Exam Code: 642-522
Course Name: Securing Networks with PIX and ASA
Vendor: Cisco
Passing Score: 700
642-522 is the most famous certification from the Cisco related to the Network Security. Cisco 642-522 or Securing Networks with PIX and ASA certification Exam cover the advance topics of installation and configuration of the security appliance for basic network connectivity. Cisco 642-522 or Securing Networks with PIX and ASA certification exam enable you to configure and verify the Cisco PIX and ASA.
The 642-522 exam provides you ability to describe, configure, verify and manage the Cisco PIX and ASA security appliance products. In order to be able to maintain and efficiently use Cisco Security Appliances, you must take the 642-522 exam. This Cisco certification helps you in installing and configuring a security appliance for basic network connectivity. Moreover, this Cisco certification enables you to configure a security appliance to restrict inbound traffic from untrusted sources. The 642-522 exam provides you with the ability to configure a security appliance to provide secure connectivity using site-to-site VPNs. By passing 642-522 exam you can configure a security appliance to provide secure connectivity using remote access VPNs, Monitor and manage an installed security appliance. 642-522 exam basically associated with the Cisco Certified Security Professional and the Cisco Firewall Specialist certifications. This certification contributes a vital role in Cisco certifications.
You can find thousand of websites on the internet which provide you the study material for the preparation of your Cisco 642-522 or Securing Networks with PIX and ASA certification exam. But the major problem is that there is a few website that provide you quality and up-to-date study material. Testking is the only website that provides you quality and up-to-date study material in order to prepare your Cisco 642-522 or Securing Networks with PIX and ASA certification exam. The Preparation Material available on the website of Testking for the 642-522 exam for Securing Networks with PIX and ASA provides you with the details required to take a certification examination. These Study materials are organized after thorough research by certification experts who use their experience in order to produce accurate, rational and verified materials for the answers. With the help of the TestKing 642-522 exam engine, you can get up-to-date material relevant to this exam. At TestKing, 642-522 Study Exam for Securing Networks with PIX and ASA is composed by contemporary and dynamic Information Technology experts, who use their knowledge and experience to organize you for your future in IT. To improve your chances of passing your certification exams, you must get help from TestKing study material.
Testking provides you the question with their detailed answer relevant to your certification. Testking provide you the guidance books and the guidance of the senior and technology specialist. Testking is no doubt a king of certifications sites and it owns largest collections of exams from all certification vendors.
Course Outline: Securing Networks with PIX and ASA
Install and configure a security appliance for basic network connectivity
Describe the Security Appliance hardware and software architecture
Determine the Security Appliance hardware and software configuration and verify if it is correct
Use setup or the CLI to configure basic network settings, including interface configurations
Use appropriate show commands to verify initial configurations
Configure NAT and global addressing to meet user requirements
Configure DHCP client option
Set default route
Configure logging options
Describe the firewall technology
Explain the information contained in syslog files
Configure static address translations
Configure Network Address Translations: PAT
Configure static port redirection
Configure a net static
Set embryonic and connection limits on the security appliance
Verify network address translation operation
Configure a security appliance to restrict inbound traffic from untrusted sources
Configure access-lists to filter traffic based on address, time, and protocols
Configure object-groups to optimize access-list processing
Configure Network Address Translations: Nat0
Configure Network Address Translations: Policy NAT
Configure java/activeX filtering
Configure URL filtering
Verify inbound traffic restrictions
Configure a security appliance to provide secure connectivity using site-to-site VPNs
Explain certificates, certificate authorities and how they are used
Explain the basic functionality of IPSec
Configure IKE with preshared keys
Configure IKE to use certificates
Differentiate between the types of encryption
Configure IPSec parameters
Configure crypto-maps and ACLs
Configure a security appliance to provide secure connectivity using remote access VPNs
Explain the functions of EasyVPN
Configure IPSec using EasyVPN Server/Client
Configure the Cisco Secure VPN client
Explain the purpose of WebVPN
Configure WebVPN services: Server/Client
Verify VPN operations
Configure transparent firewall, virtual firewall, and high availability firewall features on a security appliance
Explain differences between L2 and L3 operating modes
Configure security appliance for transparent mode (L2)
Explain purpose of virtual firewalls
Configure security appliance to support virtual firewall
Monitor and maintain virtual firewall
Explain the types, purpose and operation of fail-over
Install appropriate topology to support cable-based or LAN-based fail-over
Explain the hardware, software and licensing requirements for high-availability
Configure the SA for active/standby fail-over
Configure the SA for stateful fail-over
Configure the SA for active-active fail-over
Verify fail-over operation
Recover from a fail-over
Configure AAA services for access through a security appliance
Configure ACS for security appliance support
Configure security appliance to use AAA feature
Configure authentication using both local and external databases
Configure authorization using an external database
Configure the ACS server for downloadable ACLs
Configure accounting of connection start/stop
Verify AAA operation
Configure routing and switching on a security appliance
Enable DHCP server and relay functionality
Configure VLANs on a security appliance interface
Configure routing functionality of security appliance including OSPF, RIP
Configure security appliance to pass multi-cast traffic
Configure ICMP on the security appliance
Configure a modular policy on a security appliance
Configure a class-map
Configure a policy-map
Configure a service-policy
Configure a ftp-map
Configure a http-map
Configure an inspection protocol
Explain the function of protocol inspection
Explain DNS guard feature
Describe the AIP-SSM HW and SW
Load IPS SW on the AIP-SSM
Verify AIP-SSM
Configure an IPS modular policy
Monitor and manage an installed security appliance
Obtain and apply OS updates
Backup and restore configurations and software
Explain the security appliance file management system
Perform password/lockout recovery procedures
Obtain and upgrade license keys
Configure passwords for various access methods: Telnet, serial, enable, SSH
Configure various access methods: Telnet, SSH, PDM
Configure command authorization and privilege levels
Configure local username database
Verify access control methods
Enable ASDM functionality
Verify a security appliance configuration via ASDM
Verify the licensing available on a security appliance
|