The questions that follow give you a bigger challenge than the exam itself by using an open-ended question format. By reviewing now with this more difficult question format, you can exercise your memory better and prove your conceptual and factual knowledge of this chapter. The answers to these questions are found in the appendix.
For more practice with exam-like question formats, use the exam engine on the CD-ROM.
What are the common locations to deploy inline IPS?
When do you need to construct an artificial VLAN boundary to use inline IPS?
What are the three network devices commonly used to capture network traffic for processing by your sensor?
Which three switch mechanisms can you use to mirror traffic to your IPS sensors?
How is SPAN different from RSPAN?
Which IOS command is used to configure SPAN on your Catalyst 4500 and 6500 switches?
What are the steps involved in configuring a VACL on IOS?
Which command may impact your ability to capture traffic by using VACLs?
When do you need to use the mls ip ids IOS command?
What steps are involved in using VACLs when you have the IOS Firewall on your Catalyst 6500 switch?
Which IOS command do you use to enable trunking on a switch port?
Which IOS command enables you to create a VLAN access map?
Which action must you specify (when using VLAN access maps) to enable the traffic to pass to the destination hosts and not be denied?