642-522 Exam
Securing Networks with PIX and ASA Exam(SNPA)
- Exam Number/Code : 642-522
- Exam Name : Securing Networks with PIX and ASA Exam(SNPA)
- Questions and Answers : 63 Q&As
- Update Time: 2011-10-24
- Testing Engine (SoftWare Version): $ 50.00
- PDF (Printable Version) Price: $15.00
Note: After purchase, we will send questions within 24 hours.
Free 642-522 Demo Download
4Cert's offers free 642-522 demo,642-522 Practice exam,642-522 exam questions
for Cisco CCSP (Securing Networks with PIX and ASA Exam(SNPA)). You can check out the question quality and usability of our 642-522 practice exam
before you decide to buy it.Before you purchase our 642-522 Q&A,you can click the link below to download the latest
642-522 pdf demo.
Download 642-522 Exam Testing Engine
642-522 Exam Description
Cisco certification.With the Cisco collection of questions and answers, has assembled to take you through 63 Q&As to your 642-522 Exam preparation. In the 642-522 exam resources, you will cover every field and category in Cisco CCSP helping to ready you for your successful Cisco Certification.Why choose 4cert 642-522 exams
Quality and Value for the 642-522 Exam
100% Guarantee to Pass Your 642-522 Exam
Downloadable, Interactive 642-522 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.
4cert 642-522 Exam Features
Guarantee to Pass Your 642-522 Exam
We provide the latest high quality 642-522 practice exam for the customers,we guarantee
your success at the first attempt with only our 642-522 exam questions, if somehow you do not pass the exam at the first
time, we will not only arrange Free Update for you, but also provide you another exam of your claim, ABSOLUTELY FREE!
After-sales Service
Once you purchase our product,we will offer you the best service.After you purchase our
product, we will offer free update in time for 90 days.Whatever you have any questions,we will help you solve it. And in 3 weeks
we will offer you free updates,so please pay attention our site at all times.
Quality and Value for the 642-522 Exam
4cert Practice Exams for Cisco 642-522 are written to the highest standards of technical accuracy, using only certified subject matter experts and published authors for development.
Guarantee to Pass Your 642-522 Exam
If you prepare for the exam using our 4cert testing engine, we guarantee your success in the first attempt. If you do not pass the CCSP 642-522 Exam exam (Securing Networks with PIX and ASA Exam(SNPA)) on your first attempt we will give you a FREE UPDATE of your purchasing fee AND send you another same value product for free.
Cisco 642-522 Exams (in EXE format)
Our Exam 642-522 Preparation Material provides you everything you will need to take your 642-522 Exam. The 642-522 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.
642-522 Downloadable, Interactive Testing engines
We are all well aware that a major problem in the IT industry is that there
is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a
certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs)
Our Cisco 642-522 Exam will provide you with exam questions with verified answers that reflect
the actual exam. These questions and answers provide you with the experience of taking the actual test.
High quality and Value for the 642-522 Exam:100% Guarantee to Pass Your CCSP
exam and get your CCSP Certification.
Exam : Cisco 642-522
Title : Securing Networks with PIX and ASA Exam(SNPA)
1. Refer to the exhibit.
An administrator wants to permanently map host addresses on the DMZ subnet to the same host addresses, but a different subnet, on the outside interface. Which command should the administrator use to accomplish this?
A. NAT (dmz) 0 172.16.1.0 netmask 255.255.255.0
B. access-list server_map permit tcp any 192.168.10.0 255.255.255.0
Nat (outside) 10 access-list server_map
Global (dmz) 10 172.16.1.9-10 netmask 255.255.255.0
C. static (dmz,outside) 192.168.10.0 172.16.1.0 netmask 255.255.255.0
D. NAT (dmz) 1 172.16.1.0 netmask 255.255.255.0
Global (outside) 1 192.168.10.9-10 netmask 255.255.255.0
Answer: C
2. An administrator is defining a modular policy. As part of the policy, the administrator wants to define a traffic flow between Internet hosts and a specific web server on the DMZ. Which commands should the administrator use?
A. class-map http_traffic
match port tcp eq www
B. class-map http_traffic
match flow ip destination address 192.168.1.11
C. class-map http_traffic
match set 192.168.1.11
D. access-list 150 permit tcp any host 192.168.1.11 eq www
class-map http_traffic
match access-list 150
Answer: D
3. Refer to the exhibit.
The network administrator for this small site has chosen to authenticate HTTP cut-through proxy traffic via a local database on the Cisco PIX Security Appliance. Which command strings should the administrator enter to accomplish this?
A. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 172.16.16.6 eq www
pix1(config)# aaa authentication match 150 outside LOCAL
B. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 192.168.16.6 eq www
pix1(config)# aaa authentication match 150 outside pix1
C. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 172.16.16.6 eq www
pix1(config)# aaa authentication match 150 outside pix1
D. pix1(config)# static (dmz,outside) 192.168.16.6 172.16.16.6
pix1(config)# access-list 150 permit tcp any host 192.168.16.6 eq www
pix1(config)# aaa authentication match 150 outside LOCAL
Answer: D
4. Refer to the exhibit.
An administrator wants a user on the inside network to access two sites on the Internet and present two different source IP addresses. When the user is accessing Company A web servers, the source IP address is translated to 192.168.0.9. When the user is accessing Company B web servers, the source address is translated to 192.168.0.21.
Which of these can the security appliance administrator configure to accomplish this application?
A. inside NAT
B. identity NAT
C. static
D. policy NAT
Answer: D
5. When an outside FTP client accesses a corporation's dmz FTP server through a security appliance, the administrator wants the security appliance to restrict ftp commands that can be performed by the client. Which security appliance commands enable the administrator to restrict the ftp client to performing a specific set of ftp commands.
A. ftp-map inbound_ftp
request-cmd deny appe dele rmd
B. ftp-map inbound_ftp
request-cmd permit get put cdup
C. policy-map inbound
class inbound_ftp_traffic
inspect ftp strict get put cdup
D. policy-map inbound
class inbound_ftp_traffic
inspect ftp strict appe dele rmd
Answer: A
http://www.4cert.com The safer.easier way to get CCSP Certification.
My Shopping Cart
