우리 ITExamDump 에는 최신의Cisco 642-813학습가이드가 있습니다. ITExamDump의 부지런한 IT전문가들이 자기만의 지식과 끊임없는 노력과 경험으로 최고의Cisco 642-813합습자료로Cisco 642-813인증시험을 응시하실 수 있습니다.Cisco 642-813인증시험은 IT업계에서의 비중은 아주 큽니다. 시험신청하시는분들도 많아지고 또 많은 분들이 우리ITExamDump의Cisco 642-813자료로 시험을 패스했습니다. 이미 패스한 분들의 리뷰로 우리ITExamDump의 제품의 중요함과 정확함을 증명하였습니다.
많은 시간과 정신력을 투자하고 모험으로Cisco인증642-813시험에 도전하시겠습니까? 아니면 우리ITExamDump 의 도움으로 시간을 절약하시겠습니까? 요즘 같은 시간인 즉 모든 것인 시대에 여러분은 당연히 ITExamDump의 제품이 딱 이라고 생각합니다. 그리고 우리 또한 그 많은 덤프판매사이트 중에서도 단연 일등이고 생각합니다. 우리 ITExamDump선택함으로 여러분은 성공을 선택한 것입니다.
ITExamDump선택으로Cisco 642-813시험을 패스하도록 도와드리겠습니다. 우선 우리ITExamDump 사이트에서Cisco 642-813관련자료의 일부 문제와 답 등 샘플을 제공함으로 여러분은 무료로 다운받아 체험해보실 수 있습니다. 체험 후 우리의ITExamDump에 신뢰감을 느끼게 됩니다. ITExamDump에서 제공하는Cisco 642-813덤프로 시험 준비하세요. 만약 시험에서 떨어진다면 덤프전액환불을 약속 드립니다.
시험 번호/코드: 642-813
시험 이름: Cisco (Implementing Cisco IP Switched Networks)
ITExamDump의Cisco인증 642-813덤프를 공부하시면 한방에 시험을 패스하는건 문제가 아닙니다. ITExamDump의Cisco인증 642-813덤프는 시험적중율 최고의 인지도를 넓히 알리고 있습니다.저희가 제공한 시험예상문제로 시험에 도전해보지 않으실래요? Cisco인증 642-813덤프를 선택하시면 성공의 지름길이 눈앞에 다가옵니다.
ITExamDump는 여러분의 요구를 만족시켜드리는 사이트입니다. 많은 분들이 우리사이트의 it인증덤프를 사용함으로 관련it시험을 안전하게 패스를 하였습니다. 이니 우리 ITExamDump사이트의 단골이 되었죠. ITExamDump에서는 최신의Cisco 642-813자료를 제공하며 여러분의Cisco 642-813인증시험에 많은 도움이 될 것입니다.
목표가 있다면 목표를 향해 끊임없이 달려야 멋진 인생이 됩니다. 지금의 현황에 만족하여 아무런 노력도 하지 않는다면 언젠가는 치열한 경쟁을 이겨내지 못하게 될것입니다. IT업종에 종사중이시라면 다른분들이 모두 취득하는 자격증쯤은 마련해야 되지 않겠습니까? Cisco인증 642-813시험은 요즘 가장 인기있는 자격증 시험의 한과목입니다. IT업계에서 살아남으려면ITExamDump에서Cisco인증 642-813덤프를 마련하여 자격증에 도전하여 자기의 자리를 찾아보세요.
642-813 덤프무료샘플다운로드하기: http://www.itexamdump.com/642-813.html
NO.1 What are two methods of mitigating MAC address flooding attacks? (Choose two.)
A. Place unused ports in a common VLAN.
B. Implement private VLANs.
C. Implement DHCP snooping.
D. Implement port security.
E. Implement VLAN access maps
Answer: DE
Cisco 642-813 642-813 dumps 642-813 642-813 dump
NO.2 What is one method that can be used to prevent VLAN hopping?
A. Configure ACLs.
B. Enforce username and password combinations.
C. Configure all frames with two 802.1Q headers.
D. Explicitly turn off DTP on all unused ports.
E. Configure VACLs.
Answer: D
Cisco 642-813 642-813
NO.3 Refer to the exhibit.
Dynamic ARP Inspection is enabled only on switch SW_A. Host_A and Host_B acquire their IP addresses
from the DHCP server connected to switch SW_A. What would the outcome be if Host_B initiated an ARP
spoof attack toward Host_A ?
