Chat with us

Read online free dumps for Cisco- 640-554

Here you can read online questions and answers for Cisco Exam 640-554 (Implementing Cisco IOS Network Security (IINS v2.0) ) 100% free...

Question ID 22129

When logging is enabled for an ACL entry, how does the router switch packets filtered by the ACL?

Option A

topology-based switching

Option B

autonomous switching

Option C

process switching

Option D

optimum switching

Correct Answer C
Description Process switching - very slow ! Router looks on destination IP address, compare it with routing table --> See what is the next hop address, then sends ARP --> change old MAC with the new one. Since now router change old source MAC address to itself address, and change destination address on next hop address. The same situation is with every single packet. The only fast mechanism in "process switching" is related with MAC cache table. Fast switching The same process like in "process switching", but only for first packet. Router knows, that for this particular session everything gonna be the same, so only the first packet is checking. Limitation and problems are related with ACLs and with the load sharing (packet load sharing), and of course the first packet have to be checked --> it takes time. CEF - very fast No ro table, separate FIB table and Adjacency table (with next hop IP and MAC addresses) everything in cache.
Update Date and Time 2018-03-18 06:23:31

Question ID 22130

Which statement is true about the One-Step lockdown feature of the CCP Security Audit wizard?

Option A

It enables the Secure Copy Protocol (SCP)

Option B

It supports AAA configuration

Option C

It enables TCP intercepts

Option D

It sets an access class ACL on vty lines

Option E

It provides an option for configuring SNMPv3 on all routers

Correct Answer D
Update Date and Time 2018-03-18 06:24:09