Oct
20
Hi,guys.
Test4actual has updated the latest cisco CCNP 642-845 exam,maybe it will help you pass your exams.
The newest practice for you:http://exam.test4actual.com/642-845.pdf
Oct
19
Hi,guys.
Test4actual has updated the latest Cisco CCNP 642-901 exam,maybe it will help you pass your exams.
The newest practice for you:http://exam.test4actual.com/642-901.pdf
Sep
22
The CCNP Wireless certification was developed to support the growing need for trained professionals who can effectively design, implement, secure, and operate wireless networks and mobility infrastructures. This certification recognizes the critical importance of preparing professionals to support and manage Cisco wireless LANs and networks. It reinforces the ability to assess and translate network business requirements into technical specifications that can then be installed and maintained successfully. Achieving CCNP Wireless demonstrates significant knowledge in designing, deploying and maintaining end-to-end Cisco Wireless LAN solutions.
Prerequisites: Must hold a valid CCNA and CCNA Wireless certification in order to achieve a CCNP Wireless certification.
Availability: Courses and exams for the new CCNP Wireless certification will be made available on July 24, 2009
Aug
17
“CCNP “, also known as 642-821 exam, is a Cisco certification.
Preparing for the 642-821 exam? Searching 642-821 Test Questions, 642-821 Practice Exam, 642-821 Dumps?
With the complete collection of questions and answers, Test4actual has assembled to take you through 245 Q&A to your 642-821 exam preparation. In the 642-821 exam resources, you will cover every field and category in CCNP helping to ready you for your successful Cisco Certification.
Free 642-821 Demo Download
Test4actual offers free demo for CCNP 642-821 exam (Building Cisco Remote Access Networks (BCRAN)). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.
Exam Details
The CCNP exam is the qualifying exam available to candidates pursuing a single-exam option for the Cisco Certified Network Associate CCNP certification. The CCNP (642-821) exam will test materials from the new Interconnection Cisco Network Devices (ICND) course as well as the new Introduction to Cisco Networking Technologies (INTRO) course. The exam will certify that the successful candidate has important knowledge and skills necessary to select, connect, configure, and troubleshoot the various Cisco networking devices. The exam covers topics on Extending Switched Networks with VLANS, Determining IP Routes, Managing IP traffic with Access Lists, Establishing Point-to-Point connections, and Establishing Frame Relay Connections.
Aug
06
Cisco 642-825 exams have changed, Test4actual is the first to publish the latest 642-825 exams!
FREE DEMO:
1. Which two statements about common network attacks are true? (Choose two.)
Select 2 response(s).
A. Access attacks can consist of password attacks, trust exploitation, port redirection, and man-in-the-middle attacks.
B. Access attacks can consist of password attacks, ping sweeps, port scans, and man-in-the-middle attacks.
C. Access attacks can consist of packet sniffers, ping sweeps, port scans, and man-in-the-middle attacks.
D. Reconnaissance attacks can consist of password attacks, trust exploitation, port redirection and Internet information queries.
E. Reconnaissance attacks can consist of packet sniffers, port scans, ping sweeps, and Internet information queries.
F. Reconnaissance attacks can consist of ping sweeps, port scans, man-in-middle attacks and Internet information queries.
Answer: AE
2. Which two statements about the Cisco AutoSecure feature are true? (Choose two.)
Select 2 response(s).
A. All passwords entered during the AutoSecure configuration must be a minimum of 8 characters in length.
B. Cisco123 would be a valid password for both the enable password and the enable secret commands.
C. The auto secure command can be used to secure the router login as well as the NTP and SSH protocols.
D. For an interactive full session of AutoSecure, the auto secure login command should be used.
E. If the SSH server was configured, the 1024 bit RSA keys are generated after the auto secure command is enabled.
Answer: CE
3. Which three statements are correct about MPLS-based VPNs? (Choose three.)
Select 3 response(s).
A. Route Targets (RTs) are attributes attached to a VPNv4 BGP route to indicate its VPN membership.
B. Scalability becomes challenging for a very large, fully meshed deployment.
C. Authentication is done using a digital certificate or pre-shared key.
D. A VPN client is required for client-initiated deployments.
E. A VPN client is not required for users to interact with the network.
F. An MPLS-based VPN is highly scalable because no site-to-site peering is required.
Answer: AEF
4. Which two Network Time Protocol (NTP) statements are true? (Choose two.)
Select 2 response(s).
