Test Number: 210-260
Total Questions: 226
Vendor Name: CISCO
Cert Name: CCNA SECURITY
Test Name: Implementing Cisco Network Security
Official Site: http://www.examtrue.com/
For More Details: http://www.examtrue.com/210-260.html
Get Cisco 210-260 Best Coaching
Instructor-led Cisco 210-260 coaching, especially coaching that leads to certification usually contains some type of hands-on work whether through an exclusive atmosphere or with actual devices and software. The main advantage of this is that you get to learn, play and research with new technological innovation in a non-production atmosphere. This permits to obtain new information faster that you can bring back to your workplace. Cisco 210-260 exam usually become more advanced and difficult the longer they have been out, so there is no time like the existing to get began.
Cisco 210-260 certifications power new and useful professions. Cisco 210-260 Qualified Professionals spend shorter period interviewing and a longer period driving value. Including Cisco 210-260 dumps certification to your CV helps you take a position out and get hired—quicker. In some cases, certification has permitted choosing supervisors to complete roles 25% more quickly. What’s more, certified new employs are fully effective an entire month earlier than their uncertified colleagues. This level of efficiency makes your impact and skills clearly take a position out.
Having Cisco 210-260 certification will certainly provide you with a benefits when choosing supervisors look at your continue. Competitors for IT tasks can be firm, and having Cisco 210-260 pdf is a big benefit in comparison to those who do not have one.
Fundamentals of VPN Technology and Cryptography
1. What algorithms in a VPN provide the confidentiality? (Choose all that apply.)
a. MD5
b. SHA-1
c. AES
d. 3DES
2. A remote user needs to access the corporate network from a hotel room from a laptop.
What type of VPN is used for this?
a. Site-to-site VPN
b. Dial-up VPN
c. PPP VPN
d. Remote-access VPN
3. Which type of VPN technology is likely to be used in a site-to-site VPN?
a. SSL
b. TLS
c. HTTPS
d. IPsec
4. Which two of the following are benefits of VPNs?
a. Hashing
b. Confidentiality
c. Diffie-Hellman
d. Data integrity
5. Which of the following are symmetrical encryption ciphers? (Choose all that apply.)
a. SHA1
b. AES
c. RSA
d. 3DES
6. What is the primary difference between a hash and Hashed Message Authentication
Code (HMAC)?
a. Keys
b. MD5
c. SHA1
d. AES
7. What is used to encrypt the hash in a digital signature?
a. Sender’s public key
b. Sender’s private key
c. Receiver’s public key
d. Receiver’s private key
8. What are valid options to protect data in motion with or without a full VPN? (Choose
all that apply.)
a. TLS
b. SSL
c. HTTPS
d. IPsec
9. Why is the public key in a typical public-private key pair referred to as public?
a. Because the public already has it.
b. Because it is shared publicly.
c. Because it is a well-known algorithm that is published.
d. The last name of the creator was publica, which is Latin for public.
10. What is the key component used to create a digital signature?
a. Ink
b. Public key
c. Private key
d. AES
11. What is the key component used to verify a digital signature?
a. Sender’s public key
b. Receiver’s public key
c. AES
d. One-time PAD
12. What is another name for a hash that has been encrypted with a private key?
a. MD5
b. SHA-1
c. AES
d. Digital signature
13. What are the primary responsibilities for a certificate authority (CA)? (Choose all that
apply.)
a. Verification of certificates
b. Issuing identity certificates
c. Maintaining client’s private keys
d. Tracking identity certificates
14. Which of the following is not a way for a client to check to see whether a certificate
has been revoked?
a. Look at the lifetime of the certificate itself
b. CRL
c. OSCP
d. LDAP
15. Which of the following could be found in a typical identity certificate? (Choose all
that apply.)
a. CRL locations
b. Validity date
c. Public key of the certificate owner
d. Serial number
16. Which standard format is used to request a digital certificate from a CA?
a. PKCS#7
b. PKCS#10
c. LDAP
d. TLS/SSL/HTTPS
17. When obtaining the initial root certificate, what method should be used for validation
of the certificate?