A. The spoof packets are inspected at the ingress port of switch SW_A and are permitted.
B. The spoof packets are inspected at the ingress port of switch SW_A and are dropped.
C. The spoof packets are not inspected at the ingress port of switch SW_A and are permitted.
D. The spoof packets are not inspected at the ingress port of switch SW_A and are dropped.
Answer: C
Cisco 642-813자격증 642-813시험문제
NO.4 Refer to the exhibit.
Which VRRP statement about the roles of the master virtual router and the backup virtual router is true?
A. Router A is the master virtual router, and router B is the backup virtual router. When router A fails,
router B becomes the master virtual router. When router A recovers, router B maintains the role of master
virtual router.
B. Router A is the master virtual router, and router B is the backup virtual router. When router A fails,
router B becomes the master virtual router. When router A recovers, it regains the master virtual router
role.
C. Router B is the master virtual router, and router A is the backup virtual router. When router B fails,
router A becomes the master virtual router. When router B recovers, router A maintains the role of master
virtual router.
D. Router B is the master virtual router, and router A is the backup virtual router. When router B fails,
router A becomes the master virtual router. When router B recovers, it regains the master virtual router
role.
Answer: B
Cisco dump 642-813 642-813
NO.5 Refer to the exhibit.
GLBP has been configured on the network. When the interface serial0/0/1 on router R1 goes down, how
is the traffic coming from Host1 handled?
A. The traffic coming from Host1 and Host2 is forwarded through router R2 with no disruption.
B. The traffic coming from Host2 is forwarded through router R2 with no disruption. Host1 sends an ARP
request to resolve the MAC address for the new virtual gateway.
C. The traffic coming from both hosts is temporarily interrupted while the switchover to make R2 active
occurs.
D. The traffic coming from Host2 is forwarded through router R2 with no disruption. The traffic from Host1
is dropped due to the disruption of the load balancing feature configured for the GLBP group.
Answer: A
Cisco인증 642-813 642-813인증 642-813 642-813덤프
NO.6 Which statement is true about RSTP topology changes?
A. Any change in the state of the port generates a TC BPDU.
B. Only nonedge ports moving to the forwarding state generate a TC BPDU.
C. If either an edge port or a nonedge port moves to a block state, then a TC BPDU is generated.
D. Only edge ports moving to the blocking state generate a TC BPDU.
E. Any loss of connectivity generates a TC BPDU.
Answer: B
Cisco 642-813 dump 642-813시험문제 642-813 642-813 pdf
NO.7 Refer to the exhibit.
What information can be derived from the output?
A. Interfaces FastEthernet3/1 and FastEthernet3/2 are connected to devices that are sending BPDUs
with a superior root bridge parameter and no traffic is forwarded across the ports. After the sending of
BPDUs has stopped, the interfaces must be shut down administratively, and brought back up, to resume
normal operation.
B. Devices connected to interfaces FastEthernet3/1 and FastEthernet3/2 are sending BPDUs with a
superior root bridge parameter, but traffic is still forwarded across the ports.
C. Devices connected to interfaces FastEthernet3/1 and FastEthernet3/2 are sending BPDUs with a
superior root bridge parameter and no traffic is forwarded across the ports. After the inaccurate BPDUs
have been stopped, the interfaces automatically recover and resume normal operation.
D. Interfaces FastEthernet3/1 and FastEthernet3/2 are candidates for becoming the STP root port, but
neither can realize that role until BPDUs with a superior root bridge parameter are no longer received on
at least one of the interfaces.
Answer: C
Cisco dumps 642-813 642-813시험문제
NO.8 When an attacker is using switch spoofing to perform VLAN hopping, how is the attacker able to gather
information?
A. The attacking station uses DTP to negotiate trunking with a switch port and captures all traffic that is
allowed on the trunk.
B. The attacking station tags itself with all usable VLANs to capture data that is passed through the switch,
regardless of the VLAN to which the data belongs.
C. The attacking station generates frames with two 802.1Q headers to cause the switch to forward the
frames to a VLAN that would be inaccessible to the attacker through legitimate means.
D. The attacking station uses VTP to collect VLAN information that is sent out and then tags itself with the
domain information to capture the data.
Answer: A
Cisco인증 642-813 dumps 642-813 pdf 642-813 642-813 642-813
NO.9 Which statement is true about Layer 2 security threats?
A. MAC spoofing, in conjunction with ARP snooping, is the most effective counter-measure against
reconnaissance attacks that use Dynamic ARP Inspection to determine vulnerable attack points.
