cisco 642-551 SND
Visited 688 times, 1 so far today
Securing Cisco Network Devices Exam
Last day to test 01/31/07
Exam Number: 642-551
Associated Certifications: CCSP, Cisco Firewall, Cisco IPS, and Cisco VPN Specialist
Duration: 90 minutes (60-70 questions)
Available Languages: English
Click Here to Register: Pearson VUE or Prometric
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions
Exam Description Exam Topics Recommended Training Additional Resources
Exam Description
The Securing Cisco Network Devices 642-551 SND exam forms the foundation of the Cisco Certified Security Professional, Cisco Firewall Specialist, Cisco IPS Specialist, and Cisco VPN Specialist certifications. Candidates can prepare for this exam by taking the SND course. This exam includes simulations and tests a candidate’s knowledge and ability to describe, configure, and verify basic security features of Cisco Layer 2 devices, Cisco Routers, Cisco IDS/IPS Sensors, Cisco VPN 3000 Concentrators, and Cisco PIX Security Appliances.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Describe the products in the Cisco security portfolio and explain how they mitigate security threats to a network
Identify the appropriate devices to secure a network
Identify the appropriate device feature to secure a network
Describe the difference in functionality and capabilities of the different security devices
Identify security issues with common management protocols
Describe threats to a network and network devices
Identify different techniques to deal with security threats
Describe the security features available for a Cisco Layer 2 device in a secure network
Identify security features on a Layer 2 device
Describe basic security feature configurations on a Layer 2 device
Implement security on a Cisco IOS Router
Identify mitigation techniques for common physical router security threats
Configure router for secure administrative access
Implement basic AAA for router administrative authentication
Configure AutoSecure to harden Cisco routers
Configure router access lists to secure networks
Configure security for router services and interfaces
Implement Syslog logging
Identify major components of the SDM
Describe and configure Cisco IPS and HIPS
Configure user accounts
Describe and configure Network Access lists
Describe how the sensor device is secure by default
Install the sensor on the network
Describe the methods used to access a sensor
Describe the process for displaying the sensor configuration
Identify major components of IDM
Describe basic sensor operations
Describe the process of using alarms to identify network attacks
Identify the appropriate platform required to install the CSA MC
Configure the default group
Describe the process of agent kit deployment and verifying management of the agent
Describe key features and concepts of VMS
Describe the interoperability of the components of VMS
Describe the hardware and software requirements of VMS
Configure and verify basic remote access on a Cisco VPN 3000 Concentrator
Perform an initial configuration
Configure users and groups
Configure VPN clients
Verify IPSec tunnel establishment
Implement a Cisco PIX security appliance
Describe basic PIX security appliance hardware and software architecture
Identify appropriate PIX security appliance hardware and software configuration
Configure basic network settings using CLI
Configure basic interface features on a PIX security appliance
Verify initial configurations
Identify major components of the PDM
Configure static address translation
Configure Network Address Translation
Configure firewall to secure inbound traffic
Verify inbound traffic restrictions
Describe basic IPSec topologies
Define the services provided by IPSec
Describe the IPSec protocol framework
Describe the IPSec algorithm framework
Describe the concepts of split tunneling
Describe the various authentication methods
Describe how the PIX security appliance uses IPSec to secure networks
Recommended Training
Securing Cisco Network Devices (SND) is the recommended training for this exam.
Courses listed are offered by Cisco Learning Partners, the only authorized source for Cisco IT training delivered exclusively by Certified Cisco Instructors. Check the List of Learning Partners for a Cisco Learning Partner near you.
PassGuide offers free demo for Certification Exams You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products. Download links:http://demo.passguide.com/downloadAdditional Resources
A variety of Cisco Press titles may be available for this exam. These titles can be purchased through the Cisco Marketplace Bookstore, directly from Cisco Press.
CNSS 4011 Training Standard
TestInside 642-551
Cisco 642-551
Securing Cisco Network Devices Exam(SND)
Q&A DEMO
English: www.TestInside.com BIG5: www.Testinside.net GB: www.testking.name
TestInside,help you pass any IT exam!
TestInside 642-551
1.Drag Drop question
Drag and drop question. Drag the items to the proper locations.
Correct Answers:
2.Drag Drop question
Drag and drop question. Drag the items to the proper locations.
Correct Answers:
3.What are the three common types of user accounts on the Cisco IDS/IPS? (Choose three.)
A:administrator B:guest C:operator D:viewer E:privileged
TestInside 642-551
F:executive
Correct Answers: A, C, D
4.Which authentication method is based on the 802.1x authentication framework, and mitigates several of the weaknesses by using dynamic WEP and sophisticated key management on a per-packet basis?
A: PAP B: CHAP C: LEAP D: ARAP
Correct Answers: C
5.Which command sets the minimum length of all Cisco IOS passwords? A: password min-length length
B: min-length security length
C: enable secret min-length
D: security passwords min-length length
Correct Answers: D
6.Which command would be used on the Cisco PIX Security Appliance to show the pool of addresses to be translated?
A: show nat
B: show xlate C: show global D: show conn
Correct Answers: C
7.In which version did NTP begin to support cryptographic authentication? A: version 5
B: version 4
C: version 3
D: version 2
Correct Answers: C
8.During which phase of an attack does the attacker attempt to identify targets? A: penetrate
B: propagate
C: persist
D: probe
E: paralyze
Correct Answers: D
9.Which command is used to encrypt passwords in the router configuration file? A: service password-encryption
B: password-encryption
C: enable password encryption
D: encrypt password
Correct Answers: A
TestInside 642-551
10.What are the four critical services of IPSec functions? (Choose four.)
A:replay protection B:confidentiality C:data integrity D:data mining
E:origin authentication
F:anti-replay protection
Correct Answers: B, C, E, F
Interactive Testing Engine Included!
62 Questions
Updated : 03/03/2008
Price : $87.99 $79.99
Preparing for the 642-551 exam? Searching 642-551 Test Questions, 642-551 Practice Exam, 642-551 BrainDumps? Testking 642-551 is written to coincide with the real test by the experienced IT experts and specialists. With the complete collection of Testking Questions and Answers, Testking 642-551 is high enough to help the candidates to pass this exam easily without any other study materials and no need to attend the expensive training class.
Why choose Testking 642-551 braindumps
Quality and Value for the 642-551 Exam
100% Guarantee to Pass Your 642-551 Exam
Practice Test Questions accompanied by exhibits
Testking 642-551 Exam Features
Downloadable, Testking Interactive 642-551 Testing engines
Testking Cisco 642-551 Downloadable, Printable Exams (in PDF vce format)
Our Exam 642-551 Preparation Material Lbas provides you everything you will need to take your 642-551 exams. The 642-551 study guide Exam details Tutorials are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.
Free download?testking ccsp 642-551
Free download?pass4sure ccsp 642-551
Dowload PassGuide Practice Test Questions
10 Comments on “cisco 642-551 SND”