1. Thank You guys for the tips. Wrote my exam a few days ago. Passed @flowrida (Thank You very much). Below is what I remembered from my exam. 61 Questions in total pass mark 896.Protocol number for encapsulated security payload (ESP) and what it does50, encrypts payload of packetProtocol for Authenticated Header (AH) and what it does51, message authentication via hashingPurpose of access-list in VPN site-to-site configurationThe interesting traffic to be encryptedWhat is a Protected VlanProvides layer 2 isolation between ports within the same broadcast domain (answers were based on layer2 and layer 3)How to protect cam table overflowport securityWhat is used for controlling access to Cisco appliancesTACACS+IPV6 bit size128How can a Vlan hopping attack be done?Switch spoofing and double taggingWhich command verifies authentication between the router and TACACStest aaa group tacacs+ testuser password p@assw0rdWhat page on CCP to enable AAAAAA SummaryExamples of blended attacksTrojan Horse, Day ZeroWhich types of acl are used within ipv6extended and nameWhat makes up Cisco Security ManageConfiguration, Event View and Report ManagerYou receive an error stating that anyconnect is disabled. Which command would you enter to enable any connect?anyconnect enableHow do you check the phase 2 communications for a VPN connection on an ios router?Show crypto IPSEC saWhat types of ACLs are used for sequencingExtended and StandardPick the correct ESP ACLPermit ESP x.x.x.x wild cardWhat needs to be done to get the two site VPN connection to work?The interesting traffic at site 2 needs to mirror the interesting traffic at site 1.Which technology performs automated digital certificate management for VPN peers?Public Key Infrastructure (PKI)Which statement about Control Plane Policing is trueallows QOS filtering to protect against DoS attacksWhich two contermeasures can mitigate MAC spoofing attacksIP Source guard and port securityAuthentication Policy for AAA.Answer : Router > AAA > Authentication Policies > LoginWhich statement about Control Plane Policing is trueA: allows QOS filtering to protect against DoS attackshost connected to switch SW1 port 1 in vlan 5, host connected to switch SW1 port 10 in vlan 10. What is needed to have ip communication between the 2 hosts (choose 2):-connect the 2 hosts directly to a router-intervlan routing-svi configuration-layer 3.Questions on Radius and Tacacs+Question about Cisco Configuration Professional Security Audit WizardThe rest from Cisco.Passguide.640-554.v2013-08-08.by.Rajeev dump drag and drops identical + Sims +Lab2. simonApril 8th, 2014is that right??Q. host connected to switch SW1 port 1A.-connect the 2 hosts directly to a router-layer 33. KillereyesApril 8th, 2014@badThis is great thanks4. networkingApril 8th, 2014@simon: ans is-intervlan routing-svi configuration5. PrabakarApril 8th, 2014What are all the New questions .. can anyone please tell me !!6. JohnApril 8th, 2014Guys on the NTP Lab question did anyone have issues being unable to do a write config in CCP at the end of the Sim. When I flunked the exam fairly recently I had this issue where the Write Config was greyed out after I made the NTP and ACL changes.7. netnetApril 8th, 2014@Johnseveral other ppl said the same about the NTP lab but it shouldnt affect you score if you cant save the config8. chupacabraApril 8th, 2014@networking no cli, just need to know outputs of Show commands for vpn tunneling. Ex. Show vpn-sessiondb remote filter tunnel-group.9. bosw8terApril 8th, 2014passed today. Used cbt nuggets, questions listed above. Labs are still valid (NTP,IOS Firewall).Encountered no new questions. Drap & drop network lifecycle was in the exam.10. patApril 8th, 2014Guys Im not sure about this question:Which technology performs automated digital certificate management for VPN peers?Public Key Infrastructure (PKI)see this: page 483 of the cert guideipsec-isakmp means that we want the router to automatically! negotiate the IKE Phase 2 tunnel, using isakmp, which stands for Internet! Security Association Key Management Protocol. In short, it means automate! the process, so the administrator doesnt manually have to configure all! keys for encryption.Im not sure if my understanding is correct though, what do you think ? I know there was isakmp as an option for that question