A. A stratum 0 time server is required for NTP operation.
B. NTP is enabled on all interfaces by default, and all interfaces receive NTP packets.
C. NTP operates on IP networks using User Datagram Protocol (UDP) port 123.
D. The ntp server global configuration is used to configure the NTP master clock to which other peer synchronize themselves.
E. The show ntp status command displays detailed association information of all NTP peers.
F. Whenever possible, configure NTP version 5 because it automatically provides authentication and encryption services.
Answer: BC
5. What are the two main features of Cisco IOS Firewall? (Choose two.)
Select 2 response(s).
A. TACACS+
B. AAA
C. Cisco Secure Access Control Server
D. Intrusion Prevention System
E. Authentication Proxy
Answer: DE
6. Which two statements describe the functions and operations of IDS and IPS
systems? (Choose two.)Select 2 response(s).
A. A network administrator entering a wrong password would generate a true-negative alarm.
B. A false positive alarm is generated when an IDS/IPS signature is correctly identified.
C. An IDS is significantly more advanced over IPS because of its ability to prevent network attacks.
D. Cisco IDS works inline and stops attacks before they enter the network.
E. Cisco IPS taps the network traffic and responds after an attack.
F. Profile-based intrusion detection is also known as “anomaly detection”.
Answer: BF
7. Which two statements about packet sniffers or packet sniffing are true?
(Choose two.)Select 2 response(s).
A. To reduce the risk of packet sniffing, traffic rate limiting and RFC 2827 filtering should be used.
B. Packet sniffers can only work in a switched Ethernet environment.
C. To reduce the risk of packet sniffing, cryptographic protocols such as Secure Shell Protocol (SSH) and Secure Sockets Layer (SSL) should be used.
D. To reduce the risk of packet sniffing, strong authentication, such as one time passwords, should be used.
Answer: CD
8. Which two network attack statements are true? (Choose two.)
Select 2 response(s).
A. Access attacks can consist of password attacks, trust exploitation, port redirection, and man-in-the-middle attacks.
B. Access attacks can consist of UDP and TCP SYN flooding, ICMP echo-request floods, and ICMP directed broadcasts.
C. DoS attacks can be reduced through the use of access control configuration, encryption, and RFC 2827 filtering.
D. DoS attacks can consist of IP spoofing and DDoS attacks.
E. IP spoofing can be reduced through the use of policy-based routing.
F. IP spoofing exploits known vulnerabilities in authentication services, FTP services, and web services to gain entry to web accounts, confidential databases, and other sensitive information.
Answer: AD
9. Which three techniques should be used to secure management protocols?
(Choose three.)Select 3 response(s).
A. Configure SNMP with only read-only community strings.
B. Encrypt TFTP and syslog traffic in an IPSec tunnel.
C. Implement RFC 3704 filtering at the perimeter router when allowing syslog access from devices on the outside of a firewall.
D. Synchronize the NTP master clock with an Internet atomic clock.
E. Use SNMP version 2.
F. Use TFTP version 3 or above because these versions support a cryptographic authentication mechanism between peers.
Answer: ABC
10. Which two statements about the AutoSecure feature are true? (Choose two.)
Select 2 response(s).
A. AutoSecure automatically disables the CDP feature.
B. If you enable AutoSecure, the minimum length of the login and enable passwords is set to 6 characters.
C. The auto secure full command automatically configures the management and forwarding planes without any user interaction.
D. To enable AutoSecure, the auto secure global configuration command must be used.
E. Once AutoSecure has been configured, the user can launch the SDM Web interface to perform a security audit.
Answer: AB
http://www.test4actual.com/642-825.html
11. Which statement about the aaa authentication enable default group radius
enable command is true?
Select the best response.
A. If the radius server returns an error, the enable password will be used.
B. If the radius server returns a ‘failed’ message, the enable password will be used.
C. The command login authentication group will associate the AAA authentication to a specified interface.
D. If the group database is unavailable, the radius server will be used.
Answer: A
12. Which three statements about frame-mode MPLS are true? (Choose three.)
Select 3 response(s).
A. MPLS has three distinct components consisting of the data plane, the forwarding plane, and the control plane.
B. The control plane is a simple label-based forwarding engine that is independent of the type of routing protocol or label exchange protocol.
C. The CEF FIB table contains information about outgoing interfaces and their corresponding Layer 2 header.
D. The MPLS data plane takes care of forwarding based on either destination addresses or labels.
E. To exchange labels, the control plane requires protocols such as Tag Distribution Protocol (TDP) or MPLS Label Distribution Protocol (LDP).
F. Whenever a router receives a packet that should be CEF-switched, but the destination is not in the FIB, the packet is dropped.
