CCNP Secure IPS FAQ: Cisco IPS Signature Engines Q1. Which signature engine would you use to create a signature that searches for the pattern "Confidential" in a single packet? A. Atomic IP B. String TCP C. Meta D. AIC FTP E. Service Generic Answer: A Q2. Which signature engine would you use to create a signature that will trigger when the following three HTTP … [Read more...]
CCNP Secure IPS FAQ: Basic Cisco IPS Signature Configuration
CCNP Secure IPS FAQ: Basic Cisco IPS Signature Configuration Q1. Which of the following is not a valid IDM signature group? A. Attack B. Operating System C. Service D. Signature Release E. Policy Violation Answer: E Q2. Which of the following is not a valid signature response option? A. Deny Victim Inline B. Deny Attacker Inline C. Produce Alert D. Request SNMP … [Read more...]
CCNP Security VPN FAQ: Configuring Cisco 3002 Hardware Client for Remote Access
CCNP Security VPN FAQ: Configuring Cisco 3002 Hardware Client for Remote Access Q1. What screen is used on the head-end concentrator to demand the use of preshared keys? Answer: The Configuration | System | Tunneling Protocols | IPSec LAN-to-LAN | Modify screen is used to demand preshared keys from a VPN 3000 Series Concentrator. Q2. You need to allow the main office to … [Read more...]
CCNP Secure IPS FAQ: Basic Sensor Configuration
CCNP Secure IPS FAQ: Basic Sensor Configuration Q1. Which of the following is a valid user role on the sensor? A. Operator B. Analyst C. Guest D. System E. Manager Answer: A Q2. Which of the following parameters cannot be configured when you are editing a monitoring interface via IDM? A. Interface Duplex B. Interface Speed C. Alternate TCP Reset Interface D. … [Read more...]
CCNP Security VPN FAQ: Overview of VPN and IPSec Technologies
CCNP Security VPN FAQ: Overview of VPN and IPSec Technologies Question. Which Cisco hardware product families support IPSec VPN technology? Answer: Cisco IOS routers, PIX Firewalls, and VPN 3000 Series Concentrators, including the VPN 3002 Hardware Client, support IPSec VPN technology Question. What are the two IPSec protocols? Answer: The two IPSec protocols are … [Read more...]
CCNP Security VPN FAQ: Monitoring and Administering the VPN 3000 Series Concentrator
CCNP Security VPN FAQ: Monitoring and Administering the VPN 3000 Series Concentrator Q1. What screen is used to set the password for the administrator? Answer: Administration | Access Rights | Administrators Q2. You wish to limit HTTP access to the concentrator to hosts on the same subnet as the inside interface of the concentrator. What is the format of the Access Control … [Read more...]
CCNP Secure IPS FAQ: Cisco IPS Device Manager (IDM)
CCNP Secure IPS FAQ: Cisco IPS Device Manager (IDM) Q1. Which version of Linux is supported for use with IDM? A. Red Hat B. Debian C. Slackware D. Mandrake E. SUSE Answer: A Q2. Which of the following is a configurable sensor communication parameter? A. Changing the TLS/SSL port B. Changing the Telnet port C. Changing SSH port D. Changing the TLS/SSL port and the … [Read more...]
CCNP Secure IPS FAQ: IPS Command-Line Interface
CCNP Secure IPS FAQ: IPS Command-Line Interface Q1. Which sensor CLI command should you use to update the sensor software from version 4.1 to 5.0 via the network? A. migrate B. update C. upgrade D. copy E. None of these Answer: C Q2. Which command should you use to initialize a new sensor that you install on your network? A. setup B. initialize C. update D. … [Read more...]
CCNP Security VPN FAQ: Configuring the Cisco VPN Client Firewall Feature
CCNP Security VPN FAQ: Configuring the Cisco VPN Client Firewall Feature Q1. You have a number of clients running Windows 98 and a remote VPN 3002 Hardware Client assigned to the same group. Your supervisor wants you to force everyone on this group connecting to have a firewall running on his or her machine. Can you do this? Answer: No. The Firewall Required option cannot be … [Read more...]
CCNP Secure IPS FAQ: Sensor Maintenance
CCNP Secure IPS FAQ: Sensor Maintenance Q1. Which of the following is not a component of the Cisco IPS software filename? A. IPS version B. Service pack level C. Update type D. Signature version E. Software type Answer: C Q2. Which command enables you to fix a corrupted image on your sensor? A. repair B. downgrade C. restore D. recover E. update Answer: D Q3. … [Read more...]