Home > Cisco > Others > 642-566

642-566 Exam

Security Solutions for Systems Engineers Exam

Exam Number/Code : 642-566
Exam Name : Security Solutions for Systems Engineers Exam
Questions and Answers : 115 Q&As
Update Time: 2013-04-05
Price: ~~$ 119.00~~ $ 69.00
642-566 Hard Copy (PDF)
642-566 Test Engine

642-566

Free 642-566 Demo Download

Test4pass offers free demo for Others 642-566 exam (Security Solutions for Systems Engineers Exam). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

Exam Description

It is well known that 642-566 exam test is the hot exam of Cisco certification. Test4pass offer you all the Q&A of the 642-566 real test . It is the examination of the perfect combination and it will help you pass 642-566 exam at the first time!

Why choose Test4pass 642-566 braindumps

Quality and Value for the 642-566 Exam
100% Guarantee to Pass Your 642-566 Exam
Downloadable, Interactive 642-566 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.

Test4pass 642-566 Exam Features

Quality and Value for the 642-566 Exam

Test4pass Practice Exams for Cisco 642-566 are written to the highest standards of technical accuracy, using only certified subject matter experts and published authors for development.

100% Guarantee to Pass Your 642-566 Exam

If you prepare for the exam using our Test4pass testing engine, we guarantee your success in the first attempt. If you do not pass the Others 642-566 exam (ProCurve Secure WAN) on your first attempt we will give you a FULL REFUND of your purchasing fee AND send you another same value product for free.

Cisco 642-566 Downloadable, Printable Exams (in PDF format)

Our Exam 642-566 Preparation Material provides you everything you will need to take your 642-566 Exam. The 642-566 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.

642-566 Downloadable, Interactive Testing engines

We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs) Our Cisco 642-566 Exam will provide you with free 642-566 dumps questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and Value for the 642-566 Exam:100% Guarantee to Pass Your Others exam and get your Others Certification.

Hot KeyWords On 642-566 test

How to pass your 642-566 exam

You can search on Search Engine and Find Best IT Certification site: Test4pass.com - Find the Method to succeed 642-566 test,The safer.easier way to get Others Certification .

��
��
Exam : Cisco 642-566
Title : Security Solutions for Systems Engineers Exam

1. Which three benefits does DMVPN offer? (Choose three.)
A. supports spokes that use dynamic IP addresses
B. supports IP unicast and multicast traffic
C. supports native routing protocols over the tunnels
D. is available on Cisco IOS routers and on Cisco ASA security appliances
E. provides tunnel-less any-to-any connectivity
F. has less overhead than GRE over IPsec
Answer: ABC

2. Which protocol is used to allow the utilization of Cisco Wide Area Application Engines or Cisco IronPort S-Series web security appliances to localize web traffic patterns in the network and to enable the local fulfillment of content requests?
A. SOAP
B. XML
C. WCCP
D. HTTPS
E. DTLS
F. TLS
Answer: C

3. Which is used to authenticate remote IPsec VPN users?
A. PFS
B. XAUTH
C. mode configuration
D. single sign-on (SSO)
E. Diffie-Hellman (DH)
F. pre-shared key
Answer: B

4. Which three security components can be found in today's typical single-tier firewall system? (Choose three.)
A. Stateful Packet Filtering with Application Inspection and Control
B. IPS
C. Network Admission Control
D. application proxy
E. Cache engine
F. server load balancing
Answer: ABD

5. What is implemented on Cisco IP Phones so that they can authenticate itself before gaining network access?
A. Cisco Secure Services Client
B. Cisco NAC Appliance Agent (NAA)
C. IEEE 802.1X supplicant
D. AAA client
E. Cisco Security Agent
F. one-time password
Answer: C

6. What is the primary reason that GET VPN is not deployed over the public Internet?
A. because GET VPN supports re-keying using multicast only
B. because GET VPN preserves the original source and destination IP addresses, which may be private addresses that are not routable over the Internet
C. because GET VPN uses IPsec transport mode, which would expose the IP addresses to the public if using the Internet
D. because the GET VPN group members use multicast to register with the key servers
E. because the GET VPN key servers and group members requires a secure path to exchange the Key Encryption Key (KEK) and the Traffic Encryption Key (TEK)
Answer: B

7. What is used to enable IPsec usage across Port Address Translation (PAT)devices?
A. port forwarding
B. static NAT/PAT
C. NAT-T
D. IPsec tunnel mode
E. RRI
Answer: C

8. Pharming attacks, which are used to fool users into submitting sensitive information to malicious servers, typically involve which attack method?
A. ARP poisoning
B. DNS cache poisoning
C. DHCP exhaustion
D. DHCP server spoofing
E. IP spoofing
Answer: B

9. Which Cisco software agent uses content scanning to identify sensitive content and controls the transfer of sensitive content off the local endpoint over removable storage, locally or network-attached hardware, or network
applications?
A. Cisco Trust Agent 2.0
B. Cisco NAC Appliance Agent 4.1.3
C. Cisco NAC Appliance Web Agent 1.0
D. Cisco Security Agent 6.0
E. Cisco IronPort Agent 3.0
Answer: D

10. Which three are correct guidelines when using separation to secure the enterprise data center? (Choose three.)
A. Separate exposed services' resources into security domains, as granularly as possible.
B. Use DMZ to host exposed services.
C. Always prefer logical separation to physical separation.
D. Use multiple firewall tiers for defense in depth
E. Use IDS instead of IPS for better performance.
Answer: ABD

11. The LWAPP protocol supports which type of native encryption?
A. DES
B. 3DES
C. RC5
E. ECC
F. AES
Answer: F

12. Which statement regarding the hybrid user authentication model for remote-access IPsec VPNs is correct?
A. VPN servers authenticate by using pre-shared keys, and users authenticate by using usernames and passwords.
B. VPN servers authenticate by using digital certificates, and users authenticate by using usernames and passwords.
C. VPN servers authenticate by using digital certificates, and users authenticate by using pre-shared keys.
D. VPN servers and users authenticate by using digital certificates.
E. VPN servers and users authenticate by using pre-shared keys.
Answer: B

13. When implementing point-to-point secure WAN solutions over the Internet, which alternative Cisco IOS method is available if GRE-over-IPsec tunnels cannot beused?
A. Virtual Routing Forwardings (VRFs)
B. Virtual Tunnel Interfaces (VTIs)
C. dynamic crypto maps
D. GET VPN
Answer: B

14. Which algorithm is recommended for implementing automatic symmetric key exchange over an unsecured channel?
A. public key infrastructure (PKI)
B. Diffie-Hellman (DH)
C. RSA
D. EAP
E. SHA-512
F. AES
Answer: B