Answer: DEF
13. Which three statements about IOS Firewall configurations are true?
(Choose three.)Select 3 response(s).
A. The IP inspection rule can be applied in the inbound direction on the secured interface.
B. The IP inspection rule can be applied in the outbound direction on the unsecured interface.
C. The ACL applied in the outbound direction on the unsecured interface should be an extended ACL.
D. The ACL applied in the inbound direction on the unsecured interface should be an extended ACL.
E. For temporary openings to be created dynamically by Cisco IOS Firewall, the access-list for the returning traffic must be a standard ACL.
F. For temporary openings to be created dynamically by Cisco IOS Firewall, the IP inspection rule must be applied to the secured interface.
Answer: ABD
May
18
Associated
Certifications: CCDP / CCNP
Duration: 5 days,Virtual Classroom
hours,Web Based Training
5 days,Classroom
5 days,Remote Labs & Simulations
Click Here to
List Offerings: Virtual Classroom only
Web Based Training only
Classroom only
Remote Labs & Simulations only
All Delivery Types
Course Content Course Outline
Prerequisites Who Should Attend
CCNA (INTRO and ICNDv2.2 or newer)
CCNP Training for advance skills in building Enterprise level switched networks and applications. Integrate Advance Technologies such as VoIP and Wireless.
Course Objective
In this course, students will learn how to create an efficient and expandable enterprise network by installing, configuring, monitoring, and troubleshooting network infrastructure equipment (especially Catalyst Multilayer Switches) according to the Campus Infrastructure module in the Enterprise Composite Network model. The campus switched network includes converged IP data, IPC (voice), and Airspace WLAN (Wireless) connectivity.
Introduction to Campus Networks
Defining Virtual Networks (VLANs)
Implementing Spanning Tree
Implementing InterVLAN Routing
Implement High Availability in a Campus Environment
Wireless Client Access
Minimizing Service Loss and Data Theft in a Campus Network
Configuring Campus Switches to Support Voice
Channel Partner / Reseller
Customer
Employee
May
18
642-812 BCMSN
Building Cisco Multilayer Switched Networks
|
Exam Number: |
642-812 |
|
Associated Certifications: |
CCNP , CCIP and CCDP |
|
Duration: |
90 minutes (50-60 questions) |
|
Available Languages: |
English, Japanese |
|
Register for Exam: |
Pearson VUE |
|
Exam Policies: |
Read current policies and requirements |
|
Exam Tutorial: |
Review type of exam questions |
|
Register for Course: |
BCMSN courses and other offerings |
|
Exam Description |
Exam Topics |
Recommended Training |
Additional Resources |
Exam Description
The Building Cisco Multilayer Switched Networks (BCMSN 642-812) is a qualifying exam for the Cisco Certified Network Professional CCNP®, Cisco Certified Internetwork Professional CCIP®, and the Cisco Certified Design Professional CCDP® certifications. The BCMSN 642-812 exam will certify that the successful candidate has important knowledge and skills necessary to implement scalable multilayer switched networks. The exam includes topics on Campus Networks, describing and implementing advanced Spanning Tree concepts, VLANs and Inter-VLAN routing, High Availability, Wireless Client Access, Access Layer Voice concepts, and minimizing service Loss and Data Theft in a Campus Network.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Implement VLANs
Explain the functions of VLANs in a hierarchical network.
Configure VLANs (e.g., Native, Default, Static and Access).
Explain and configure VLAN trunking (i.e., IEEE 802.1Q and ISL).
Explain and configure VTP.
Verify or troubleshoot VLAN configurations.
Conduct the operation of Spanning Tree protocols in a hierarchical network
Explain the functions and operations of the Spanning Tree protocols (i.e., RSTP, PVRST, MISTP).
Configure RSTP (PVRST) and MISTP.
Describe and configure STP security mechanisms (i.e., BPDU Guard, BPDU Filtering, Root Guard).
Configure and Verify UDLD and Loop Guard.
Verify or troubleshoot Spanning Tree protocol operations.
Configure and verify link aggregation using PAgP or LACP.
Implement Inter-VLAN routing
Explain and configure Inter-VLAN routing (i.e., SVI and routed ports).
Explain and enable CEF operation.
Verify or troubleshoot InterVLAN routing configurations.
Implement gateway redundancy technologies
Explain the functions and operations of gateway redundancy protocols (i.e., HSRP, VRRP, and GLBP).
Configure HSRP, VRRP, and GLBP.
Verify High Availability configurations.
Describe and configure wireless client access
Describe the components and operations of WLAN topologies (i.e., AP and Bridge).
