Cisco 642-542 exam study guide：
1. When using PC-based IP phones, which threat is expected between data and voice segments if not protected by a stateful firewall?
A. TCP flood DoS attack
B. IP spoofing attack
C. UDP flood DoS attack
D. application layer attack
Answer: C
The hot exam:70-299 exam and 70-228 exam and 70-298 exam and 70-297.
2. Which IDS guidelines should be followed, according to SAFE SMR?
A. use TCP shunning as opposed to TCP resets
B. use shunning no longer than 15 minutes
C. use shunning on only UDP traffic, as it is more difficult to spoof than TCP
D. use shunning on only TCP traffic, as it is more difficult to spoof than UDP
Answer: D

3. What are the radio frequency bands used by IEEE 802.11 standards? Choose two.
A. 2.8 MHz
B. 2.4 GHz
C. 2.2 MHz
D. 5 GHz
E. 900 GHz
F. 900 MHz
Answer: BD

4. If split tunneling is disabled, how do remote users access the Internet when they have a VPN tunnel established in the software access option in the SAFE SMR remote user design environment?
A. access to the Internet is not allowed
B. the user must disable the VPN tunnel to access the Internet
C. access to the Internet is provided via the corporate connection
D. access to the Internet is provided via the ISP connection
Answer: C

5. What is not a specific type of attack, but refers to most attacks that occur today?
A. DoS
B. brute force password
C. IP spoofing
D. unauthorized access
Answer: D

6. Which command implements Unicast RPF IP spoofing protection?
A. access-list
B. access-group
C. ip verify reverse-path interface
D. tcp verify reverse-path interface
E. udp verify reverse-path interface
Answer: C

7. What does CBAC dynamically create and delete?
A. TCP sessions
B. crypto maps
C. access control lists
D. security control lists
Answer: C
The hot exam:70-299 exam and 70-228 exam and 70-298 exam and 70-297.

No related posts.

Related posts brought to you by Yet Another Related Posts Plugin.