I passed the Cisco 642-564 exam this week with nearly 920 pts.I prepared myself with Exampass 140 Q&As, all questions from this dump.Cisco 642-564 questions, 2hrs time limit.New questions in Exampass like “AD FS components in the environment”,“Windows PowerShell cmdlet ” “Office 365”.Just know all new 642-564 questions you will be fine.
Exam A
QUESTION 1
Which two components should be included in a network design document? (Choose two.)
A. complete network blueprint
B. configuration for each device
C. detailed part list
D. operating expense
E. risk analysis
Correct Answer: AC Section: (none) Explanation
Explanation/Reference:
QUESTION 2
In which two ways do Cisco ASA 5500 Series Adaptive Security Appliances achieve containment and control? (Choose two.)
A. by enabling businesses to create secure connections
B. by preventing unauthorized network access
C. by probing end systems for compliance
D. by tracking the state of all network communications
E. by performing traffic anomaly detection
Correct Answer: BD Section: (none) Explanation
Explanation/Reference:
QUESTION 3
What is a benefit of the Cisco Integrated Services Routers?
A. Intel Xeon CPUs
B. built-in event correlation engine
C. built-in encryption acceleration
D. customer programmable ASIC
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 4
Look at the picture.
A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:
Answer: Check certifyme eEngine, Download from Member Center
QUESTION 5
What is a benefit of IPSec + GRE?
A. bandwidth conservation
B. no need for a separate client
C. full support of Cisco dynamic routing protocols
D. support of dynamic connections
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 6
Which Cisco IOS feature uses multipoint GRE and the Next Hop Resolution Protocol to create dynamic IPSec tunnels between spoke (branch) sites?
A. Easy VPN
B. V3PN
C. DMVPN
D. Web VPN
Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 7
Refer to the exhibit. Network security is a continuous process that is built around which element?
A. business requirements
B. corporate security policy
C. customer needs
D. security best practice
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 8
Refer to the exhibit. As each spoke site is added, spoke-to-spoke and spoke-to-hub connectivity will be required. What is the best VPN implementation option?
A. GRE over IPSec with dynamic routing
B. IPSec DMVPN
C. IPSec Easy VPN
D. V3PN
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 9
Which statement is true about the Cisco Security MARS Global Controller?
A. The Global Controller receives detailed incidents information from the Local Controllers, and correlates the incidents between multiple Local Controllers.
B. The Global Controller centrally manages a group of Local Controllers.
C. Rules that are created on a Local Controller can be pushed to the Global Controller.
D. Most data archiving is done by the Global Controller.
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 10
Which two components should be included in a detailed design document? (Choose two.)
A. data source
B. existing network infrastructure
C. organizational chart
D. proof of concept
E. vendor availability
Correct Answer: BD Section: (none) Explanation
Explanation/Reference:
QUESTION 11
What is a valid method of verifying a network security design?
A. network audit
B. network health analysis
C. network performance test
D. pilot or prototype network
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 12
Which statement is true about the built-in hardware-based encryption that is included with Cisco Integrated Services Routers?
A. It supports SRTP.
B. It supports 256-bit AES encryption.
C. It is two times faster than previous modules.
D. It stores VPN credentials.
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 13
On the Cisco Security MARS appliance, what is used to faciliate the management of Event, IP, Service and User management?
A. groups
B. custom parser
C. rules
D. signatures
E. audit trail log
Correct Answer: A Section: (none) Explanation
Explanation/Reference:
QUESTION 14
Which protocol is used for transporting the event data from Cisco IPS 5.0 and later devices to the Cisco Security MARS appliance?
A. RDEP over SSL
B. SDEE over SSL
C. SSH
D. syslog
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 15
Look at the picture.
A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:
Answer: Check certifyme eEngine, Download from Member Center
QUESTION 16
Which two are parts of the Network Security Lifecycle? (Choose two.)
A. Purchase
B. Operate
C. Integrate
D. Design
E. Develop
Correct Answer: BD Section: (none) Explanation
Explanation/Reference:
QUESTION 17
Which two are true about Cisco AutoSecure? (Choose two.)
A. blocks all IANA-reserved IP address blocks
B. enables identification service
C. enables log messages to include sequence numbers and time stamps
D. disables tcp-keepalives-in and tcp-keepalives-out
E. removes the exec-timeout
Correct Answer: AC Section: (none) Explanation
Explanation/Reference:
QUESTION 18
What is a benefit of high-performance AIM that is included with Cisco Integrated Services Routers?
A. hardware-accelerated packet inspection engine
B. hardware-based encryption and compression
C. removable secure credentials
D. support of SRTP
Correct Answer: B Section: (none) Explanation
Explanation/Reference:
QUESTION 19
Look at the picture.
A.
B.
C.
D.
Correct Answer: Section: (none) Explanation
Explanation/Reference:
Answer: Check certifyme eEngine, Download from Member Center
QUESTION 20
Which three components should be included in a security policy? (Choose three.)
A. identification and authentication policy
B. incident handling procedure
C. security best practice
D. security product recommendation
E. software specifications
F. statement of authority and scope
Correct Answer: ABF Section: (none) Explanation
Explanation/Reference: QUESTION 21
CCNA Cisco 642-564 Exam Certification Guide is part of a recommended study program from Cisco 642-564 that includes simulation and hands-on training from authorized Cisco 642-564 Learning Partners and self-study products from Cisco 642-564.Find out more about instructor-led, e-learning, and hands-on instruction offered by authorized Cisco 642-564 Learning Partners worldwide