floridaUpdated List: The list is growing and hopefully we will see more people passing soon- NTP + ACL simlet (this is pretty straight forward and there is a youtube video on how to do it)- Protocol Numbers for ESP and AH (esp=50 and ah=51)- Purpose of access-list in VPN site-to-site config (traffic to be encrypted)- Two VPN Site to Site Configurations ( I am not sure what this will be asking)- 2 Questions on Radius and Tacacs+ (the answers to these should be in the current dumps)- What is a PVLAN ( PVLANs provide layer 2 isolation between ports within the same broadcast domain. )- How to protect cam table overflow (port security)- What is used for controlling access to cisco appliances(this should be TACACS+ because the book pretty much says this verbatim)- Question on Scansafe ( is this the same question that is on the dump?)- Question on Data in motion ( too vague)- IPV6 bit size (128)- What features where auto disable/enabled in one step lock down in CCP ( there are a lot of answers that this could be)- How Vlan hopping attack can be done ( switch spoofing and double tagging)- Which command to verify authentication between the router and TACACS? ( test aaa group tacacs+ testsuer password p@ssw0rd)- three drag and drops (network work lifecycle, TACACS+/RADIUS, ? )- What page on CCP to enable AAA (AAA summary)- What CCP screen would you use to add a new AAA server? (Configure>Router>AAA>AAA servers and groups>Servers)- examples of blended attacks (trojan horse attack and day zero attack)-CCP sim what class map is used by rule inbound (I will take a shot in the dark here..you should have went to configure>Security>C3PL>ClassMap>QOS Class Map there will be a list of class maps and when you click on each class map, you can see what ACL is matched.- IPS sigs that will trigger ( looks like you picked the right one, this is also on the old dumps)- Implementing secure monitoring system (anyone remember this one)- which types of acl are used within ipv6 (exteneded and name)- host connected to switch SW1 port 1 in vlan 5, host connected to switch SW1 port 10 in vlan 10. What is needed to have ip communication between the2 hosts(what is needed is a layer three switch or configure router on a stick, but intervlan and SVI is listed as choices)- What makes up Cisco Security Manager (Configuration , Event Viewer, and Report Manager)- How do you check the phase 2 communications for a VPN connection on an ios router? (Show crypto IPSEC sa)- what types of ACLs are used for sequencing (Extended and Standard)

Updated List: The list is growing and hopefully we will see more people passing soon- NTP + ACL simlet (this is pretty straight forward and there is a youtube video on how to do it)- Protocol Numbers for ESP and AH (esp=50 and ah=51)- Purpose of access-list in VPN site-to-site config (traffic to be encrypted)- Two VPN Site to Site Configurations ( I am not sure what this will be asking)- 2 Questions on Radius and Tacacs+ (the answers to these should be in the current dumps)- What is a PVLAN ( PVLANs provide layer 2 isolation between ports within the same broadcast domain. )- How to protect cam table overflow (port security)- What is used for controlling access to cisco appliances(this should be TACACS+ because the book pretty much says this verbatim)- Question on Scansafe (same as on the dump)- Question on Data in motion (too vague)- IPV6 bit size (128)- What features where auto disable/enabled in one step lock down in CCP ( there are a lot of answers that this could be)- How Vlan hopping attack can be done ( switch spoofing and double tagging)- Which command to verify authentication between the router and TACACS? ( test aaa group tacacs+ testuser password p@ssw0rd)- three drag and drops (network work lifecycle, TACACS+/RADIUS, ? )- What page on CCP to enable AAA (AAA summary)- What CCP screen would you use to add a new AAA server? (Configure>Router>AAA>AAA servers and groups>Servers)- examples of blended attacks (trojan horse attack and day zero attack)-CCP sim what class map is used by rule inbound (I will take a shot in the dark here..you should have went to configure>Security>C3PL>ClassMap>QOS there will be a list of class maps, when you click on each class map, you can see what ACL is matched.)