chapter 4

Question 1

Which two statements are true regarding network security? (Choose two.)

Answer 1

Both experienced hackers who are capable of writing their own exploit code and inexperienced individuals who download exploits from the Internet pose a serious threat to network security.

Protecting network devices from physical damage caused by water or electricity is a necessary part of the security policy.

Question 2

Which two statements are true about network attacks? (Choose two.)

Answer 2

A brute-force attack searches to try every possible password from a combination of characters.

Devices in the DMZ should not be fully trusted by internal devices, and communication between the DMZ and internal devices should be authenticated to prevent attacks such as port redirection.

Question 3

Users are unable to access a company server. The system logs show that the server is operating slowly because it is receiving a high level of fake requests for service. Which type of attack is occurring?

Answer 3

DoS

Question 4

Refer to the exhibit. What is the purpose of the “ip ospf message-digest-key 1 md5 cisco” statement in the configuration?

Answer 4

to specify a key that is used to authenticate routing updates

Question 5

What are three characteristics of a good security policy? (Choose three.)

Answer 5

It defines acceptable and unacceptable use of network resources.

It communicates consensus and defines roles.

It defines how to handle security incidents

Question 6

Intrusion detection occurs at which stage of the Security Wheel?

Answer 6

monitoring

Question 7

Which two objectives must a security policy accomplish? (Choose two.)

Answer 7

document the resources to be protected

identify the security objectives of the organization

Question 8

Which two statements define the security risk when DNS services are enabled on the network? (Choose two.)

Answer 8

By default, name queries are sent to the broadcast address 255.255.255.255.

The basic DNS protocol does not provide authentication or integrity assurance.

Question 9

Refer to the exhibit. Security Device Manager (SDM) has been used to configure a required level of security on the router. What would be accomplished when the SDM applies the next step on the security problems that are identified on the router?

Answer 9

SDM will reconfigure the services that are marked in the exhibit as “fix it” to apply the suggested security changes.

Question 10

An IT director has begun a campaign to remind users to avoid opening e-mail messages from suspicious sources. Which type of attack is the IT director trying to protect users from?

Answer 10

virus

Question 11

What are two benefits of using Cisco AutoSecure? (Choose two.)

Answer 11

It offers the ability to instantly disable non-essential system processes and services.

It allows the administrator to configure security policies without having to understand all of the Cisco IOS software features.

Question 12

Which statement is true about Cisco Security Device Manager (SDM)?

Answer 12

SDM can be run from router memory or from a PC.

Question 13

The Cisco IOS image naming convention allows identification of different versions and capabilities of the IOS. What information can be gained from the filename c2600-d-mz.121-4? (Choose two.)

Answer 13

The software is version 12.1, 4th revision.

The IOS is for the Cisco 2600 series hardware platform.

Question 14

Refer to the exhibit. The network administrator is trying to back up the Cisco IOS router software and receives the output shown. What are two possible reasons for this output? (Choose two.)

Answer 14

The router cannot connect to the TFTP server.

The TFTP server software has not been started.

Question 15

The password recovery process begins in which operating mode and using what type of connection? (Choose two.)

Answer 15

ROM monitor

direct connection through the console port

Question 16

Refer to the exhibit. Security Device Manager (SDM) is installed on router R1. What is the result of opening a web browser on PC1 and entering the URL https://192.168.10.1?

Answer 16

The SDM page of R1 appears with a dialog box that requests a username and password.

Question 17

Refer to the exhibit. A network administrator is trying to configure a router to use SDM, but it is not functioning correctly. What could be the problem?

Answer 17

The privilege level of the user is not configured correctly.

Question 18

Which step is required to recover a lost enable password for a router?

Answer 18

Set the configuration register to bypass the startup configuration.

Question 19

What is the best defense for protecting a network from phishing exploits?

Answer 19

Schedule training for all users.

Question 20

Which two conditions should the network administrator verify before attempting to upgrade a Cisco IOS image using a TFTP server? (Choose two.)

Answer 20

Verify connectivity between the router and TFTP server using the ping command.
Verify that there is enough flash memory for the new Cisco IOS image using the show flash command.

Question 21

Refer to the exhibit. What is accomplished when both commands are configured on the router?

Answer 21

The commands disable the services such as echo, discard, and chargen on the router to prevent security vulnerabilities.

Question 22

Which two statements regarding preventing network attacks are true? (Choose two.)

Answer 22

Physical security threat mitigation consists of controlling access to device console ports, labeling critical cable runs, installing UPS systems, and providing climate control.

Changing default usernames and passwords and disabling or uninstalling unnecessary services are aspects of device hardening.