P4S cisco 642-532 Q&A

You are the network security administrator for a jewelry company. The company has a DMZ network consisting of a mission-critical web server and a DNS server. You want to configure the inline 4215 sensor protecting these servers to place the highest possible value on the web server. This will increase the risk rating of attacks a gainst this server. You want to then configure the sensor to deny all connections with a risk rating of 80 or above if the connection attempt triggers any signature. You want to exempt your meanagement station from this policy so that traffic from the management station is not dropped.

Use the ATTACK buttons on the management station and the internet host to test your configuration. These buttons simulate sending traffic that triggers signatures.

Complete the following steps to complete this simulation:

    1.Click each ATTACK button to trigger signatures and verify that the sensor is generating alerts but not dropping packets associated with this traffic.
    2.Configure the DMZ sensor to place the highest possible value on the web server.
    3.Configure the DMZ sensor to deny all connections when an event’s risk rating is 80 or above,regardless of which signature fires when the connection attempt is made.
    4.Test your configuration to verify that packets destined for the web server are being dropped by the sensor.
    5.Exempt your managerment station from this policy.
    6.Test your configurtion to verify the following:
          * The sensor drops packets orginating from the internet host and destined for the web server.
          * The sensor permits packets originating from the internet host to reach the DNS server.
          * The sensor permits packets originating forme the management station to reach the web server.
          * As throughout the simulation,the sensor sends an alert to the management station each time a signature is triggered.

Donwload Free PassGuide Braindumps-The Most Realistic Practice Questions and Answers,Help You Pass any Exams

Securing Networks Using Intrusion Prevention Systems Exam : 642-532 Exam

QUESTION 33:
The IDS MC is used to manage the Certkiller sensors. What is the Cisco IDS
Management Center?
A. Web-based interface for managing and configuring multiple sensors.
B. Command-line interface for managing and configuring multiple sensors.
C. Web-based interface for managing and configuring a single sensor.
D. Command-line interface for managing and configuring a single sensor.

QUESTION 34:
Which Cisco IDS Sensor configuration parameter affects the source and destination
values included in an IDS alarm event?
A. Data source
B. IP fragment reassembly
C. External network definition
D. Internal network definition
E. TCP reassembly
F. Sensor IP address
P4S cisco 642-532 Q&A
Questions and Answers : 63 Q&As Updated: October 29th , 2008 Price: $129.99 $89.99
Free download:pass4sure cisco 642-532
Free download:testking cisco 642-532

High quality IT Certification Training Exam Questions, Study Guides and Practice Tests are in Downloadable PassGuide Testing Engine,Successful for IT Certification or Full Refund for you.Contact Us:Sales@PassGuide.com

Type	Exam Bible	New Questions & Answers	Latest Updated	Download link
PDF	All Certbible 's Exam Dumps	597	1 days ago	Available

PassGuide Training Materials & Practice Tests

• P4S 642-436 v4.55
• Pass4sure Cisco CSE Exam 646-230 2.73
• pass4sure Unified Communications Express AM 646-223 2.73
• pass4sure cisco 646-976 2.93
• 642-587 – Study Materials, Cisco Advanced Wireless LAN for System Engineers Exam
• Pass4sure Cisco IP Communications Exams Dumps
• latest p4s cisco ccvp cvoice 6.0 642-436 v2.73
• testinside testking Pass4sure Cisco Exam 642-243
• pass4sure Cisco 642-975 2.83
• Pass4sure Cisco Exam 642-373 v2.75