Describe the features of Client Devices, Network Unification, and Mobility Platforms (i.e., CCX, LWAPP).
Configure a wireless client (i.e., ADU).
Describe and configure security features in a switched network
Describe common Layer 2 network attacks (e.g., MAC Flooding, Rogue Devices, VLAN Hopping, DHCP Spoofing, etc.)
Explain and configure Port Security,802.1x, VACLs, Private VLANs, DHCP Snooping, and DAI.
Verify Catalyst switch (IOS-based) security configurations (i.e., Port Security, 802.1x, VACLs, Private VLANs, DHCP Snooping, and DAI).
Configure support for voice
Describe the characteristics of voice in the campus network.
Describe the functions of Voice VLANs and trust boundaries.
Configure and verify basic IP Phone support (i.e. Voice VLAN, Trust and CoS options, AutoQoS for voice).
May
18
642-845 ONT
Optimizing Converged Cisco Networks
|
Exam Number: |
642-845 |
|
Associated Certifications: |
CCNP |
|
Duration: |
90 minutes (50-60 questions) |
|
Available Languages: |
English, Japanese |
|
Register for Exam: |
Pearson VUE |
|
Exam Policies: |
Read current policies and requirements |
|
Exam Tutorial: |
Review type of exam questions |
|
Register for Course: |
ONT courses and other offerings |
|
Exam Description |
Exam Topics |
Recommended Training |
Additional Resources |
Exam Description
The Optimizing Converged Cisco Networks (642-845 ONT) is a qualifying exam for the Cisco Certified Network Professional CCNP®. The ONT 642-845 exam will certify that the successful candidate has important knowledge and skills in optimizing and providing effective QOS techniques for converged networks. The exam topics include implementing a VOIP network, implementing QoS on converged networks, specific IP QoS mechanisms for implementing the DiffServ QoS model, AutoQoS, wireless security and basic wireless management.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Describe Cisco VoIP implementations
Describe the functions and operations of a VoIP network (e.g., packetization, bandwidth considerations, CAC, etc.).
Describe and identify basic voice components in an enterprise network (e.g. Gatekeepers, Gateways, etc.)
Describe QoS considerations
Explain the necessity of QoS in converged networks (e.g., bandwidth, delay, loss, etc.).
Describe strategies for QoS implementations (e.g. QoS Policy, QoS Models, etc.).
Describe DiffServ QoS implementations
Describe classification and marking (e.g., CoS, ToS, IP Precedence, DSCP, etc.).
Describe and configure NBAR for classification.
Explain congestion management and avoidance mechanisms (e.g., FIFO, PQ, WRR, WRED, etc.).
Describe traffic policing and traffic shaping (i.e., traffic conditioners).
Describe Control Plane Policing.
Describe WAN link efficiency mechanisms (e.g., Payload/Header Compression, MLP with interleaving, etc.).
Describe and configure QoS Pre-Classify.
Implement AutoQoS
Explain the functions and operations of AutoQoS.
Describe the SDM QoS Wizard.
Configure, verify, and torubleshoot AutoQoS implementations (i.e., MQC).
Implement WLAN security and management
Describe and Configure wireless security on Cisco Clients and APs (e.g., SSID, WEP, LEAP, etc.).
Describe basic wireless management (e.g., WLSE and WCS). Configure and verify basic WCS configuration (i.e., login, add/review controller/AP status, security, and import/review maps).
Describe and configure WLAN QoS.
May
18
642-825 ISCW
Implementing Secure Converged Wide Area Networks
Exam Number: 642-825
Associated Certifications: CCNP
Duration: 90 minutes (50-60 questions)
Available Languages: English, Japanese
Register for Exam: Pearson VUE
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions
Register for Course: ISCW courses and other offerings
Exam Description
Exam Topics
Recommended Training
Additional Resources
Exam Description
The Implementing Secure Converged Wide Area Networks (ISCW 642-825) is a qualifying exam for the Cisco Certified Network Professional CCNP®. The ISCW 642-825 exam will certify that the successful candidate has important knowledge and skills necessary to secure and expand the reach of an enterprise network to teleworkers and remote sites with focus on securing remote access and VPN client configuration. The exam covers topics on Cisco hierarchical network model as it pertains to the WAN, teleworker configuration and access, frame mode MPLS, site-to-site IPSEC VPN, Cisco EZVPN, strategies used to mitigate network attacks, Cisco device hardening and IOS firewall features.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Implement basic teleworker services
Describe Cable (HFC) technologies.
Describe xDSL technologies.
Configure ADSL (i.e., PPPoE or PPPoA).