B. DHCP snooping sends unauthorized replies to DHCP queries.
C. ARP spoofing can be used to redirect traffic to counter Dynamic ARP Inspection.
D. Dynamic ARP Inspection in conjunction with ARP spoofing can be used to counter DHCP snooping
attacks.
E. MAC spoofing attacks allow an attacking device to receive frames intended for a different network host.
F. Port scanners are the most effective defense against Dynamic ARP Inspection.
Answer: E
Cisco최신덤프 642-813 642-813
NO.10 Why is BPDU guard an effective way to prevent an unauthorized rogue switch from altering the
spanning-tree topology of a network?
A. BPDU guard can guarantee proper selection of the root bridge.
B. BPDU guard can be utilized along with PortFast to shut down ports when a switch is connected to the
port.
C. BPDU guard can be utilized to prevent the switch from transmitting BPDUs and incorrectly altering the
root bridge election.
D. BPDU guard can be used to prevent invalid BPDUs from propagating throughout the network.
Answer: B
Cisco 642-813 642-813 642-813자격증 642-813 dump
NO.11 What does the command udld reset accomplish?
A. allows a UDLD port to automatically reset when it has been shut down
B. resets all UDLD enabled ports that have been shut down
C. removes all UDLD configurations from interfaces that were globally enabled
D. removes all UDLD configurations from interfaces that were enabled per-port
Answer: B
Cisco최신덤프 642-813 642-813 642-813최신덤프 642-813 pdf
NO.12 Refer to the exhibit.
Which four statements about this GLBP topology are true? (Choose four.)
A. Router A is responsible for answering ARP requests sent to the virtual IP address.
B. If router A becomes unavailable, router B forwards packets sent to the virtual MAC address of router A.
C. If another router is added to this GLBP group, there would be two backup AVGs.
D. Router B is in GLBP listen state.
E. Router A alternately responds to ARP requests with different virtual MAC addresses.
F. Router B transitions from blocking state to forwarding state when it becomes the AVG.
Answer: ABDE
Cisco최신덤프 642-813 642-813 642-813 642-813
NO.13 Refer to the exhibit.
Assume that Switch_A is active for the standby group and the standby device has only the default HSRP
configuration. Which statement is true?
A. If port Fa1/1 on Switch_A goes down, the standby device takes over as active.
B. If the current standby device had the higher priority value, it would take over the role of active for the
HSRP group.
C. If port Fa1/1 on Switch_A goes down, the new priority value for the switch would be 190.
D. If Switch_A had the highest priority number, it would not take over as active router.
Answer: C
Cisco 642-813 642-813기출문제 642-813 642-813자격증 642-813
NO.14 Refer to the exhibit.
DHCP snooping is enabled for selected VLANs to provide security on the network. How do the switch
ports handle the DHCP messages?
A. A DHCPOFFER packet from a DHCP server received on Ports Fa2/1 and Fa2/2 is dropped.
B. A DHCP packet received on ports Fa2/1 and Fa2/2 is dropped if the source MAC address and the
DHCP client hardware address does not match Snooping database.
C. A DHCP packet received on ports Fa2/1 and Fa2/2 is forwarded without being tested.
D. A DHCPRELEASE message received on ports Fa2/1 and Fa2/2 has a MAC address in the DHCP
snooping binding database, but the interface information in the binding database does not match the
interface on which the message was received and is dropped.
Answer: C
Cisco인증 642-813덤프 642-813 dump
NO.15 Refer to the exhibit.
Host A has sent an ARP message to the default gateway IP address 10.10.10.1. Which statement is true?
A. Because of the invalid timers that are configured, DSw1 does not reply.
B. DSw1 replies with the IP address of the next AVF.
C. DSw1 replies with the MAC address of the next AVF.
D. Because of the invalid timers that are configured, DSw2 does not reply.
E. DSw2 replies with the IP address of the next AVF.
F. DSw2 replies with the MAC address of the next AVF.
Answer: F
Cisco덤프 642-813 dump 642-813
NO.16 What does the global configuration command ip arp inspection vlan 10-12,15 accomplish?
A. validates outgoing ARP requests for interfaces configured on VLAN 10, 11, 12, or 15
B. intercepts all ARP requests and responses on trusted ports
C. intercepts, logs, and discards ARP packets with invalid IP-to-MAC address bindings
D. discards ARP packets with invalid IP-to-MAC address bindings on trusted ports "Pass
Answer: C
Cisco pdf 642-813 642-813시험문제 642-813자격증
NO.17 Which description correctly describes a MAC address flooding attack?
