2013 Latest Cisco DESGN (640-864) Exam 126-130

Ensurepass
 

QUESTION 126

What does Cisco recommend as the foundation of any deployed security solution?
A. Customer needs
B. Security audit
C. Service-level agreement
D. Corporate security policy
Correct Answer: D
Section: Security Explanation

Security Policy and Process

To provide the proper levels of security and increase network availability, a security policy is a crucial element in providing secure network services. This is an important concept to understand, and such business requirements should be considered throughout the system life cycle. Business requirements and risk analysis are used in the development of a security policy. It is often a balance between ease of access versus the security risk and cost of implementing the security technology. In terms of network security in the system life cycle, the business needs are a key area to consider. Business needs define what the business wants to do with the network. Risk analysis is another part of the system life cycle. It explains the risks and their costs. Business needs and risk assessment feed information into the security policy. The security policy describes the organizations processes, procedures, guidelines, and standards. Furthermore, industry and security best practices are leveraged to provide well-known processes and procedures.
Finally, an organizations security operations team needs to have processes and procedures defined. This information helps explain what needs to happen for incident response, security monitoring, system maintenance, and managing compliance.
Table, outlines key network security considerations
Cisco Press CCDA 640-864 Official Certification Guide Fourth Edition, Chapter 12

QUESTION 127
What is the administrative distance of eBGP routes?
A. 200
B. 100
C. 20
D. 110
Correct Answer: C
Section: Routing Explanation
Cisco Press CCDA 640-864 Official Certification Guide Fourth Edition, Chapter 10

QUESTION 128
Which name is for the Cisco product that provides centralized, policy-based security management?
A. IDS
B. Out-of-band management
C. AAA
D. CSPM
Correct Answer: D
Section: Management – Operations Explanation
Cisco Secure Policy Manager 2.3 The Cisco Secure Policy Manager (CSPM) allows you to configure, manage, and monitor their end-to-end Cisco Systems security networks. CSPM is a policy-based product that enables you to abstract the complexities of security networking. With CSPM you can create high-level security policies that are independent of underlying device platforms and software releases. CSPM is the Cisco strategic security management platform for Cisco Secure PIX Firewalls, Cisco Secure IOS Firewalls, Cisco IOS. virtual private networking (VPN) routers, and Cisco Secure Intrusion Detection System (IDS) sensors.
CSPM provides the following benefits:
CSPM 2.3 incorporates many of the network operations features that are used in LAN and WAN environments.
Reference:
http://www.cisco.com/en/US/products/sw/secursw/ps2133/prod_technical_reference09186a00800a9ebc. html

QUESTION 129
Which statement represents a likely starting point for planning network changes?
A. Protocol assessment
B. Determining the design requirements
C. Determining the business needs
D. Determining the application requirements
Correct Answer: D
Section: PPDIOO Explanation
Cisco Press CCDA 640-864 Official Certification Guide Fourth Edition, Chapter 6

QUESTION 130
What does IGMP stand for?
A. Internet Group Management Protocol
B. Interior Gateway Routing Protocol
C. Interior Group Management Protocol
D. Interior Gateway Media Protocol
Correct Answer: A
Section: Routing Explanation
Internet Group Management Protocol is the protocol used in multicast implementations between the end hosts and the local router. RFC 2236 describes IGMP Version 2 (IGMPv2). RFC 3376 describes IGMP Version 3 (IGMPv3). RFC 1112 describes the first version of IGMP. IP hosts use IGMP to report their multicast group memberships to routers. IGMP messages use IP protocol number 2. IGMP messages are limited to the local interface and are not routed.
Cisco Press CCDA 640-864 Official Certification Guide Fourth Edition, Chapter 11

Ensurepass offers Latest 2013 640-864 Real Exam Questions, help you to pass exam 100%.