My Research Institute
Home Notes

Library

Brain Dumps

Software Market
 

Exams.ws

 
Cisco Security Dumps, Cisco exam 640-100, CCIP Managing Cisco Network Security (MCNS 3.0). This exam covers new material included in the new MCNS 3.0 course released Aug 2002. (MCNS 3.0 fully replaces MCNS 2.0.) Content covering the PIX Firewall has been removed and several new IOS Firewall and IPSec features have been added. All content now focuses on the IOS software version 12.2.8T, CS ACS 3.0 for W2K Server, and the new Cisco Unified 3.0 IPSec Client.
 

Exam #:

 

640-100

Status:

Active

Time Limit:

75 min.

Avg. Time:

50 min.

Passing Score:

 

# of Questions:

55-65

Format:

Adaptive

Difficulty:

2

Certifications:

CCIP
 

Cisco Braindumps, Microsoft Braindumps, Oracle Braindumps, Sun Braindumps
CitrixBraindumps, CIWBraindumps, ComptiaBraindumps, NovellBraindumps
 

Managing Cisco Network Security Exam (MCNS 640-100)
Exam Description
Exam Topics
Recommended Training


 Exam Description
The Managing Cisco Network Security exam (MCNS 640-100) focuses on the new material included in the new MCNS 3.0 course released August 2002. (The MCNS 3.0 course fully replaces the existing MCNS 2.0 course.) Content covering the PIX Firewall has been removed and several new IOS Firewall and IPSec features have been added. In addition to the new chapters and labs, all content now focuses on the IOS software version 12.2.8T, CS ACS 3.0 for Windows 2000 Server, as well as the new Cisco Unified 3.0 IPSec Client.


 Exam Topics
The following information provides general guidelines for the content likely to be included on the Managing Cisco Network Security exam. However, other related topics may also appear on any specific delivery of the exam.
 

Evaluating Network Security Threats

What is a security policy?
Reasons for creating a security policy
Why do we have security issues?
Security threat types
 

Introduction to AAA Security for Cisco Routers

Scenario
AAA secures Network Access
Authentication methods
NAS AAA configuration process
Configuring and testing AAA security
 

Configuring Cisco Secure ACS and TACACS+

Scenario
Product overview: Cisco Secure ACS for Windows NT or Windows 2000
Installing Cisco Secure ACS 3.0 for Windows NT or Windows 2000
Administering and troubleshooting Cisco Secure ACS for Windows NT or Windows 2000
Cisco Secure ACS 2.3 for UNIX (Solaris)
TACACS+ overview and configuration
Verifying TACACS+
 

Configuring a Cisco Perimeter Router

Scenario
Perimeter security problems and solutions
Problems-eavesdropping and session replay
Problems-eavesdropping
Problems-unauthorized access, data manipulation, and malicious destruction
Problem-lack of legal IP addresses
Problem-rerouting attacks
Problem-Denial of Service attacks
 

Control IOS Firewall Context-Based Access Control Configuration

Introduction to the Cisco IOS Firewall
Context-Based Access Control
Global timeouts and thresholds
Port-to-Application Mapping
Define inspection rules
Inspection rules and ACLs applied to router interfaces
Test and verify
 

Cisco IOS Firewall Authentication Proxy Configuration

Introduction to the Cisco IOS Firewall authentication proxy
AAA server configuration
AAA configuration
Authentication proxy configuration
Test and verify configuration
 

Cisco IOS Firewall Intrusion Detection System Configuration

Cisco IOS Firewall IDS introduction
Initializing Cisco IOS Firewall IDS
Configuring, disabling, and excluding signatures
Creating and applying audit rules
 

Understanding Cisco IOS IPSec Support

Cisco IOS IPSec technologies
Key exchange mechanisms
Cisco IOS Cryptosystem overview
IPSec support in Cisco systems products
Tunneling protocols
Virtual Private Networks
 

Configure Cisco IOS IPSec for Pre-Shared Keys Site-to-Site

Configure IPSec encryption tasks
Task 1-Prepare for IKE and IPSec
Task 2-Configure IKE
Task 3-Configure IPSec
Step 1-Configure transform set suites
Step 2-Configure global IPSec Security Association lifetimes
Step 3-Create crypto ACLs
Step 4-Create crypto maps
Step 5-Apply crypto maps to interfaces
Task 4-Test and verify IPSec
Overview of configuring IPSec manually
Overview of configuring IPSec for RSA encrypted nonces
 

Configure Cisco IOS IPSec Certificate Authority Support Site-to-Site

Configure CA support tasks
Task 1-Prepare for IKE and IPSec
CA support overview
Task 2-Configure CA support
Task 3-Configure IKE
Task 4-Configure IPSec
Task 5-Test and verify IPSec
 

Configuring IOS Remote Access Using Cisco Easy VPN

Introduction to Cisco Easy VPN
The Easy VPN server
Overview of the Cisco VPN 3.5 Client
Easy VPN server configuration tasks
Pre-Configuring the Cisco VPN 3.5 Client


 Recommended Training
Securing Cisco IOS Networks (SECUR) is the recommended training for the Managing Cisco Network Security exam.

Courses listed are offered by Cisco Learning Partners—the only authorized source for Cisco IT training delivered exclusively by Certified Cisco Instructors.

 

 

Exam Questions