Sep 29

Latest CCNP Security 642-627 Real Exam Download 91-100

EnsurepassQUESTION 91 You are tasked to create a custom IPS signature using the IDM Custom Signature Wizard to detect a network reconnaissance attack in which one system makes connections to multiple hosts on multiple TCP ports. Which Cisco IPS signature engine should be selected to configure this custom IPS signature?   A.      Atomic IP B.      Atomic IP Advanced C.      String TCP D.      Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 81-90

EnsurepassQUESTION 81 When setting up a Cisco IPS appliance in promiscuous mode, which Cisco Catalyst switch CLI command is used to configure SPAN on the switch?   A.      span source in interface configuration mode B.      span session in global configuration mode C.      monitor destination in interface configuration mode D.      monitor session in global configuration mode E.       Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 71-80

EnsurepassQUESTION 71 You want your inline Cisco IPS appliance to drop packets that pose the most severe risk to your network, especially to the servers on your DMZ. Which two parameters should you set to protect your DMZ servers in the most-time-efficient manner? (Choose two.)   A.      event action filter B.      reputation filter C.      target value rating D.      signature fidelity rating Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 61-70

EnsurepassQUESTION 61 Which signature engine is recommended for creating a custom signature for packet header matching?   A.      MULTI-STRING B.      FLOOD.HOST C.      ATOMIC.IP D.      SERVICE E.       SWEEP F.       META   Answer: C     QUESTION 62 On the Cisco IPS appliance, the anomaly detection knowledge Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 51-60

EnsurepassQUESTION 51 Which three statements about the Cisco IntelliShield Alert Manager are true? (Choose three.)   A.      Alert information is analyzed and validated by Cisco security analysts. B.      Alert analysis is vendor-neutral. C.      The built-in workflow system provides a mechanism for tracking vulnerability remediation and integration with Cisco Security Manager and Cisco Security MARS. D.      Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 41-50

EnsurepassQUESTION 41 DRAG DROP Answer:     QUESTION 42 On the Cisco IPS appliance, each virtual sensor can have its own instance of which three parameters? (Choose three.)   A.      signature-definition B.      event-action-rules C.      global-correlation-rules D.      anomaly-detection E.       reputation-filters F.       Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 31-40

EnsurepassQUESTION 31 Refer to the exhibit. What does the Risk Threshold setting of 95 specify? A.      the low risk rating threshold B.      the low threat rating threshold C.      the low target value rating threshold D.      the high risk rating threshold E.       the high threat rating threshold F.       the high target value rating Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 21-30

EnsurepassQUESTION 21 What are the three anomaly detection modes? (Choose three.)   A.      detect B.      active C.      inactive D.      learn E.       full F.       partial   Answer: A,C,D     QUESTION 22 Which type of signature engine is best suited for creating custom signatures that inspect data at OSI Layer Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 11-20

EnsurepassQUESTION 11 Which statement about inline VLAN pair deployment with the Cisco IPS 4200 Series appliance is true?   A.      The sensing interface acts as an 802.1q trunk port, and the Cisco IPS appliance performs VLAN translation between pairs of VLANs. B.      The Cisco IPS appliance connects to two physically distinct switches using two paired physical interfaces. C.      Two sensing interfaces connect to Read more [...]
Sep 29

Latest CCNP Security 642-627 Real Exam Download 1-10

EnsurepassQUESTION 1 Which three are global correlation network participation modes? (Choose three.)   A.      off B.      partial participation C.      reputation filtering D.      detect E.       full participation F.       learning   Answer: A,B,E     QUESTION 2 DRAG DROP Answer:     QUESTION 3 Read more [...]
Sep 29

Latest CCNP Security 642-618 Real Exam Download 121-130

EnsurepassQUESTION 121 Which two configurations are the minimum needed to enable EIGRP on the Cisco ASA appliance? (Choose two.)   A.      Enable the EIGRP routing process and specify the AS number. B.      Define the EIGRP default-metric. C.      Configure the EIGRP router ID. D.      Use the neighbor command(s) to specify the EIGRP neighbors. E.       Use Read more [...]
Sep 29

Latest CCNP Security 642-618 Real Exam Download 111-120

EnsurepassQUESTION 111 Which three types of class maps can be configured on the Cisco ASA appliance? (Choose three.)   A.      control-plane B.      regex C.      inspect D.      access-control E.       management F.       stack   Answer: B,C,E     QUESTION 112 Refer to the partial Cisco ASA configuration and Read more [...]