QUESTION 2:
What is the key function of a comprehensive security policy?
A. informing staff of their obligatory requirements for protecting technology and information assets
B. detailing the way security needs will be met at corporate and department levels
C. recommending that Cisco IPS sensors be implemented at the network edge
D. detailing how to block malicious network attacks
Answer: A Explanation:
Developing a strong security policy helps to protect your resources only if all staff members are properly instructed on all facets and processes of the policy. Most companies have a system in place whereby all employees need to sign a statement confirming that they have read and understood the security policy. The policy should cover all issues the employees encounter in their day-to-day work, such as laptop security, password policy, handling of sensitive information, access levels, tailgating, countermeasures, photo IDs, PIN codes, and security information delivered via newsletters and posters. A top-down approach is required if the policy is to be taken seriously. This means that the security policy should be issued and supported from an executive level downward.
QUESTION 3:
Which building blocks make up the Adaptive Threat Defense phase of Cisco SDN
strategy?
A. VoIP services, NAC services, Cisco IBNS
B. network foundation protection, NIDS services, adaptive threat mitigation services
C. firewall services, intrusion prevention, secure connectivity
D. firewall services, IPS and network antivirus services, network intelligence
E. Anti-X defense, NAC services, network foundation protection
Answer: D Explanation:
Computer connected to the Internet without a firewall can be hijacked and added to an Internet outlaw’s botnet in just a few minutes. A firewall can block malware that could otherwise scan your computer for vulnerabilities and then try to break in at a weak point. The real issue is how to make one 99.9% secure when it is connected to in Internet. At a minimum computers need to have firewall, antivirus and anti-spyware software installed and kept up-to-date. A home network that uses a wired or wireless router with firewall features provides additional protection.
A computer virus can be best described as a small program or piece of code that
penetrates into the operating system, causing unexpected and negative events to occur. A well-known example is a virus, SoBig. Computer viruses reside in the active memory of the host and try to duplicate themselves by different means. This duplication mechanism can vary from copying files and broadcasting data on local-area network (LAN) segments
to sending copies via e-mail or an Internet relay chat (IRC). Antivirus software
applications are developed to scan the memory and hard disks of hosts for known viruses.
If the application finds a virus (using a reference database with virus definitions), it
informs the user.
QUESTION 4:
DRAG DROP
You work as a network administrator at Certkiller .com. Your boss Mrs. Certkiller asks you to match the malicious network attack types with the correct definition.
Answer:
Free 642-552 Exams’s PDF Download
Free Testking offers free demo for 642-552 PDF(Securing Cisco Networking Devices (SND)). You can check out the interface, question quality and usability of our practice exams . We are the only one site can offer demo for almost all Securing Cisco Networking Devices (SND).
Recommended Training about 642-552 exam PDF
The following courses are the recommended training for 642-552 exam PDF.
642-552 Q & A with Explanations
642-552 Audio Exam
642-552 Study Guide
642-552 Preparation Lab
Exam Number/Code: 642-552
Exam Name: Securing Cisco Networking Devices (SND)
VUE Code: 642-552
Questions Type: Single choice,
“Securing Cisco Networking Devices (SND)”, also known as 642-552 exam, is a Cisco certification.
Preparing for the 642-552 exam? Searching 642-552 Test Questions, 642-552 Practice Exam, 642-552 Dumps?
With the complete collection of questions and answers, Pass4sure has assembled to take you through 60 Q&A to your 642-552 Exam preparation. In the 642-552 exam resources, you will cover every field and category in CCSP helping to ready you for your successful Cisco Certification.
Questions and Answers : 60 Q&A
Updated: April 3rd , 2008
Market Price: $125.99
Member Price: $89.99
Pass4sure 642-552 SND
Interactive Testing Engine Included!
128 Questions
Updated : 09/18/2008
Price : $87.99 $79.99
Free download:pass4sure 642-552 SND
Free download:testking 642-552 SND
Download Free Latest PassGuide Microsoft braindumps
- Free testking 642-552 SND Dumps
- Free Testinside cisco CCSP 642-552 Dumps
- Free Pass4sure 642-503 SNRS Dumps
- Free download new pass4sure cisco ccsp dumps Dumps
- Free pass4sure cisco ccsp dumps Dumps
- Free Pass4sure 642-551 SND Dumps
- Free testking 642-551 SND Dumps
- Free Pass4sure 642-524 SNAF Dumps
- Free Pass4sure 642-523 SNPA Dumps
- Free testking 642-503 SNRS Dumps