Verify basic teleworker configurations.
Implement Frame-Mode MPLS
Describe the components and operation of Frame-Mode MPLS (e.g., packet-based MPLS VPNs).
Configure and verify Frame-Mode MPLS.
Implement a site-to-site IPSec VPN
Describe the components and operations of IPSec VPNs and GRE Tunnels.
Configure a site-to-site IPSec VPN/GRE Tunnel with SDM (i.e., preshared key).
Verify IPSec/GRE Tunnel configurations (i.e., IOS CLI configurations).
Describe, configure, and verify VPN backup interfaces.
Describe and configure Cisco Easy VPN solutions using SDM.
Describe network security strategies
Describe and mitigate common network attacks (i.e., Reconnaissance, Access, and Denial of Service).
Describe and mitigate Worm, Virus, and Trojan Horse attacks.
Describe and mitigate application-layer attacks (e.g., management protocols).
Implement Cisco Device Hardening
Describe, Configure, and verify AutoSecure/One-Step Lockdown implementations (i.e., CLI and SDM).
Describe, configure, and verify AAA for Cisco Routers.
Describe and configure threat and attack mitigation using ACLs.
Describe and configure IOS secure management features (e.g., SSH, SNMP, SYSLOG, NTP, Role-Based CLI, etc.)
Implement Cisco IOS firewall
Describe the functions and operations of Cisco IOS Firewall (e.g., Stateful Firewall, CBAC, etc.).
Configure Cisco IOS Firewall with SDM.
Verify Cisco IOS Firewall configurations (i.e., IOS CLI configurations, SDM Monitor).
Describe and configure Cisco IOS IPS
Describe the functions and operations of IDS and IPS systems (e.g., IDS/IPS signatures, IPS Alarms, etc.)
Configure Cisco IOS IPS using SDM
May
18
Building Scalable Cisco Internetworks
|
Exam Number: |
642-901 |
|
Associated Certifications: |
CCNP , CCIP and CCDP |
|
Duration: |
90 minutes (50-60 questions) |
|
Available Languages: |
English, Japanese |
|
Register for Exam: |
Pearson VUE |
|
Exam Policies: |
Read current policies and requirements |
|
Exam Tutorial: |
Review type of exam questions |
|
Register for Course: |
BSCI courses and other offerings |
|
Exam Description |
Exam Topics |
Recommended Training |
Additional Resources |
Exam Description
The Building Scalable Cisco Internetworks (BSCI 642-901) is a qualifying exam for the Cisco Certified Network Professional CCNP®, Cisco Certified Internetwork Professional CCIP®, and Cisco Certified Design Professional CCDP® certifications. The BSCI 642-901 exam will certify that the successful candidate has important knowledge and skills necessary to use advanced IP addressing and routing in implementing scalability for Cisco ISR routers connected to LANs and WANs. The exam covers topics on Advanced IP Addressing, Routing Principles, Multicast Routing, IPv6, Manipulating Routing Updates, Configuring basic BGP, Configuring EIGRP, OSPF, and IS-IS.
Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.
Implement EIGRP operations
Explain the functions and operations of EIGRP (e.g., DUAL).
Configure EIGRP routing. (e.g., Stub Routing, authentication, etc.)
Verify or troubleshoot EIGRP routing configurations.
Implement multiarea OSPF operations
Explain the functions and operations of multiarea OSPF.
Configure multiarea OSPF routing. (e.g., Stub, NSSA, authentication, etc.)
Verify or troubleshoot multiarea OSPF routing configurations.
Describe integrated IS-IS
Describe the features and benefits of integrated IS-IS.
Configure and verify integrated IS-IS.
Implement Cisco IOS routing features
Describe, configure or verify route redistribution between IP routing IGPs. (e.g., route-maps, default routes, etc.)
Describe, configure or verify route filtering (i.e., distribute-lists and passive interfaces).
Describe and configure DHCP services (e.g., Server, Client, IP helper address, etc.).
Implement BGP for enterprise ISP connectivity
Describe the functions and operations of BGP.
Configure or verify BGP operation in a non-transit AS (e.g., authentication).
Configure BGP path selection. (i.e., Local Preference, AS Path, Weight or MED attributes).
Implement multicast forwarding
Describe IP Multicast (e.g., Layer-3 to Layer-2 mapping, IGMP, etc.).
Describe, configure, or verify IP multicast routing (i.e., PIM Sparse-Dense Mode).
Implement IPv6
Describe IPv6 addressing operations.
Describe IPv6 interoperation with IPv4.
Describe, configure or verify OSPF routing with IPv6 addressing.
