Vanessa is reviewing ike.elg file to troubleshoot failed site-to-site VPN connection After sending Mam Mode Packet 5 the response from the peer is PAYLOAD-MALFORMED" What is the reason for failed VPN connection?
A. The authentication on Phase 2 is causing the problem
Pre-shared key on local gateway encrypted by the hash algorithm created in Packets 1 and 2 doesn't match with the hash on the peer gateway generated by encrypting its pre-shared key
B. The authentication on Quick Mode is causing the problem
Pre-shared key on local gateway encrypted by the hash algorithm created in Packets 3 and 4 doesn't match with the hash on the peer gateway generated by encrypting its pre-shared key
C. The authentication on Phase 1 is causing the problem.
Pre-shared key on local gateway encrypted by the hash algorithm created in Packet 3 and Packet 4 doesn't match with the hash on the peer gateway generated by encrypting its pre-shared key
D. The authentication on Phase 1 is causing the problem
Pre-shared key on local gateway encrypted by the hash algorithm doesn't match with the hash on the peer gateway generated by encrypting its pre-shared key created in Packet 1 and Packet 2
正解:A
質問 2:
What are four main database domains?
A. System, Global, Log, Event
B. Local, Global, User, VPN
C. System, User, Global, Log
D. System, User, Host, Network
正解:C
質問 3:
What is the kernel process for Content Awareness that collects the data from the contexts received from the CMI and decides if the file is matched by a data type?
A. dlpda
B. dlpu
C. cntawmod
D. cntmgr
正解:C
質問 4:
To check the current status of hyper-threading, which command would you execute in expert mode?
A. cat /proc/hypert_stat
B. cat /proc/hypert_status
C. cat /proc/smt_status
D. cat /proc/smt_stat
正解:C
質問 5:
During firewall kernel debug with fw ctl zdebug you received less information than expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?
A. Redirect debug output to file; Use fw ctl debug -o ./debug.elg
B. Redirect debug output to file; Use fw ctl zdebug -o ./debug.elg
C. Increase debug buffer; Use fw ctl zdebug -buf 32768
D. Increase debug buffer; Use fw ctl debug -buf 32768
正解:D
質問 6:
Jenna has to create a VPN tunnel to a CISCO ASA but has to set special property to renegotiate the Phase 2 tunnel after 10 MB of transferee1 dat a. This can not be configured in the smartconsole, so how can she modify this property?
A. she need to install GUIDBEDIT which can be downloaded from the Usercenter
B. this cant be done anymore as GUIDBEDIT is not supported in R80 anymore
C. using GUIDBEDIT located in same directory as Smartconsole on the Windows client
D. she need to run GUIDBEDIT from CLISH which opens a graphical window on the smartcenter
正解:D
質問 7:
What is NOT a benefit of the fw ctl zdebug command?
A. Collect debug messages from the kernel
B. Clean the buffer
C. Automatically allocate a 1MB buffer
D. Cannot be used to debug additional modules
正解:D
小岛** -
すごい。
Pass4Testの問題集は助かりました。156-585の本場試験に合格致しました。