1. Home
  2. Cisco
  3. 642-542

Cisco 642-542 Online Practice Questions and Exam Preparation

642-542 Exam Details

  • Exam Code
    :642-542
  • Exam Name
    :Cisco SAFE Implementation
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :218 Q&As
  • Last Updated
    :Jan 24, 2022

Cisco 642-542 Online Questions & Answers

  • Question 91:

    How does Java applet filtering distinguish between trusted and untrusted applets?

    A. examines the applet for suspicious code
    B. relies on a list of external sites that you designate as friendly
    C. relies on a list of applets that you designate as hostile
    D. relies on a list of applets that you designate as friendly

  • Question 92:

    Which IDS guidelines should be followed, according to SAFE SMR?

    A. use shunning no longer than 15 minutes
    B. use TCP shunning as opposed to TCP resets
    C. use shunning on only TCP traffic, as it is more difficult to spoof than UDP
    D. use shunning on only UDP traffic, as it is more difficult to spoof than TCP

  • Question 93:

    The remote site router option is nearly identical to which option?

    A. software access option
    B. hardware VPN Client option
    C. dial-up access option
    D. remote site firewall option

  • Question 94:

    Which of the following is not a SAFE guideline to proactively mitigate Code Red attacks?

    A. host intrusion prevention system
    B. access control
    C. network-based application recognition
    D. antivirus

  • Question 95:

    What threats are expected for the SAFE SMR small network campus module? Choose two.

    A. packets sniffers
    B. IP spoofing
    C. applications layer attacks
    D. denial of service

  • Question 96:

    Which two general IP spoofing techniques does a hacker use? Choose two.

    A. an IP address within the range of trusted IP addresses
    B. an unknown IP address which cannot be traced
    C. an RFC 1918 address
    D. an authorized external IP address that is trusted

  • Question 97:

    Which vulnerability is not expected in a network design comprised of multiple security zones, multiple user groups, and a single physical switch?

    A. private VLAN attacks
    B. VTP attacks
    C. CAM table overflow
    D. MAC spoofing
    E. VLAN hopping

  • Question 98:

    Which are key devices in the SAFE SMR midsize network design midsize network campus module? Choose three.

    A. NIDS host
    B. corporate servers
    C. layer 2 switches
    D. VPN Concentrator
    E. WAN router
    F. firewalls

  • Question 99:

    According to SAFE implementation of IPSec VPN, what are key VPN devices in a medium network? (Select three.)

    A. NIDS appliance
    B. VPN router
    C. VPN Concentrator
    D. interior firewall
    E. VPN firewall
    F. distribution router

  • Question 100:

    What method helps mitigate the threat of IP spoofing?

    A. SNMP polling
    B. logging
    C. Layer 2 switching
    D. access control

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 642-542 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.