Exam Number: 642-524
Associated Certifications: cisco CCSP
Duration: 90 minutes (60 questions)
Available Languages: English
Click Here to Register: Pearson VUE
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions
Exam Description
The Securing Networks with ASA Foundation exam is one of the exams associated with the Cisco Certified Security Professional and the Cisco Firewall Specialist certifications. Candidates can prepare for this exam by taking the SNAF course. This exam includes simulations and tests a candidate’s knowledge and ability to describe, configure, verify and manage the Cisco ASA Security Appliance product.
Exam Topics
The following topics are general guidelines for the content likely to be included. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
Configure Security Appliances for secured network connectivity
* Configure and verify network and interface settings using ASDM and CLI
* Configure and verify NAT globals, statics, NAT exemption, and Identity NAT using ASDM
* Configure and verify access-lists with or without object groups using ASDM
Configure and verify routing and switching on Security Appliances
* Describe the routing capabilities of the Security Appliance
* Use ASDM to configure VLANs on a Security Appliance interface
* Use ASDM to configure the passive RIP routing functionality of the Security Appliance
Configure and verify Authentication, Authorization, & Accounting services for Security Appliances
* Configure ACS for Security Appliance support
* Use ASDM to configure the Security Appliance AAA features
* Configure and verify Auth-Proxy (cut-through proxy) using ASDM
Configure and verify Layer 3 & 4 protocol inspection, Modular Policy Framework, and threat detection for Security Appliances
* Configure and verify Layer 3 and Layer 4 protocol inspection using ASDM
* Configure and verify Modular Policy Framework using ASDM
* Use ASDM to configure and verify threat detection
Configure and verify secure connectivity using VPNs
* Configure and verify remote access VPNs using ASDM
* Configure and verify IPsec VPN clients with preshared keys using ASDM
* Configure and verify site-to-site VPNs with preshared keys using ASDM
* Verify IKE and IPsec using ASDM and CLI
* Configure and verify clientless SSL VPN using ASDM
Configure and verify active/standby and active/active failover features on Security Appliances
* Configure and verify active/standby failover using ASDM
* Configure and verify active/active failover using ASDM
* Configure and verify redundant Interface using ASDM
Configure transparent firewall and virtual firewall features on a Security Appliance
Using PassGuide online virtual practice engine, easy to know well IT Training knowledge and pass the IT certification exams.
* Explain the purpose of virtual & transparent firewalls
* Configure and verify the transparent firewall feature of the Security Appliance using CLI
* Configure and verify the virtual firewall feature of the Security Appliance using ASDM
Monitor and manage installed Security Appliances
* Update, backup, and restore configurations and software images using ASDM and CLI
* Install and verify Licensing using ASDM
* Configure and verify Console and SSH/Telnet access
* Configure and utilize Logging using ASDM
QUESTION 30:
Exhibit:
You work as a network technician at Certkiller .com. Please study the exhibit carefully.
Given the configuration commands shown, what traffic will be logged to the AAA
Server?
A. Only the authenticated console connection information will be logged int eh
accounting database
B. All connection information will be logged in the accounting database
C. No information will be logged. This is not a valid configuration because TACACS+
connection information can’t be captured and logged
D. All outbound connection information will be logged in the accounting database
Answer: D
QUESTION 31:
.Which of these commands causes the CSC SSM to load a new software image from a
remote TFTP server via the CLI?
A. Module 1 recover config
B. Copy tftp:tftphost/image.bin hardware:module1/image.bin
C. Hw module 1 recover config
D. Hw module recover config
Answer: C
QUESTION 32:
Exhibit:
You work as a network technician at Certkiller .com. Please study the exhibit carefully.
What will the adaptive security appliance do if it is configured as shown?
A. Drop any HTTP connection request that contains either the NewP2P1 or the NewP2P2
string and also uses the POST request method
B. Drop any HTTP connection request that contains either the NewP2P1 or the NewP2P2
string or that uses the POST request method
C. Drop any HTTP connection request that either contains the NewP2P1 and the
NewP2P2 strings or uses the POST request method
D. Drop any HTTP connection request that contains the NewP2P1 and NewP2P2 strings
and also uses the POST request method
Answer: A
Free download?pass4sure ccsp 642-524
Free download?testking ccsp 642-524
Download Free Latest Testinside Certification Braindumps
- Free Testinside 642-515 SNAA Securing Networks with ASA Advanced
- Free Testinside Testinside CCSP 642-524
- Free Testinside Testinside CCSP 642-523
- Free Testinside Testinside CCSP 642-515
- Free Testinside Testinside CCSP 642-591
- Free Testinside Testinside 642-652
- Free Testinside testinside ccnp iscw 642-825 v3.68
- Free Testinside Testinside CCSP 642-503
- Free Testinside Testinside 642-544
- Free Testinside Testinside CCNA 640-553
