642-531 Exam

Cisco Secure Intrusion Detection Systems Exam

Exam Number/Code : 642-531
Exam Name : Cisco Secure Intrusion Detection Systems Exam
Questions and Answers : 63 Q&As
Update Time: 2013-04-05
Price: ~~$ 119.00~~ $ 69.00
642-531 Hard Copy (PDF)
642-531 Test Engine

checkout

642-531

Free 642-531 Demo Download

Test4pass offers free demo for Others 642-531 exam (Cisco Secure Intrusion Detection Systems Exam). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

Exam Description

It is well known that 642-531 exam test is the hot exam of Cisco certification. Test4pass offer you all the Q&A of the 642-531 real test . It is the examination of the perfect combination and it will help you pass 642-531 exam at the first time!

Why choose Test4pass 642-531 braindumps

Quality and Value for the 642-531 Exam
100% Guarantee to Pass Your 642-531 Exam
Downloadable, Interactive 642-531 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.

Test4pass 642-531 Exam Features

Quality and Value for the 642-531 Exam

Test4pass Practice Exams for Cisco 642-531 are written to the highest standards of technical accuracy, using only certified subject matter experts and published authors for development.

100% Guarantee to Pass Your 642-531 Exam

If you prepare for the exam using our Test4pass testing engine, we guarantee your success in the first attempt. If you do not pass the Others 642-531 exam (ProCurve Secure WAN) on your first attempt we will give you a FULL REFUND of your purchasing fee AND send you another same value product for free.

Cisco 642-531 Downloadable, Printable Exams (in PDF format)

Our Exam 642-531 Preparation Material provides you everything you will need to take your 642-531 Exam. The 642-531 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.

642-531 Downloadable, Interactive Testing engines

We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs) Our Cisco 642-531 Exam will provide you with free 642-531 dumps questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and Value for the 642-531 Exam:100% Guarantee to Pass Your Others exam and get your Others Certification.

Hot KeyWords On 642-531 test

How to pass your 642-531 exam

You can search on Search Engine and Find Best IT Certification site: Test4pass.com - Find the Method to succeed 642-531 test,The safer.easier way to get Others Certification .

��
��
Exam : Cisco 642-531
Title : Cisco Secure Intrusion Detection Systems Exam

1. When creating custom signatures with IDS MC, which two fields are you required to populate? (Choose two.)
A. engine description
B. engine name
C. SubSigID
D. signature name
E. signature string
Answer: BD

2. What does an attacker require to perform a Denial of Service attack?
A. a means of network access
B. prior access to the target
C. previously installed root kit
D. username and password
Answer: A

3. What are the two basic types of Cisco IDS signature parameters? (Choose two.)
A. protected
B. master
C. sub-signature
D. local
E. required
Answer: BD

4. Which Cisco IOS command is used to enable the forwarding of packets from the router to the NM-CIDS?
A. ip cef
B. ip inspect
C. service-module
D. ip cef linecard ipc memory
Answer: A

5. Select the true statement regarding Sensor groups.
A. The mandatory check box exists in the context of a Sensor object to identify required configuration settings.
B. The override check box exists in the context of a Sensor Group object to prevent configuration parameters from being inherited.
C. The override check box exists in the context of a Sensor object to override settings previously flagged as mandatory.
D. By default, all Sensor subgroups inherit the configuration settings of other Sensors in the same Sensor group.
E. The mandatory check box exists in the context of a Sensor Group object to indicate that all fields in the configuration window require values.
Answer: B

6. Refer to the exhibit. All switches are connected through Fast Ethernet connections. Server S2 and Sensor IDS2 are in the same VLAN.Which command represents a valid configuration step to permit Sensor IDS2 to monitor traffic sent from Server S2?
A. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 tx
B. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 rx
C. 3500xl(config-if)# port monitor fastEthernet 0/5
D. 3500xl>(enable) set span 0/5 0/24 both
E. 3500xl>(enable) set span 0/24 0/5 rx create
F. No SPAN configuration is required since both devices are in the same VLAN.
Answer: C

7. What is the maximum number of command and control interfaces on an IDS Sensor appliance?
A. 1
B. 2
C. 3
D. 4
E. 5
Answer: A

8. IDS MC version 0 communicates with a sensor using which two methods? Choose two.
A. HTTP
B. SSH
C. RDEP
D. Telnet
E. FTP
Answer: BC

9. When using IDS MC, which four actions can you configure a Cisco IDS Sensor to take when a signature is fired? (Choose four.)
A. log
B. alarm
C. block host
D. reset
E. trigger
F. block connection
Answer: ACDF

10. LAB
12. LAB
13. Refer to the exhibit. All switches are connected through Fast Ethernet connections. Server S2 and Sensor IDS2 are in the same VLAN.Which command represents a valid configuration step to permit Sensor IDS2 to monitor traffic sent from Server S2?
A. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 tx
B. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 rx
C. 3500xl(config-if)# port monitor fastEthernet 0/5
D. 3500xl>(enable) set span 0/5 0/24 both
E. 3500xl>(enable) set span 0/24 0/5 rx create
F. No SPAN configuration is required since both devices are in the same VLAN.
Answer: C

11. Which command initiates the IDSM2 system configuration dialog?
A. sysconfig-sensor
B. setup
C. configure terminal
D. session
E. initialize
Answer: B

12. Which two can a blocking Sensor use to manage a Cisco IOS router for shunning? (Choose two.)
A. SSL
B. SSH
C. RDEP
D. Telnet
E. serial console
Answer: BD

13. LAB
13. Refer to the exhibit. All switches are connected through Fast Ethernet connections. Server S2 and Sensor IDS2 are in the same VLAN.Which command represents a valid configuration step to permit Sensor IDS2 to monitor traffic sent from Server S2?
A. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 tx
B. 3500xl(config)# monitor session 1 source interface fastEthernet 0/5 rx
C. 3500xl(config-if)# port monitor fastEthernet 0/5
D. 3500xl>(enable) set span 0/5 0/24 both
E. 3500xl>(enable) set span 0/24 0/5 rx create
F. No SPAN configuration is required since both devices are in the same VLAN.
Answer: C

14. What is the function of the mls ip ids command when used for traffic capture?
A. applies the IDS ACL to an interface
B. assigns a port to receive capture traffic
C. selects all IP traffic for IDS monitoring
D. processes capture in hardware versus software
E. used with keywords to define interesting traffic
Answer: A