Exam: 640-554
|
|||||||||||||||||||||||||||
Certkingdom's preparation material includes the most excellent features, prepared by the same dedicated experts who have come together to offer an integrated solution. We provide the most excellent and simple method to pass your certification exams on the first attempt "GUARANTEED"
Whether you want to improve your skills, expertise or career growth, with Certkingdom's training and certification resources help you achieve your goals. Our exams files feature hands-on tasks and real-world scenarios; in just a matter of days, you'll be more productive and embracing new technology standards. Our online resources and events enable you to focus on learning just what you want on your timeframe. You get access to every exams files and there continuously update our study materials; these exam updates are supplied free of charge to our valued customers. Get the best 640-554 exam Training; as you study from our exam-files "Best Materials Great Results"
640-554 Exam + Online / Offline and Android Testing Engine & 4500+ other exams included
$50 - $25 (you save $25)
Buy Now
640-554 IINS
Implementing Cisco IOS Network Security
Exam Number 640-554
Associated Certifications CCNA Security
Duration 90 minutes (55-65 questions)
Available Languages English, Japanese
Exam Description
The 640-554 "Implementing Cisco IOS Network Security" (IINS) exam is associated with the CCNA Security certification. This 90-minute, 55-65 questions exam tests a candidate's knowledge of securing Cisco routers and switches and their associated networks. It leads to validated skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices, and develops competency in the technologies that Cisco uses in its security infrastructure. Candidates can prepare for this exam by taking the "Implementing Cisco IOS Network Security" (IINS) course.
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
1.0 Common Security Threats 11%
1.1 Describe common security threats
1.1.a Common threats to the physical installation
1.1.b Mitigation methods for common network attacks
1.1.c Email-based threats
1.1.d Web-based attacks
1.1.e Mitigation methods for Worm, Virus, and Trojan Horse attacks
1.1.f Phases of a secure network lifecycle
1.1.g Security needs of a typical enterprise with a comprehensive security policy
1.1.h Mobile/remote security
1.1.i DLP
2.0 Security and Cisco Routers 8%
2.1 Implement Security on Cisco routers
2.1.a CCP Security Audit feature
2.1.b CCP One-Step Lockdown feature
2.1.c Secure router access using strong encrypted passwords, and using IOS login enhancements, IPV6 security
2.1.d Multiple privilege levels
2.1.e Role-Based CLI
2.1.f Cisco IOS image and configuration files
2.2 Describe securing the control, data and management plane
2.3 Describe CSM
2.4 Describe IPv4 to IPv6 transition
2.4.a Reasons for IPv6
2.4.b Understanding IPv6 addressing
2.4.c Assigning IPv6 addresses
2.4.d Routing considerations for IPv6
3.0 AAA on Cisco Devices 11%
3.1 Implement authentication, authorization, and accounting (AAA)
8.1.a AAA using CCP on routers
8.1.b AAA using CLI on routers and switches
8.1.c AAA on ASA
3.2 Describe TACACS+
3.3 Describe RADIUS
3.4 Describe AAA
3.4.a Authentication
3.4.b Authorization
3.4.c Accounting
3.5 Verify AAA functionality
4.0 IOS ACLs 12%
4.1 Describe standard, extended, and named IP IOS ACLs to filter packets
4.1.a IPv4
4.1.b IPv6
4.1.c Object groups
4.1.d ACL operations
4.1.e Types of ACLs (dynamic, reflexive, time-based ACLs)
4.1.f ACL wild card masking
4.1.g Standard ACLs
4.1.h Extended ACLs
4.1.i Named ACLs
4.1.j VLSM
4.2 Describe considerations when building ACLs
4.2.a Sequencing of ACEs
4.2.b Modification of ACEs
4.3 Implement IP ACLs to mitigate threats in a network
4.3.a Filter IP traffic
4.3.b SNMP
4.3.c DDoS attacks
4.3.d CLI
4.3.e CCP
4.3.f IP ACLs to prevent IP spoofing
4.3.g VACLs
5.0 Secure Network Management and Reporting 10%
5.1 Describe secure network management
5.1.a In-band
5.1.b Out of band
5.1.c Management protocols
5.1.d Management enclave
5.1.e Management plane
5.2 Implement secure network management
5.2.a SSH
5.2.b syslog
5.2.c SNMP
5.2.d NTP
5.2.e SCP
5.2.f CLI
5.2.g CCP
5.2.h SSL
6.0 Common Layer 2 Attacks 12%
6.1 Describe Layer 2 security using Cisco switches
6.1.a STP attacks
6.1.b ARP spoofing
6.1.c MAC spoofing
6.1.d CAM overflows
6.1.e CDP/LLDP
6.2 Describe VLAN Security
6.2.a Voice VLAN
6.2.b PVLAN
6.2.c VLAN hopping
6.2.d Native VLAN
6.3 Implement VLANs and trunking
6.3.a VLAN definition
6.3.b Grouping functions into VLANs
6.3.c Considering traffic source to destination paths
6.3.d Trunking
6.3.e Native VLAN
6.3.f VLAN trunking protocols
6.3.g Inter-VLAN routing
6.4 Implement Spanning Tree
6.4.a Potential issues with redundant switch topologies
6.4.b STP operations
6.4.c Resolving issues with STP
7.0 Cisco Firewall Technologies 13%
