Brain-dumps.com
 
 
 

 
Cisco 
350-001 
350-018 
350-030 
640-025 
640-603 
640-604 
640-605 
640-606 
640-607 
640-801 
640-811 
640-861 
640-901 
640-910 
642-511 
642-521 
642-531 
642-541 
642-641 
642-661 
642-801 
642-811 
642-821 
642-831 
642-871 
642-891 
643-531 
644-101 
646-301 
646-401 
646-521 
9E0-100 
9E0-131 
9E0-422 
9E0-431 
9E0-441 
9E0-541 
9E0-576 
9E0-581 
9E0-601 
9E0-691 
9E0-805 
 
 
Citrix 
1Y0-220 
1Y0-221 
1Y0-610 
1Y0-720 
1Y0-721 
1Y0-910 
1Y0-911 
1Y0-921 
1Y0-931 
1Y0-941 
1Y0-950 
1Y0-951 
1Y0-961 
1Y0-962 
1Y0-991 
 
 
CIW 
1D0-410 
1D0-425 
1D0-450 
1D0-460 
1D0-470 
 
 
Comptia 
220-221 
220-222 
220-231 
220-232 
220-301 
220-302 
225-020 
EKO-001 
IK0-002 
N10-002 
SK0-001 
TK0-001 
XK0-001 
 
 
Microsoft 
70-015 
70-016 
70-019 
70-028 
70-029 
70-080 
70-081 
70-086 
70-088 
70-091 
70-098 
70-100 
70-152 
70-175 
70-176 
70-210 
70-214 
70-215 
70-216 
70-217 
70-218 
70-219 
70-220 
70-221 
70-222 
70-223 
70-224 
70-225 
70-226 
70-227 
70-228 
70-229 
70-230 
70-244 
70-270 
70-284 
70-290 
70-291 
70-292 
70-293 
70-294 
70-296 
70-305 
70-306 
70-310 
70-315 
70-316 
74-100 
ppt2000 
 
 
Novell 
50-632 
50-634 
50-639 
50-640 
50-644 
50-653 
50-654 
50-659 
50-662 
50-676 
50-677 
50-682 
50-683 
 
 
Oracle 
1Z0-001 
1Z0-007 
1Z0-020 
1Z0-023 
1Z0-024 
1Z0-025 
1Z0-026 
1Z0-030 
1Z0-031 
1Z0-032 
1Z0-033 
1Z0-131 
1Z0-132 
1Z0-147 
 
 
Sun 
310-011 
310-012 
310-014 
310-015 
310-025 
310-035 
310-051 
 
 
CWNA 
PWO-100 
 
 
Lotus 
 
 
Compaq 
010-066 
010-067 
 
 
Linux 
117-102 
 
 
IBM 
000-199 
000-285 
000-355 
 
 
DB/2 
000-513 
000-516 
 
 
 
 

The exam is tough but the guide from www.exam.ws was really helpful.

Q.1 How is user authentication enabled on the Cisco VPN 3002?

A.    Checked on the Cisco VPN Concentrator and pushed down to the Cisco VPN 3002.

B.    Unchecked on the Cisco VPN Concentrator and pushed down to the Cisco VPN 3002.

C.    Checked on the Cisco VPN 3002.

D.    Unchecked on the Cisco VPN 3002.

Answer:

Q.2 Configuring a bandwidth policing policy is a two-step process: configuring, then applying the policy.

Where are the configured bandwidth policies applied on the VPN Concentrator? (Choose two)

A. Must be applied to an interface.

B. Optionally applied to an interface..

C. Must be applied to a group.

D. Optionally applied to a group.

E. Must be applied to a LAN-to-LAN tunnel.

F. Optionally applied to a LAN-to-LAN tunnel.

Answer:

Q.3 What are three functions of IKE Phase 2? (Choose three)

A. Uses aggressive mode.

B. Uses main mode.

C. Optionally performs an additional DH exchange.

D. Verifies the other side's identity.

E. Periodically renegotiates IPSec SAs to ensure security.

F. Negotiates IPSec SA parameter protected by an existing IKE S

Answer:

Q.4 Which is true about the Cisco VPN 3002 unit authentication option?

A.    The username and password are pushed down to the Cisco VPN 3002 during tunnel establishment.

B.    The Cisco VPN 3002 prompts the user for a unit password before a tunnel is established.

C.    The Cisco VPN 3002 prompts the user for the username and password before a tunnel is established.

D.    The tunnel is established without user intervention.

Answer:

Q.5 For network extension RRI, which IP address does the Cisco VPN Concentrator advertise?

A. Cisco VPN Client NIC IP address

B. Cisco VPN 3002 assigned IP address

C. Cisco VPN 3002 public interface IP address

D. Cisco VPN 3002 private interface network address.

Answer:

Q.6 Which feature allows an administrator to edit the reachable subnets at both ends of the LAN-to- LAN tunnel?

A. Network auto-discovery

B. Cisco VPN configuration tool

C. Network lists

D. LAN-to-LAN wizard

Answer:

Q.7 What type of keys does DES and 3DES require for encryption and decryption?

A. Elliptical curve keys

B. Exponentiation keys

C. Symmetrical keys

D. Asymmetrical keys

Answer:

Q.8 What are the three steps in the auto-update configuration process? (Choose three)

A. Enable the client update functionality in the Cisco VPN 3002.

B. Enable the client update functionality in the Cisco VPN Concentrator.

C. Modify the group-client, auto-update parameter.

D. Configure the IKE auto-update message parameters.

E. Send an update message.

F. Configure the IPSec auto-update message parameters.

Answer: B, C, E

Q.9 Which Cisco IOS VPN feature allows the sender to encrypt packets before transmitting them across a network?

A. Anti-replay

B. Data confidentiality

C. Data integrity

D. Data original authentication

Answer: B

Q.10 How is data authentication achieved?

A. Using DES

B. Using ESP

C. Using MD5

D. Using 3DES

Answer: C

Q.11 What is the name of the application that must be added to the Concentrator to perform load balancing?

A. Virtual Termination Point (VTP)

B. Virtual Designated Concentrator (VDC)

C. Virtual Cluster Agent (VCA)

D. Virtual Access Point (VAP)

Answer: C

Q.12 What does the backup server feature enable the Cisco VPN 3002 to access?

A. Backup DHCP server

B. Backup Cisco VPN Concentrator

C. Backup authentication server

D. Backup certificate server

Answer: B

Q.13 What are three functions of IKE Phase 2? (Choose three)

A. Uses aggressive mode.

B. Uses main mode.

C. Optionally performs an additional DH exchange.

D. Verifies the other side's identity..

E. Periodically renegotiates IPSec SAs to ensure security.

F. Negotiates IPSec SA parameters protected by an existing IKE SA.

Answer: C, E, F

Q.14 Which feature is supported on the Cisco VPN 3005?

A. It supports up to 3 network ports.

B. It supports up to 100 sessions

C. Its hardware is upgradeable.

D. 64 MB of memory is standard.

Answer: B

Q.15 If the primary role of the VPN product is to perform site-to-site VPN with a few remote access connections, which product should you choose?

A. PIX Firewall 515

B. 2900

C. 3030

D. 3660

Answer: D
Braindumps Testking Dumps Brain dumps
MCSE Braindumps CCNA Braindumps CCNA Exam Braindump