Pass4itsure Cisco (CCNA, CCNP, Meraki Solutions Specialist, CCDP…) dumps updates throughout the year and share some exam questions for free to help you 100% pass the exam

Category: VPN and Security

Cisco 642-813 Study Material, New Updated Cisco 642-813 Dumps PDF Latest Version PDF&VCE

Free Sharing –How to pass the Cisco 642-813 exam quickly? How to prepare for the changed exam? Free download Cisco 642-813   Exam practice test with all new exam questions.You can also get more new version on Flydumps.com

QUESTION 66
PassGuide is implementing 802.1X in order to increase network security. In the use of 802.1X access control, which three protocols are allowed through the switch port before authentication takes place? (Select three)
A. EAP-over-LAN
B. EAP MD5
C. STP
D. protocols not filtered by an ACL
E. CDP
F. TACACS+

Correct Answer: ACE Section: (none) Explanation
Explanation/Reference:
QUESTION 67
VLAN maps have been configured on switch PG1. Which of the following actions are taken in a VLAN map that does not contain a match clause?
A. Implicit deny feature at end of list.
B. Implicit deny feature at start of list.
C. Implicit forward feature at end of list
D. Implicit forward feature at start of list.

Correct Answer: A Section: (none) Explanation
Explanation/Reference:
QUESTION 68
A PassGuide switch was configured as shown below:
switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security mac-address 0002.0002.0002 switchport port-security violation shutdown
Given the configuration output shown above, what happens when a host with the MAC address of 0003.0003.0003 is directly connected to the switch port?
A. The host will be allowed to connect.
B. The port will shut down.
C. The host can only connect through a hub/switch where 0002.0002.0002 is already connected.
D. The host will be refused access.
E. None of the other alternatives apply
Correct Answer: A Section: (none) Explanation

Explanation/Reference:
QUESTION 69
You need to configure port security on switch PG1. Which two statements are true about this technology? (Select two)
A. Port security can be configured for ports supporting VoIP.
B. With port security configured, four MAC addresses are allowed by default. C. The network administrator must manually enter the MAC address for each device in order for the switch to allow connectivity.

 » Read more about: Cisco 642-813 Study Material, New Updated Cisco 642-813 Dumps PDF Latest Version PDF&VCE  »

New Dumps- Free Download Of Cisco 642-511 VCE And PDF Dumps

Good News!The Flydumps Cisco 642-511 exam questions and answers covers all the knowledge points of the real exam. With our Cisco 642-511 practice test, you will never worry about the exam.Recently the new version with all new updated Cisco 642-511 exam dumps can free download on the site Flydumps.com.Visit the site to get more exam information.

Exam A
QUESTION 1
What is the maximum number of simultaneous sessions that can be supported when doing encryption in hardware within the Cisco VPN Concentrator series of products?
A. 100
B. 1500
C. 5000
D. 10000
E. infinite
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
Explanation: The Cisco VPN 3000 Series Concentrator comes in a variety of models that can support small offices of 100 of fewer VPN connections to large enterprises of 10,000 or more simultaneous VPN connections. Redundant and nonredundant configuration are available to help ensure the high reliability of these devices. Reference: Cisco Press CCSP Cisco Secure VPN (Roland, Newcomb) p.30
QUESTION 2
Which of the following operating systems can run the software VPN client? Choose all that apply.
A. linux
B. mac
C. windows
D. solaris
Correct Answer: ABCD Section: (none) Explanation
Explanation/Reference:
Explanation:
There are VPN software clients available for Windows, Solaris, Linux, and Macintosh.

QUESTION 3
DRAG DROP Jason from the security department was given the assignment to match the Cisco VPN key with its description.

A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:

Explanation: The Diffie-Hellman (D-H) key agreement is a public key encryption method that provides a way for two IPSec peers to establish a shared secret key that only they know, although they communicating over an insecure channel. With D-H, each peer generates a public and private key pair. The private key generated by each peer is kept secret and never shared. The public key is calculated from the private key by each peer and is exchanged over the insecure channel. Each peer combinesthe other’s

 » Read more about: New Dumps- Free Download Of Cisco 642-511 VCE And PDF Dumps  »

2016 New Updated — Latest Cisco 642-511 Exam Questions with PDF and VCE 100% Pass Gurantee

100% Valid! Flydumps Cisco 642-511 exam questions and answers are tested and approved by Microsoft experts.Furthermore, we are constantly updating our Cisco 642-511 exam dumps,100% guarantee in quality and reliability.

Exam A
QUESTION 1
Which of the following are valid authentication options for the Hardware Client? (Choose two)
A. User Authentication
B. Unit Authentication
C. IP Address Authentication
D. Interactive Group Authentication
Correct Answer: AB Section: (none) Explanation
Explanation/Reference:
QUESTION 2
What is the default configuration of the Cisco VPN 3002 public interface?
A. DHCP server is enabled
B. DHCP client is enabled
C. static IP address of 192.168.10.1
D. no configuration
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 3
For network extension RRI, which IP address does the Cisco VPN Concentrator advertise?
A. Cisco VPN Client NIC IP address
B. Cisco VPN 3002 assigned IP address
C. Cisco VPN 3002 public interface IP address
D. Cisco VPN 3002 private interface network address
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 4
When configuring group attributes in the Cisco VPN Concentrator, which three parameters are configurable group attributes? Choose three.
A. access hours
B. idle timeout
C. connection priority
D. maximum connect time
E. access level
F. TACACS+ server IP address
Correct Answer: ABD Section: (none) Explanation
Explanation/Reference:
QUESTION 5
To troubleshoot SCEP enrollment, the administrator should scrutinize what event class in the event log?
A. IKE
B. IPSec
C. SCEP
D. Cert
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 6
For the Cisco VPN Concentrator, what are the two types of certificate enrollment? Choose two.
A. file-based enrollment process
B. SCEP
C. PKCS#15 enrollment process
D. automated enrollment process
E. out-of-band enrollment process
F. certified enrollment process
Correct Answer: AB Section: (none) Explanation
Explanation/Reference:
QUESTION 7
LAB A.

 » Read more about: 2016 New Updated — Latest Cisco 642-511 Exam Questions with PDF and VCE 100% Pass Gurantee  »