CCNA CCNP Cisco Certification Exam Braindumps

1.After configuring a Cisco WAAS deployment using WCCPv2, you find that you can successfully ping a data center server from a workstation in the branch office. However, when you attempt to start one of the optimized applications, the application cannot communicate with the server. What is the most likely cause?
A. There is insufficient disk space on either the edge or core WAE.
B. You configured half-duplex mode on the WAE interfaces.
C. You configured autonegotiate duplex mode on the WAE interfaces.
D. You deployed the WAE on the same subnet as the users or servers.
Answer: D

2.Refer to the exhibit. Your customer plans to deploy the edge WAE appliances in an off-path, two-arm configuration. The WAE appliances are connected to Cisco Catalyst 6500 Series Switches and use WCCPv2 for traffic interception. The customer wants to minimize the latency added by interception. The customer also wants to know if Layer 2 redirection, rather than GRE tunnels, will improve performance.
What should you tell your customer?
A. Layer 2 redirection can be used only in in-path configurations.
B. Layer 2 redirection can be used only in one-arm configurations.
C. Layer 2 redirection can be used in the customer configuration.
D. GRE tunnels provide better performance than Layer 2 redirection.
Answer: C

3.When implementing Windows authentication for WAE management, what is the maximum allowable time skew between each WAE and the Windows domain controller?
A. 1 second
B. 5 seconds
C. 120 seconds
D. 300 seconds
Answer: D

4.Your customer plans to implement Cisco WAAS using four WAE appliances in a load-balanced configuration. Which feature must be supported on the switches to which the WAE appliances are attached?
A. redirect exclusion
B. Layer 2 redirection
C. WCCPv2
D. WCCPv2 or PBR
Answer: C

5.Your customer has deployed Cisco WAAS using ACE for traffic interception. The customer reports that traffic is not being optimized. Which command would you use to troubleshoot network interception?
A. WAE-CORE# show wccp routers
B. WAE-CORE# show ip access-lists
C. ACE/Admin# show wccp routers
D. ACE/Admin# show rserver detail
E. router# show wccp services
Answer: D

6.Refer to the exhibit. What are two possible reasons the CORE1 WAE might be displayed as “Offline”? (Choose two.)
A. The WAE is powered off.
B. The HTTPS service is disabled.
C. The Central Manager service is disabled.
D. The WAE is configured in the same VLAN as the server nodes.
Answer: AC

1.Which three steps must you perform to prepare sensor interfaces for inline operations? (Choose three.)
A.Disable all interfaces except the inline pair.
B.Add the inline pair to the default virtual sensor.
C.Enable two interfaces for the pair.
D.Disable any interfaces that are operating in promiscuous mode.
E.Create the interface pair.
F.Configure an alternate TCP-reset interface
Correct:B C E

2.Your Cisco router is hosting an NM-CIDS. The router configuration contains an inbound ACL. Which action does the router take when it receives a packet that should be dropped, according to the inbound ACL?
A.The router forwards the packet to the NM-CIDS for inspection, then drops the packet.
B.The router drops the packet and does not forward it to the NM-CIDS for inspection.
C.The router filters the packet through the inbound ACL, tags it for drop action, and forwards the packet to the NM-CIDS. Then the router drops it if it triggers any signature, even a signature with no action configured.
D.The router filters the packet through the inbound ACL, forwards the packet to the NM-CIDS for inspection only if it is an ICMP packet, and then drops the packet.
Correct:B

3.Which action is available only to signatures supported by the Normalizer engine
A.Produce Verbose Alert
B.Modify Packet Inline
C.Deny Packet Inline
D.Log Pair Packets
E.Request SNMP Trap
F.Reset TCP Connection
Correct:B

642-532:Securing Networks Using Intrusion Prevention Systems Exam (IPS)

4.You would like to have your inline sensor deny attackers inline when events occur that have Risk Ratings over 85. Which two actions will accomplish this? (Choose two.)
A.Create Target Value Ratings of 85 to 100.
B.Create an Event Variable for the protected network.
C.Enable Event Action Overrides.
D.Create an Event Action Filter, and assign the Risk Rating range of 85 to 100 to the filter.
E.Enable Event Action Filters.
F.Assign the Risk Rating range of 85 to 100 to the Deny Attacker Inline event action.
Correct:C F

5.Which two are appropriate installation points for a Cisco IPS sensor? (Choose two.)
A.on publicly accessible servers
B.on critical network servers
C.at network entry points
D.on user desktops
E.on corporate mail servers
F.on critical network segments
Correct:C F

6.In which three ways does a Cisco network sensor protect network devices from attacks? (Choose three.)
A.It uses a blend of intrusion detection technologies to detect malicious network activity.
B.It can generate an alert when it detects traffic that matches a set of rules that pertain to typical intrusion activity.
C.It permits or denies traffic into the protected network that is based on access lists that you create on the sensor.
D.It can take a variety of actions when it detects traffic that matches a set of rules that pertain to typical intrusion activity.
E.It uses behavior-based technology that focuses on the behavior of applications to protect network devices from known attacks and from new attacks for which there is no known signature.
Correct:A B D

5. Your customer has deployed Cisco WAAS using ACE for traffic interception. The customer reports that traffic is not being optimized. Which command would you use to troubleshoot network interception?
A. WAE-CORE# show wccp routers
B. WAE-CORE# show ip access-lists
C. ACE/Admin# show wccp routers
D. ACE/Admin# show rserver detail
E. router# show wccp services
Answer: D

Wide Area Application Services for Field Engineers

6. Refer to the exhibit. What are two possible reasons the CORE1 WAE might be displayed as “Offline”? (Choose two.)
A. The WAE is powered off.
B. The HTTPS service is disabled.
C. The Central Manager service is disabled.
D. The WAE is configured in the same VLAN as the server nodes.
Answer: AC

7. Your customer reports that traffic has never been received by the remote device after deploying Cisco WAAS using WCCPv2 in an off-path configuration. Which two parameters should you verify? (Choose two.)
A. IP SLAs
B. WAE subnet
C. router IP address
D. routing configuration
E. service group redirection
Answer: BE

8. Refer to the exhibit. This partial listing shows output from the show tfo connection summary command. Given this output, which statement is correct?
A. The local WAE policy was configured for LZ compression only; the remote WAE policy was configured for full optimization.
B. The local WAE policy was configured for LZ compression and TFO optimization; the remote WAE policy was configured for LZ compression only.
C. Both the local and remote WAE policies were configured for LZ compression only.
D. Both the local and remote WAE policies were configured for LZ compression and TFO optimization, but only LZ compression was applied.
Answer: A