A. The attacking device crafts ARP replies intended for valid hosts. The MAC address of the attacking
device then becomes the destination address found in the Layer 2 frames sent by the valid network
device.
B. The attacking device crafts ARP replies intended for valid hosts. The MAC address of the attacking
device then becomes the source address found in the Layer 2 frames sent by the valid network device.
C. The attacking device spoofs a destination MAC address of a valid host currently in the CAM table. The
switch then forwards frames destined for the valid host to the attacking device.
D. The attacking device spoofs a source MAC address of a valid host currently in the CAM table.
The switch then forwards frames destined for the valid host to the attacking device.
E. Frames with unique, invalid destination MAC addresses flood the switch and exhaust CAM table space.
The result is that new entries cannot be inserted because of the exhausted CAM table space, and traffic is
subsequently flooded out all ports.
F. Frames with unique, invalid source MAC addresses flood the switch and exhaust CAM table space.
The result is that new entries cannot be inserted because of the exhausted CAM table space, and traffic is
subsequently flooded out all ports.
Answer: F
Cisco자료 642-813 642-813 dumps
NO.18 Refer to the exhibit.
The web servers WS_1 and WS_2 need to be accessed by external and internal users. For security
reasons, the servers should not communicate with each other, although they are located on the same
subnet. However, the servers do need to communicate with a database server located in the inside
network. Which configuration isolates the servers from each other?
A. The switch ports 3/1 and 3/2 are defined as secondary VLAN isolated ports. The ports connecting to
the two firewalls are defined as primary VLAN promiscuous ports.
B. The switch ports 3/1 and 3/2 are defined as secondary VLAN community ports. The ports connecting to
the two firewalls are defined as primary VLAN promiscuous ports.
C. The switch ports 3/1 and 3/2 and the ports connecting to the two firewalls are defined as primary VLAN
promiscuous ports.
D. The switch ports 3/1 and 3/2 and the ports connecting to the two firewalls are defined as primary VLAN
community ports.
Answer: A
Cisco 642-813 642-813 dump 642-813시험문제
NO.19 What two steps can be taken to help prevent VLAN hopping? (Choose two.)
A. Place unused ports in a common unrouted VLAN.
B. Enable BPDU guard.
C. Implement port security.
D. Prevent automatic trunk configurations.
E. Disable Cisco Discovery Protocol on ports where it is not necessary.
Answer: AD
Cisco 642-813기출문제 642-813 642-813 642-813 dumps
NO.20 Refer to the exhibit.
An attacker is connected to interface Fa0/11 on switch A-SW2 and attempts to establish a DHCP server
for a man-in-middle attack. Which recommendation, if followed, would mitigate this type of attack?
A. All switch ports in the Building Access block should be configured as DHCP trusted ports.
B. All switch ports in the Building Access block should be configured as DHCP untrusted ports.
C. All switch ports connecting to hosts in the Building Access block should be configured as DHCP trusted
ports.
D. All switch ports connecting to hosts in the Building Access block should be configured as DHCP
untrusted ports.
E. All switch ports in the Server Farm block should be configured as DHCP untrusted ports.
F. All switch ports connecting to servers in the Server Farm block should be configured as DHCP
untrusted ports.
Answer: D
Cisco 642-813 642-813 642-813
많은 사이트에서도 무료Cisco 642-813덤프데모를 제공합니다. 우리도 마찬가지입니다. 여러분은 그러한Cisco 642-813데모들을 보시고 다시 우리의 덤프와 비교하시면, 우리의 덤프는 다른 사이트덤프와 차원이 다른 덤프임을 아사될 것 입니다. 우리 ITExamDump사이트에서 제공되는Cisco인증642-813시험덤프의 일부분인 데모 즉 문제와 답을 다운받으셔서 체험해보면 우리ITExamDump에 믿음이 갈 것입니다. 왜냐면 우리 ITExamDump에는 베터랑의 전문가들로 이루어진 연구팀이 잇습니다, 그들은 it지식과 풍부한 경험으로 여러 가지 여러분이Cisco인증642-813시험을 패스할 수 있을 자료 등을 만들었습니다 여러분이Cisco인증642-813시험에 많은 도움이Cisco 642-813될 것입니다. ITExamDump 가 제공하는642-813테스트버전과 문제집은 모두Cisco 642-813인증시험에 대하여 충분한 연구 끝에 만든 것이기에 무조건 한번에Cisco 642-813시험을 패스하실 수 있습니다. 때문에Cisco 642-813덤프의 인기는 당연히 짱 입니다.
댓글 없음:
댓글 쓰기