7.1 Describe operational strengths and weaknesses of the different firewall technologies
7.1.a Proxy firewalls
7.1.b Packet and stateful packet
7.1.c Application firewall
7.1.d Personal firewall
7.2 Describe stateful firewalls
7.2.a Operations
7.2.b Function of the state table
7.3 Describe the types of NAT used in firewall technologies
7.3.a Static
7.3.b Dynamic
7.3.c PAT
7.4 Implement Zone Based Firewall using CCP
7.4.a Zone to zone
7.4.b Self zone
7.5 Implement the Cisco Adaptive Security Appliance (ASA)
7.5.a NAT
7.5.b ACL
7.5.c Default MPF
7.5.d Cisco ASA sec level
7.6 Implement NAT and PAT
7.6.a Functions of NAT, PAT, and NAT Overload
7.6.b Translating inside source addresses
7.6.c Overloading Inside global addresses
8.0 Cisco IPS 11%
8.1 Describe IPS deployment considerations
8.1.a SPAN
8.1.b IPS product portfolio
8.1.c Placement
8.1.d Caveats
8.2 Describe IPS technologies
8.2.a Attack responses
8.2.b Monitoring options
8.2.c Syslog
8.2.d SDEE
8.2.e Signature engines
8.2.f Signatures
8.2.g Global correlation and SIO
8.2.h Network-based
8.2.i Host-based
8.3 Configure Cisco IOS IPS using CCP
8.3.a Logging
8.3.b Signatures
9.0VPN Technologies 12%
9.1 Describe the different methods used in cryptography
9.1.a Symmetric
9.1.b Asymmetric
9.1.c HMAC
9.1.d Message digest
9.1.e PKI
9.2 Describe VPN technologies
9.2.a IPsec
9.2.b SSL
9.3 Describe the building blocks of IPSec
9.3.a IKE
9.3.b ESP
9.3.c AH
9.3.d Tunnel mode
9.3.e Transport mode
9.4 Implement an IOS IPSec site-to-site VPN with pre-shared key authentication
9.4.a CCP
9.4.b CLI
9.5 Verify VPN operations
9.6 Implement SSL VPN using ASA device manager
9.6.a Clientless
9.6.b AnyConnect
Make yourself more valuable in today's competitive computer industry Certkingdom's preparation material includes the most excellent features, prepared by the same dedicated experts who have come together to offer an integrated solution. We provide the most excellent and simple method to pass your Cisco CCNA Security 640-554 exam on the first attempt "GUARANTEED".
Unlimited Access Package
will prepare you for your exam with guaranteed results, 640-554 Study Guide. Your exam will download as a single 640-554 PDF or complete 640-554 testing engine as well as over +4000 other technical exam PDF and exam engine downloads. Forget buying your prep materials separately at three time the price of our unlimited access plan - skip the 640-554 audio exams and select the one package that gives it all to you at your discretion: 640-554 Study Materials featuring the exam engine.
Certkingdom 640-554 Exam Prepration Tools
Certkingdom Cisco CCNA Security preparation begins and ends with your accomplishing this credential goal. Although you will take each Cisco CCNA Security online test one at a time - each one builds upon the previous. Remember that each Cisco CCNA Security exam paper is built from a common certification foundation.
640-554 Exam Testing Engines
Beyond knowing the answer, and actually understanding the 640-554 test questions puts you one step ahead of the test. Completely understanding a concept and reasoning behind how something works, makes your task second nature. Your 640-554 quiz will melt in your hands if you know the logic behind the concepts. Any legitimate Cisco CCNA Security prep materials should enforce this style of learning - but you will be hard pressed to find more than a Cisco CCNA Security practice test anywhere other than Certkingdom.
640-554 Exam Questions and Answers with Explanation
This is where your Cisco CCNA Security 640-554 exam prep really takes off, in the testing your knowledge and ability to quickly come up with answers in the 640-554 online tests. Using CCNA Security 640-554 practice exams is an excellent way to increase response time and queue certain answers to common issues.
640-554 Exam Study Guides
All Cisco CCNA Security online tests begin somewhere, and that is what the Cisco CCNA Security training course will do for you: create a foundation to build on. Study guides are essentially a detailed Cisco CCNA Security 640-554 tutorial and are great introductions to new Cisco CCNA Security training courses as you advance. The content is always relevant, and compound again to make you pass your 640-554 exams on the first attempt. You will frequently find these 640-554 PDF files downloadable and can then archive or print them for extra reading or studying on-the-go.
640-554 Exam Video Training
For some, this is the best way to get the latest Cisco CCNA Security 640-554 training. However you decide to learn 640-554 exam topics is up to you and your learning style. The Certkingdom Cisco CCNA Security products and tools are designed to work well with every learning style. Give us a try and sample our work. You'll be glad you did.
640-554 Other Features
* Realistic practice questions just like the ones found on certification exams.
