zoom RSS killtest Cisco CCNP Security 642-648試験問題集

<<   作成日時 : 2012/03/29 12:01   >>

ブログ気持玉 0 / トラックバック 0 / コメント 0

killtest 642-648問題集を取得したいならば、killtestへようこそ、killtestはそのCisco CCNP Security資格認定の全部問題集を提供しております、642-648問題集はkilltest提供する場合は、すべての642-648実質的なテストを提供し、これは完璧な組み合わせの審査され、それはあなたの時間を節約することができます、killtest試験642-437の準備資料あなたの642-437試験をする必要がある場合、すべてを提供します。

642-648 CVOICE v8.0
Implementing Cisco Unified Communications Voice over IP and QoS v8.0 (CVOICE v8.0)

ABC Corporation has hired a temporary worker to help out with a new project. The network
administrator gives you the task of restricting the internal clientless SSL VPN network access of the
temporary worker to one server with the IP address of via HTTP.
Which two actions should you take to complete the assignment.? (Choose two.)
A. Configure access-list temp_acl webtype permit url
B. Configure access-list temp_acl_stand_ACL standard permit host
C. Configure access-list temp_acl_extended extended permit http any host
D. Apply the access list to the temporary worker Group Policy.
E. Apply the access list to the temporary worker Connection Profile.
F. Apply the access list to the outside interface in the inbound direction.
Answer: A,D

In which three ways can a Cisco ASA security appliance obtain a certificate revocation list? (Choose
Answer: B,D,E

Which three statements about clientless SSL VPN are true? (Choose three.)
A. Users are not tied to a particular PC or workstation.
B. Users have full application access to internal corporate resources.
C. Minimal IT support is required.
D. Cisco AnyConnect SSL VPN software is automatically downloaded to the remote user at the start of
the clientless session.
E. For security reasons, browser cookies are disabled for clientless SSL VPN sessions.
F. Clientless SSL VPN requires an SSL-enabled web browser.
Answer: A,C,F

Refer to the exhibit.The ABC Corporation is changing remote-user authentication from pre-shared keys
to certificate-based authentication. For most employee authentication, its group membership (the
employees) governs corporate access. Certain management personnel need access to more confidential
servers. Access is based on the group and name, such as finance and level_2. When it is time to pilot the
new authentication policy, a finance manager is able to access the department-assigned servers but
cannot access the restricted servers.
As the network engineer, where would you look for the problem?
A. Check the validity of the identity and root certificate on the PC of the finance manager.
B. Change the Management Certificate to Connection Profile Maps > Rule Priority to a number that is
greater than 10.
C. Check if the Management Certificate to Connection Profile Maps > Rules is configured correctly.
D. Check if the Certificate to Connection Profile Maps > Policy is set correctly.
Answer: D

When establishing a Cisco AnyConnect SSL VPN tunnel, a system administrator wants to restrict
remote home office users to either print to their local printer or send the remaining traffic down the Cisco
AnyConnect SSL VPN tunnel (with restricted Internet access).
Choose both a tunnel policy option and an ACL type to accomplish this design goal. (Choose two.)
A. tunnel all networks
B. tunnel network list below
C. exclude network list from the tunnel
D. standard ACL
E. web ACL
F. extended ACL
Answer: C,D


関連テーマ 一覧





タイトル (本文) ブログ名/日時

トラックバック用URL help

自分のブログにトラックバック記事作成(会員用) help

本 文


内 容 ニックネーム/日時

コメントする help

本 文
killtest Cisco CCNP Security 642-648試験問題集 IT認証を気楽に手に入りましょう!/BIGLOBEウェブリブログ
文字サイズ:       閉じる