a. Sender’s public key
b. Telephone
c. HTTPS/TLS/SSL
d. Receiver’s private key
18. Which method, when supported by both the client and the CA, is the simplest to use
when implementing identity certificates on the client?
a. PKCS#7
b. PKCS#10
c. SCEP
d. LDAP
Fundamentals of IP Security
1. Which technology is a primary method that IPsec uses to implement data integrity?
a. MD5
b. AES
c. RSA
d. DH
2. What are the source and destination addresses used for an encrypted IPsec packet?
a. Original sender and receiver IP addresses
b. Original sender’s and outbound VPN gateway’s addresses
c. Sending and receiving VPN gateways
d. Sending VPN gateway and original destination address in the packet
3. Which phase is used for private management traffic between the two VPN peers?
a. IPsec
b. IKE Phase 1
c. IKE Phase 2
d. IKE Phase 3
4. Which of the following are negotiated during IKE Phase 1?
a. Hashing
b. DH group
c. Encryption
d. Authentication method
5. What method is used to allow two VPN peers to establish shared secret keys and to
establish those keys over an untrusted network?
a. AES
b. SHA
c. RSA
d. DH 200-310 vce
6. Which of the following is not part of the IKE Phase 1 process?
a. Negotiation of the IKE Phase 1 protocols
b. Running DH
c. Authenticating the peer
d. Negotiating the transform set to use
7. How is the negotiation of the IPsec (IKE Phase 2) tunnel done securely?
a. Uses the IKE Phase 1 tunnel
b. Uses the IPsec tunnel
c. Uses the IKE Phase 2 tunnel
d. Uses RSA
8. What are the two main methods for authenticating a peer as the last step of IKE Phase
1? (Choose all that apply.)
a. RSA signatures, using digital certificates to exchange public keys
b. PSK (pre-shared key)
c. DH Group 2
d. TCP three-way handshake
9. Which component acts as an if-then statement, looking for packets that should be
encrypted before they leave the interface?
a. crypto isakmp policy
b. crypto map
c. crypto ipsec transform-set
d. crypto access-list (access list used for cryptography)
10. What is true about symmetrical algorithms and symmetrical crypto access lists used
on VPN peers?
a. Symmetrical algorithms use the same secret (key) to lock and unlock the data.
Symmetrical ACLs between two VPN peers should symmetrically swap the
source and destination portions of the ACL.
b. Symmetrical algorithms like RSA use the same secret (key) to lock and unlock the
data. Symmetrical ACLs between two VPN peers should symmetrically swap the
source and destination portions of the ACL.
c. Symmetrical algorithms use the same secret (key) to lock and unlock the data.
Symmetrical ACLs between two VPN peers should be identical.
d. Symmetrical algorithms use the same secret (key) to lock and unlock the data.
Symmetrical ACLs between two VPN peers require that only symmetrical algorithms
be used for all aspects of IPsec.
11. Which one of the following commands reveal the ACLs, transform sets, and peer
information and indicate which interface is being used to connect to the remote IPsec
VPN peer?
a. show crypto map
b. show crypto isakmp policy
c. show crypto config
d. show crypto ipsec sa
Get Employed and be Dynamic, Faster for 210-260 Exam
Actually, Cisco 210-260 certification can be a professional for a job. Remember that when two otherwise equivalent applicants are competing for the same job, the one who has Cisco 210-260 pdf will have the advantage over the applicant that does not. A Cisco 210-260 exam may do nothing more than getting your continue a second look – which may be more than competition, gets.
Take your profession to the next level. Cisco 210-260 exam Certified Professionals make an immediate effect, assisting you get observed and progress quickly in your profession. In comparison to their colleagues, Cisco 210-260 certified developers are 95% more effective and nearly 65% more effective. This means that they create nearly twice as many programs per year and in 55 % of time per application.
Strongly Recommended: http://www.exampass.net/cisco-210-260-exam-materials-latest-cisco-210-260-practice-test-are-based-on-the-real-exam.html
Article Link: http://www.certadept.com/new-real-cisco-700-505-exam-questions-and-answer.html
Related More Informations:
The post The Most Professional Cisco 210-260 PDF Official Cert Guide appeared first on Examprepwebinar - Leading source of IT Certification Exam Learning/Practice.