* Each guide is composed from industry leading professionals real Cisco CCNA Securitynotes, certifying 100% brain dump free.
* Study guides and exam papers are guaranteed to help you pass on your first attempt or your money back.
* Designed to help you complete your certificate using only
* Delivered in PDF format for easy reading and printing Certkingdom unique CBT 640-554 will have you dancing the Cisco CCNA Security jig before you know it
* CCNA Security 640-554 prep files are frequently updated to maintain accuracy. Your courses will always be up to date.
Get CCNA Security ebooks from Certkingdom which contain real 640-554 exam questions and answers. You WILL pass your CCNA Security exam on the first attempt using only Certkingdom's CCNA Security excellent preparation tools and tutorials.
These are real testimonials. Hi friends! CertKingdom.com is No1 in sites coz in $50 I cant believe this but when I purchased the $50 package it was amazing I Cisco passed 10 Exams using CertKingdom guides in one Month So many thanks to CertKingdom Team , Please continue this offer for next year also. So many Thanks
Mike CA
Thank You! I would just like to thank CertKingdom.com for the Cisco CCNA Security 640-554 test guide that I bought a couple months ago and I took my test and pass overwhelmingly. I completed the test of 597 questions in about 90 minutes I must say that their Q & A with Explanation are very amazing and easy to learn.
Jay Brunets
After my co-workers found out what I used to pass Cisco CCNA Security 640-554 the test, that many are thinking about purchasing CertKingdom.com for their CCNA Security exams, I know I will again
John NA
I passed the Cisco CCNA Security 640-554 exam yesterday, and now it's on to security exam. Couldn't have done it with out you. Thanks very much.
Oley R.
Hello Everyone
I Just Passed The Cisco CCNA Security 640-554 Took 80 to 90 Minutes max to understand and easy to learn. Thanks For Everything Now On To 640-554
Robert R.
Hi CertKingdom.com thanks so much for your assistance in Cisco CCNA Security i passed today it was a breeze and i couldn't have done it without you. Thanks again
Seymour G.
I have used your Exam Study Guides for preparation for Cisco CCNA Security 640-554. I also passed all those on the first round. I'm currently preparing for the Microsoft and theCCNA Security. exams
Ken T.
I just wanted to thank you for helping me get myCCNA Security $50 package for all guides is awesome you made the journey a lot easier. I passed every test the first time using your Guide
Mario B.
I take this opportunity to express my appreciation to the authors of CertKingdom.com Cisco CCNA Security test guide. I purchased the 640-554 soon after my formal hands on training and honestly, my success in the test came out of nowhere but CertKingdom.com. Once again I say thanks
Kris H.
Dear CertKingdom.com team the test no. 640-554 that i took was very good, I received 880 and could have gain more just by learning your exams
Gil L.
Hi and Thanks I have just passed the CCNA Security Directory Services Design exam with a score of 928 thanks to you! The guide was excellent
Edward T.
Great stuff so far....I love this site....!! I am also on the Cisco CCNA Security I decided to start from certkingdom and start learning study CCNA Security from home... It has been really difficult but so far I have managed to get through 4 exams....., now currently studying for the more exams.... Have a good day.................................................. Cheers
Ted Hannam
Thanks for your Help, But I have finally downloaded Cisco CCNA Security 640-554 exam preparation from certkingdom.com they are provided me complete information about the exam, lets hope I get success for the 640-554 exam, I found there exams very very realistic and useful. thanks again
lindsay Paul
Certkingdom Offline Testing Engine Simulator Download
Prepare with yourself how CertKingdom Offline Exam Simulator it is designed specifically for any exam preparation. It allows you to create, edit, and take practice tests in an environment very similar to an actual exam.
Supported Platforms: Windows-7 64bit or later - EULA | How to Install?
FAQ's: Windows-8 / Windows 10 if you face any issue kinldy uninstall and reinstall the Simulator again.
Download Offline Simulator-Beta
Certkingdom Testing Engine Features
- Certkingdom Testing Engine simulates the real exam environment.
- Interactive Testing Engine Included
- Live Web App Testing Engine
- Offline Downloadable Desktop App Testing Engine
- Testing Engine App for Android
- Testing Engine App for iPhone
- Testing Engine App for iPad
- Working with the Certkingdom Testing Engine is just like taking the real tests, except we also give you the correct answers.
- More importantly, we also give you detailed explanations to ensure you fully understand how and why the answers are correct.
Certkingdom Android Testing Engine Simulator Download
Take your learning mobile android device with all the features as desktop offline testing engine. All android devices are supported.
Supported Platforms: All Android OS EULA
Install the Android Testing Engine from google play store and download the app.ck from certkingdom website android testing engine download
Certkingdom Android Testing Engine Features
- CertKingdom Offline Android Testing Engine
- Make sure to enable Root check in Playstore
- Live Realistic practice tests
- Live Virtual test environment
- Live Practice test environment
- Mark unanswered Q&A
- Free Updates
- Save your tests results
- Re-examine the unanswered Q & A
- Make your own test scenario (settings)
- Just like the real tests: multiple choice questions
- Updated regularly, always current
