1. Home
  2. Cisco
  3. 642-542

Cisco 642-542 Online Practice Questions and Exam Preparation

642-542 Exam Details

  • Exam Code
    :642-542
  • Exam Name
    :Cisco SAFE Implementation
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :218 Q&As
  • Last Updated
    :Jan 24, 2022

Cisco 642-542 Online Questions & Answers

  • Question 121:

    Which command implements Unicast RPF IP spoofing protection?

    A. ip verify reverse-path interface
    B. access-list
    C. udp verify reverse-path interface
    D. tcp verify reverse-path interface
    E. access-group

  • Question 122:

    What are two characteristics of a packet sniffer designed for attack purposes? Choose two.

    A. deciphers encrypted passwords
    B. captures first 300 to 400 bytes
    C. unable to capture UDP packets
    D. typically captures login sessions
    E. captures the last 300 to 400 bytes

  • Question 123:

    What is the purpose of BGP TTL Security Hash (BTSH)?

    A. prevents attackers from disrupting peering sessions between routers
    B. prevents attacker from creating a routing black hole
    C. reduces the change rate in the Internet's routing tables
    D. helps to prevent information overload from causing a network to melt
    E. encrypts private network data when it is being passed through a public network

  • Question 124:

    What is the primary identity component in a Cisco security solution?

    A. Cisco IOS Firewalls
    B. Cisco VPN Concentrators
    C. Cisco IDS Sensors
    D. Cisco PIX Firewalls
    E. Cisco Access Control servers

  • Question 125:

    When allowing syslog access from devices outside a firewall, what filtering at the perimeter router should you implement?

    A. no filtering should be implemented since it will block the syslog traffic
    B. RFC 2827 C. RFC 1918
    D. RFC 1642
    E. RFC 1281

  • Question 126:

    Which version of PIX introduced support for the VPN accelerator card?

    A. version 4.3
    B. version 5.0
    C. version 4.0
    D. version 5.3

  • Question 127:

    What is the primary function of the VPN Concentrator in the SAFE SMR midsize network design corporate Internet module?

    A. provide secure connectivity to the campus module
    B. provide secure connectivity to the midsize network for remote users
    C. provide secure connectivity to the LAN Module
    D. provide connection state enforcement and detailed filtering for sessions initiated through the firewall
    E. provide secure connectivity to the Internet or ISP network

  • Question 128:

    How are application layer attacks mitigated in the SAFE SMR small network corporate Internet module?

    A. TCP setup controls at the firewall to limit exposure
    B. CAR at ISP edge
    C. HIDS on the public servers
    D. NIDS
    E. filtering at the firewall
    F. virus scanning at the host level

  • Question 129:

    SIMULATION

    Paramteter Value Policy priority number 20 encryption algorithm 3des hash algorithm md5 authentication method pre-share Diffle-Hellman group Identifler 2 SA lifetime 83000 Pre-shared Key mycisco Transform Set Name ciscoset ISAKMP Identify Type IP address PIX Firewall Outside Interface Add 192.168.1.2 Branch Office Outside Interface Add 172.26.26.101 Crypto Map Name myamp Netmask 255.255.255.0

    IPsec paramters are not configured,should not be configured and consequently the tunnel will not be established

    The router and PIX have been configured with the following specifications: Branch Office Router Name:Wimberley E0/0: 10.2.1.1/24 E0/1: 172.26.26.101/24 Enable Password:cisco

    Corporate Office PIX Name: Blanco E0: 192.168.1.2/24 E1: 10.2.1.1/24 Enable Password:cisco

  • Question 130:

    What two modules are in the SAFE SMR small network design? Choose two.

    A. edge
    B. Internet
    C. campus
    D. corporate Internet

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 642-542 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.