¥ 250.00 642-522 Exam

Securing Networks with PIX and ASA Exam(SNPA)

  • 科目编号:642-522
  • 科目名称:Securing Networks with PIX and ASA Exam(SNPA)
  • 考题数目:63 Q&As
  • 更新日期:2011-10-24
  • 价 格 : ¥ 395.00 250元RMB
checkout
642-522

免费下载 642-522 认证资料Demo

下载 642-522 PDF 认证考试资料
考试引擎下载

 

选择 pass4side 642-522 资料

642-522 考试是 Cisco 公司的 Securing Networks with PIX and ASA Exam(SNPA) 认证考试官方代号,pass4side 的 642-522 权威考试学习资料经过多名专业Cisco 认证工程师整理测试,pass4side 绝对保证第一次参加 642-522 考试的考生即可顺利通过,否则承诺免费更新!

1、Pass4Side考题大师642-522学习材料是您获取认证的完美组合,覆盖率极高,只要您使用本站的考试学习材料参加642-522 考试,您将一次轻松通过考试;

2、售后服务第一!我们相信要想在当今时代取得成功,必须为广大用户提供全套的周到细致的全程优质售后服务,只有客户满意了,我们才能发展。客户至上是我们Pass4Side考题大师的一贯宗旨;

3、Pass4Side实行“一次不过免费更新”承诺。如果您购买我们642-522的考题,只要不是首次通过,凭盖有PROMETRIC或VUE考试中心钢印的考试成绩单,我们将免费更新642-522最新学习材料,绝对保证您能继续获得有价值的学习材料;

4、本站642-522学习资料根据642-522知识点的的变化动态更新,在厂家知识点每次发生变化后,我们将尽快更新642-522材料知识点。在您购买我们的产品之后,我们将提供30天的免费更新。确保642-522学习材料的覆盖率

5、软件版本642-522 考试资料
优点:具有学习模式,测试模式,线上自动升级
缺点:仅限固定电脑使用,不可打印为文本,只能PC阅读

6、PDF 格式642-522 考试资料(部分最新更新科目已不提供PDF)
优点:不需下载安装软件,方便用户打印和携带,但也带来了可随意制的弊端,因此我们提醒用户不得随意公开或出售本站的642-522资料,一经发现立即取消其升级资格,且永久删除会员。
缺点:不具备测试模式,通过查看 pass4side.cn网站及查收我们的更新E-MAIL获取更新信息。
 
 
Exam : Cisco 642-522
Title : Securing Networks with PIX and ASA Exam(SNPA)


1. Refer to the exhibit.
An administrator wants to permanently map host addresses on the DMZ subnet to the same host addresses, but a different subnet, on the outside interface. Which command should the administrator use to accomplish this?
A. NAT (dmz) 0 172.16.1.0 netmask 255.255.255.0
B. access-list server_map permit tcp any 192.168.10.0 255.255.255.0
Nat (outside) 10 access-list server_map
Global (dmz) 10 172.16.1.9-10 netmask 255.255.255.0
C. static (dmz,outside) 192.168.10.0 172.16.1.0 netmask 255.255.255.0
D. NAT (dmz) 1 172.16.1.0 netmask 255.255.255.0
 Global (outside) 1 192.168.10.9-10 netmask 255.255.255.0
Answer: C

2. An administrator is defining a modular policy. As part of the policy, the administrator wants to define a traffic flow between Internet hosts and a specific web server on the DMZ. Which commands should the administrator use?
A. class-map http_traffic
 match port tcp eq www
B. class-map http_traffic
 match flow ip destination address 192.168.1.11
C. class-map http_traffic
 match set 192.168.1.11
D. access-list 150 permit tcp any host 192.168.1.11 eq www
class-map http_traffic
match access-list 150
Answer: D

3. Refer to the exhibit.
The network administrator for this small site has chosen to authenticate HTTP cut-through proxy traffic via a local database on the Cisco PIX Security Appliance. Which command strings should the administrator enter to accomplish this?
A. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 172.16.16.6 eq www
pix1(config)# aaa authentication match 150 outside LOCAL
B. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 192.168.16.6 eq www
pix1(config)# aaa authentication match 150 outside pix1
C. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 172.16.16.6 eq www
pix1(config)# aaa authentication match 150 outside pix1
D. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 192.168.16.6 eq www
pix1(config)# aaa authentication match 150 outside LOCAL
Answer: D

4. Refer to the exhibit.
An administrator wants a user on the inside network to access two sites on the Internet and present two different source IP addresses. When the user is accessing Company A web servers, the source IP address is translated to 192.168.0.9. When the user is accessing Company B web servers, the source address is translated to 192.168.0.21.
Which of these can the security appliance administrator configure to accomplish this application?
A. inside NAT
B. identity NAT
C. static
D. policy NAT
Answer: D

5. When an outside FTP client accesses a corporation's dmz FTP server through a security appliance, the administrator wants the security appliance to restrict ftp commands that can be performed by the client. Which security appliance commands enable the administrator to restrict the ftp client to performing a specific set of ftp commands.
A. ftp-map inbound_ftp
 request-cmd deny appe dele rmd
B. ftp-map inbound_ftp
 request-cmd permit get put cdup
C. policy-map inbound
class inbound_ftp_traffic
inspect ftp strict get put cdup
D. policy-map inbound
class inbound_ftp_traffic
inspect ftp strict appe dele rmd
Answer: A

客户反馈

Testinside completed my friend  dream锛孴oday when I went into the Testinside锛孖 finally realized that his words. Bess - 2009-08-06 01:37:25

I can鈥檛 believe that I have got such good mark!Thank you very much! Emily - 2009-07-06 18:43:48



产品保证 | 购买指南 | 常见问题 | 支付方式 | 退款协议 | 考试引擎 | 联系我们 | 站点地图 1 2 3 4

Copyright©2006-2009 Pass4side Limited. All Rights Reserved

Pass4side materials do not contain actual questions and answers from Microsoft's Cisco's Certification Exams.