- IPS sigs that will trigger ( looks like you picked the right one, this is also on the old dumps)- Implementing secure monitoring system (anyone remember this one)- which types of acl are used within ipv6 (exteneded and name)- host connected to switch SW1 port 1 in vlan 5, host connected to switch SW1 port 10 in vlan 10. What is needed to have ip communication between the2 hosts(either you have to do router on a stick or the switch needs to be layer 3)- What makes up Cisco Security Manager (Configuration , Event Viewer, and Report Manager)- You receive an error stating that anyconnect is disabled. Which command would you enter to enable any connect? (The answer is anyconnect enable)- How do you check the phase 2 communications for a VPN connection on an ios router? (Show crypto IPSEC sa)- what types of ACLs are used for sequencing (Extended and Standard)- Pick the correct ESP ACL (Permit ESP x.x.x.x wild card)

1. Updated List: The list is growing and hopefully we will see more people passing soon- NTP + ACL simlet (this is pretty straight forward and there is a youtube video on how to do it)- Protocol Numbers for ESP and AH (esp=50 and ah=51)- Purpose of access-list in VPN site-to-site config (traffic to be encrypted)- Two VPN Site to Site Configurations ( I am not sure what this will be asking)- 2 Questions on Radius and Tacacs+ (the answers to these should be in the current dumps)- What is a PVLAN ( partitions the Layer 2 broadcast domain of a VLAN into subdomains )- How to protect cam table overflow (port security)- What is used for controlling access to cisco appliances(AAA)- Question on Scansafe (same as on the dump)- Question on Data in motion (AH and ESP)- IPV6 bit size (128)- What features where auto disable/enabled in one step lock down in CCP (enable cef, disable tcp small servers servcie, set enable secret password )- How Vlan hopping attack can be done ( switch spoofing and double tagging)- Which command to verify authentication between the router and TACACS? ( test aaa group )- three drag and drops (network work lifecycle, TACACS+/RADIUS, ? )- What page on CCP to enable AAA (AAA summary)- What CCP screen would you use to add a new AAA server? (AAA servers and groups)- examples of blended attacks (trojan horse attack and day zero attack)-CCP sim what class map is used by rule inbound (I will take a shot in the dark here..you should have went to configure>Security>C3PL>ClassMap>QOS there will be a list of class maps, when you click on each class map, you can see what ACL is matched.)- IPS sigs that will trigger ( looks like you picked the right one, this is also on the old dumps)- which types of acl are used within ipv6 (exteneded and name)- host connected to switch SW1 port 1 in vlan 5, host connected to switch SW1 port 10 in vlan 10. What is needed to have ip communication between the2 hosts(inter-VLAN routing and configure switched internal interfaces)- What makes up Cisco Security Manager (Configuration , Event Viewer, and Report Manager)- You receive an error stating that anyconnect is disabled. Which command would you enter to enable any connect? (The answer is anyconnect enable)- How do you check the phase 2 communications for a VPN connection on an ios router? (Show crypto IPSEC sa)- what types of ACLs are used for sequencing (Extended and Standard)- Pick the correct ESP ACL (Permit ESP x.x.x.x wild card)- Which statement about Control Plane Policing is true (allows QOS filtering to protect against DoS attacks)- Which two contermeasures can mitigate MAC spoofing attacks (IP Source guard and port security)2. flowridaApril 4th, 2014honestly, the new questions that I didnt add, I felt like were stuff people would get because it is pretty easy3. netnetApril 4th, 2014@flowridathank you ever so much!4. XiolaApril 4th, 2014In your debt Flowrida!5. flowridaApril 4th, 2014dang it I forgot to update the two VPN configsit asks for two answersone is the ACLs need to mirror each other and the other is there is a mismatch with the transport and tunnel mode. It is pretty easy to point out if you know what a correct site to site tunnel is suppose to look like.6. teaApril 4th, 2014@ flowridamy friend need to pass security because he passed the wireless exam , but fail security cannotgraduate the high dip course.so do you mind tell us more about new dump question.thank you