642-532 Exam

Note: After purchase, we will send questions within 24 hours.

Free 642-532 Demo Download

hiexam offers free demo for CCSP 642-532 exam (Securing Networks Using Intrusion Prevention Systems Exam (IPS)). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

Download 642-532 ExamTesting Engine

Exam Description

642-532 exam is one of popular Cisco Certification. Many candidates won't have confidence to get it. Now We guaranteed 642-532 exam training is available in various formats to best suit your needs and learning style. Whether you are a hands-on tactile learner, visually or even a textbook training veteran, Hiexam has the 642-532 resources that will enable you to pass your 642-532 test with flying colors. As with Cisco exams, the CCSP or 642-532 exam is structured to stack or plug into other related courses. The combination of Cisco courses builds the complete core knowledge base you need to meet your Cisco certification requirements.

Why choose hiexam 642-532 braindumps

Read it before. I want to ask you few question.

1. do you know Hiexam?

2. do you know why Only Hiexam can help you ?

3. do you know 642-532 has changed ?

4.do you know you can get 100% guarantee?

OK. you can read this. if you can't find answer. you must contact us.

Quality and Value for the 642-532 Exam
100% Guarantee to Pass Your 642-532 Exam
Downloadable, Interactive 642-532 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.

Hiexam provides the fastest and best way to train 642-532 exam

* Truly interactive 642-532 practice tests
* Create and take notes on any question
* Retake tests until you're satisfied
* You select the areas of the 642-532 exam to cover
* Filter questions for a new practice test each time.
* Re-visit difficult questions

hiexam 642-532 Exam Features

* High quality - High quality and valued for the 642-532 Exam: 100% Guarantee to Pass Your 642-532 exam and get your CCSP certification
* Authoritative - Authoritative study materials with complete details about 642-532 exam
* Cheaper - Our Hiexam products are cheaper than any other website. With our completed CCSP resources, you will minimize your CCSP cost and be ready to pass your 642-532 exam on Your First Try, 100% Money Back Guarantee included
* Free - Try free CCSP demo before you decide to buy it in http://www.hiexam.net
　
　
Exam : Cisco 642-532
Title : Securing Networks Using Intrusion Prevention Systems Exam (IPS)


1. In which three ways does a Cisco network sensor protect network devices from attacks? (Choose three.)
A. It uses a blend of intrusion detection technologies to detect malicious network activity.
B. It can generate an alert when it detects traffic that matches a set of rules that pertain to typical intrusion activity.
C. It permits or denies traffic into the protected network that is based on access lists that you create on the sensor.
D. It can take a variety of actions when it detects traffic that matches a set of rules that pertain to typical intrusion activity.
E. It uses behavior-based technology that focuses on the behavior of applications to protect network devices from known attacks and from new attacks for which there is no known signature.
Answer: ABD

2. Which two statements are true about Cisco IPS signatures? (Choose two.)
A. A signature is a set of rules that pertain to typical intrusion activity.
B. When network traffic matches a signature, the signature must generate an alert, but it can also initiate a response action.
C. Some signatures can be triggered by the contents of a single packet.
D. Signatures trigger alerts only when they match a specific pattern of traffic.
E. You can disable signatures and later re-enable them; however, this process requires the sensing engines to rebuild their configuration, which takes time and could delay the processing of traffic.
F. You can enable and modify built-in signatures, but you cannot disable them.
Answer: AC

3. What are three differences between inline and promiscuous sensor functionality? (Choose three.)
A. A sensor that is operating in inline mode can drop the packet that triggers a signature before it reaches its target, but a sensor that is operating in promiscuous mode cannot.
B. A sensor that is operating in inline mode supports more signatures than a sensor that is operating in promiscuous mode.
C. Deny actions are available only to inline sensors, but blocking actions are available only to promiscuous mode sensors.
D. A sensor that is operating in promiscuous mode can perform TCP resets, but a sensor that is operating in inline mode cannot.
E. Inline operation provides more protection from Internet worms than promiscuous mode does.
F. Inline operation provides more protection from atomic attacks than promiscuous mode does.
Answer: AEF

4. Which two are necessary to take into consideration when preparing to tune your sensor? (Choose two.)
A. the security policy
B. the network topology
C. which outside addresses are statically assigned to the servers and which are DHCP addresses
D. the IP addresses of your inside gateway and outside gateway
E. which traffic the sensor denies by default
F. the current configuration for each virtual sensor
Answer: AB

5. How does a Cisco network sensor detect malicious network activity?
A. by using a blend of intrusion detection technologies
B. by performing in-depth analysis of the protocols that are specified in the packets that are traversing the network
C. by comparing network activity to an established profile of normal network activity
D. by using behavior-based technology that focuses on the behavior of applications
Answer: A

http://www.hiexam.net The safer.easier way to get CCSP Certification.