Testking Cisco CCSP 642-542 CSI
Visited 481 times, 1 so far today
Cisco SAFE Implementation Exam
Exam Number: 642-542
Associated Certifications: CCSP
Duration: 105 minutes (70-80 questions)
Available Languages: English
Click Here to Register: Pearson VUE or Prometric
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions
Exam Description Exam Topics Recommended Training Additional Resources
Exam Description
The Cisco SAFE Implementation 642-542 CSI exam provides a recertification assessment for those candidates who currently hold a CCSP certification. This exam tests the knowledge and skills needed to use the principles and axioms presented in the SAFE SMR, Enterprise, IP Telephony and Wireless LAN White Papers, and to implement them on specific security devices. The primary focus is on the labs, which allows the student to build complete end-to-end security solutions using SAFE White Papers as the blueprint. The configuration and functionality of the following devices in a SAFE SMR network are described in detail: IOS routers, PIX Firewalls, VPN Concentrators, Cisco IDS Sensors, Cisco Security Agent and the Cisco VPN Client. Basic implementation of a SAFE wireless LAN is also covered.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Security Fundamentals
* Need for network security
* Components of a complete security policy
* Primary network threats and attacks
* Common attacks and recommended mitigation techniques
* Security issues implicit in common management protocols
SAFE Blueprint Overview
* SAFE Blueprint Overview
* Design Fundamentals
* SAFE Axioms
The Cisco Security Portfolio
* Cisco Security Portfolio Overview
* Secure Connectivity-Cisco VPN 3000 Concentrator and Cisco VPN Optimized IOS
* Perimeter Security Firewalls-Cisco PIX Firewall and Cisco IOS Firewall
* Intrusion Protection-IDS
* Identity-CSACS
* Security Management-VMS
* Cisco AVVID
SAFE Small Network Design
* Small Network Design Overview
* Small Network Corporate Internet Module
* Small Network Campus Module
* Implementation-ISP Router
* Implementation-Cisco IOS Firewall
* Implementation-PIX Firewall
* Implementation-CSA
SAFE Midsize Network Design
* Midsize Network Design
* Midsize Network Corporate Internet Module Design Guidelines
* Midsize Network Campus Module
* Midsize Network Campus Module Design Guidelines
* Midsize Network WAN Module
* Implementation-ISP Router and Edge Router
* Implementation-Network IPS
* Implementation-VPN 3000 Concentrator
* Implementation-Layer 3 Switch
SAFE Remote Network Design
* Remote-User Network Overview
* Key Devices and Threat Mitigation
* Software Client Option
* Remote Site Firewall Option
* VPN 3002 Hardware Client Option
* Remote Site Router Option
SAFE Enterprise Network Design
* Enterprise Network Design Overview
* Enterprise Campus
* Enterprise Network Edge
SAFE IP Telephony Design
* IP Telephony Concepts, Caveats and Axioms
* IP Telephony Product Portfolio
* IP Telephony Design Considerations
* IP Telephony Design for Small, Medium and Large Network
SAFE Wireless LAN Design
* Wireless LAN Security Concepts, Caveats and Axioms
* WLAN Security Extensions
* Cisco WLAN Product Portfolio
* WLAN Design Approach
* Standard WLAN Design
* WLAN Design for Small, Medium, Enterprise and Remote Network
* WLAN Implementation
Recommended Training
1.What is the definition of a strong password?
A. at least eight characters long; contains uppercase letters, lowercase letters, numbers, and special characters
B. at least ten characters long and should contain cryptographic characters
C. at least eight characters long; contains uppercase letters, lowercase letters, numbers, and should not contain
special characters
D. defined by each company depending on the product being used
Answer:A
PassGuide offers free demo for Certification Exams You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products. Download links:http://demo.passguide.com/download2.When allowing syslog access from devices outside a firewall, what filtering at the perimeter router should you
implement?
A. no filtering should be implemented since it will block the syslog traffic
B. RFC 1918
C. RFC 2827
D. RFC 1281
E. RFC 1642
Answer:C
3.Which type of attack is characterized by exploitation of well-known weaknesses, use of ports that are allowed
through a firewall, and can never be completely eliminated?
A. network reconnaissance
B. application layer
C. man-in-the-middle
D. trust exploitation
Answer:B
4.What are two characteristics of a packet sniffer designed for attack purposes? Choose two.
A. captures first 300 to 400 bytes
B. typically captures login sessions
C. captures the last 300 to 400 bytes
D. deciphers encrypted passwords
E. unable to capture UDP packets
Answer:AB
5.Which two general IP spoofing techniques does a hacker use? Choose two.
A. an IP address within the range of trusted IP addresses
B. an unknown IP address which cannot be traced
C. an RFC 1918 address
D. an authorized external IP address that is trusted
Answer:AD
5.What method helps mitigate the threat of IP spoofing?
A. access control
B. logging
C. SNMP polling
D. Layer 2 switching
Answer:A
6.Which method will always compute the password if it is made up of the character set you selected to test?
A. brute force computation
B. strong password computation
C. password reassemble
D. brute force mechanism
Answer:A
7.Which type of attack is usually implemented using packet sniffers?
A. man-in-the-middle
B. DoS
C. brute force
D. IP spoofing
Answer:A
8.What is an example of a trust model?
A. NTFS
B. NFS
C. NTP
D. NOS
Answer:B
9.What is the primary method of mitigating port redirection attacks?
A. keep firewalls up to date with the latest patches and fixes
B. do not allow trust models
C. keep OS and applications up to date with the latest patches and fixes
D. use proper trust models
Answer:D
10.What is not a specific type of attack, but refers to most attacks that occur today?
A. DoS
B. brute force password
C. IP spoofing
D. unauthorized access
Answer:D
CCSP DUMPS
tk ccsp 642-542 Interactive Testing Engine Included!
253 Questions
Updated : 09/18/2008
Price : $87.99 $79.99
Preparing for the 642-542 exam? Searching 642-542 Test Questions, 642-542 Practice Exam, 642-542 BrainDumps? Testking 642-542 is written to coincide with the real test by the experienced IT experts and specialists. With the complete collection of Testking Questions and Answers, Testking 642-542 is high enough to help the candidates to pass this exam easily without any other study materials and no need to attend the expensive training class.
Why choose Testking 642-542 braindumps
Quality and Value for the 642-542 Exam
100% Guarantee to Pass Your 642-542 Exam
Practice Test Questions accompanied by exhibits
Testking 642-542 Exam Features
Downloadable, Testking Interactive 642-542 Testing engines
Testking Cisco 642-542 Downloadable, Printable Exams (in PDF vce format)
Our Exam 642-542 Preparation Material Lbas provides you everything you will need to take your 642-542 exams. The 642-542 study guide Exam details Tutorials are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.
Free down:Pass4sure 642-542
Free down:Testking 642-542
Dowload PassGuide Practice Test Questions
8 Comments on “Testking Cisco CCSP 642-542 CSI”