Cisco IDS-4230-FE - Intrusion Detection Sys Fast Ethernet Sensor Arkusz Danych Pobierz pdf (Strona 160)

642 -531

Leading the way in IT testing and certification tools, www.testking.com

- 160 -

Topic XV Cisco secure pix firewall

questions (20 questions)

This topic covers the questions about pix firewall, more related to the CSPFA 642-521

exam

QUESTION NO: 1

If you wanted to list active telnet sessions and selectively end certain ones, what

commands from the list below could you use on your PIX Firewall? (Choose all that

apply)

A. show who

B. remove session

C. show logon

D. end session

E. kill

F. whois

Answer: A, E

Explanation:

Answer A. Show who: Shows active administrative Telnet sessions on the PIX Firewall.

Cisco Secure Policy Manager does not generate this command, but the command can be

supported using the Command panel on the PIX Firewall node. You can use the who

command with the same results.

Answer E. kill: Terminates another Telnet session to PIX Firewall.

Reference: PIX Firewall Command Support Status

Incorrect Answers

B: remove session – is not a real command.

C: show logon – is not a real command.

D: end session – is not a real command.

F: whois – is a TCP literal name port (43 value)

QUESTION NO: 2

If you were using the ca authenticate command, you notice that it does not save to the

PIX’s configuration.

Is this normal or are you making a mistake?

A. The command is not saved to the config.

B. You need to Save Run-config-

C. It saves automatically, you need to retype it.

D. To see it you need to type show cert.

1 2 ... 155 156 157 158 159 160 161 162 163 164 165 166 167 168

Brak uwag

Cisco IDS-4230-FE - Intrusion Detection Sys Fast Ethernet Sensor Arkusz Danych Strona 160