Failed CCSA NGX today with 58% =(

[solara]

question 105 looks strange to me, I don't think the wording is accurate.
It says Shauna is working at the gateway and I take that to mean working on the console locally - so why would she need to specify an IP address?

I tried both the first two commands on my SecurePlatform and the syntax is definitely incorrect.

I would have said the correct answer is "fw unloadlocal"

C can't be right. D relates to a different thing altogether.

I'm not sure about 108 either - it would appear to contradict the previous question about the same topic.

I'll do some research on this later when I've finished at the office.

Yes, just submit your suggestions to feedback@testking.com and cite the test number, question number and answer with an explanation if you can.

[ma77smith]

I know what your saying, I dont think cprestart works on its own - doesnt it have to be used with cprinstall cprestart ?? or cpridrestart

plus it only restarts the CP installation daemon according to the CP documentation.

At least the fw unload removes the policy from a specified target - thats the closest thing I can see to the question.

As you said, wording might be wrong as none of the answers seem correct - your right you would use unloadlocal, expecially as she is working at the gateway itself (doesnt need to specify a target)

come on TK, sort it out

[dean7711]

I think 108 is B hostport scan. Once you guys have gone through maybe we should list what we believe are the answers from 65 to 121. for example.

65:A
66:C

etc.

I will go through them and post what i believe is right if any conflict we can debate here..

[solara]

Sounds like a good idea to me dean7711. I'm going to go through some questions this evening and make a post soon after.

[ma77smith]

Hi Guys, this is what I think (bear in mind some of these are already added to TK - as it's had three updates in the last two days)


Q Answer Comments

65 C Multicast routing protocol support is dependant on the OS you use not NGX, Secureplatform pro supports it - but this is not mentioned, more likely to be improper configuration
66 A You dont attach the private key to the message - I'm pretty sure the answer is digital signature
76 C The hash function does not provide a two way secure communication, it's simply a function which when used in conjuction with a digital certificate ensures the integrity and unique identity of a sender
77 E
78 B In-place encryption (transport encryption) is where just the payload (data portion) of the packet is encrypted, options A,C,D and E all use tunnel encyption - where the whole packet is encrypted.
79 A
80 A or C All of the filenames/locations in answers B,D,E are invalid - it can't be those
81 B I think so because all the other seem wrong ? If it was E it would say Disconnected for example
82 E
83 B
84 D Because I don’t think re-installing over the top of a current installation is recommeded - this is only that mention uninstalling first
85 B "Answer A deletes the certificates, although this would work it's not needed just to reset SIC
C,D,E are irrelevant to SIC"
86 C
87 B
88 E A,B,C will be ticked by default anyway, D is irrelevant as his FTP and SMTP NAT is working fine - these also wouldn't work if there was a routing problem.
89 E Doesn’t say that you have a TACAS, ACE (Seure ID) or LDAP server!! And client auth wouldn’t allow them to roam
90 C
91 A
92 C
93 A It says you want maximum security, in this case you would use tunnel encryption which encrypts all of the packet not just the payload (more secure). C is wrong because tunnel encryption puts more of a processing overhead on the server than in-place encryption.
94 A
95 B User auth does contact the firewall directly, has to be aboice stealth rule otherwise would drop connection
96 C
97 A Says so in the Syngress NGX book
98 E
99 B
100 C
101 B
102 C
103 B
104 E TK is wrong, cant be D as the file the command creates has a lfid extension not ldap
105 B "Must be worded wrong, as they are all rubbish - definately wouldnt be A as fw dbload is used to download user/network obejects to specific targets, and it speficically says in the question she wants to uninstall the security policy.

The answer is definately fwm unloadlocal absolutely 100%

dont know why this isnt a possible answer !!"
106 D
107 B I think so !!!
108 D
109
110
111 D TK was wrong, It says in the question that the network needs to be blocked for 1 hour, this can only be done by using D - there is no time frame option when using Suspicious Activity Rules method (B)

[cbrandst@gmail.com]

I bought the Tesk King today. I'm surprised the answers are listed like they are. It's like they don't really know the answers and wait until people write in and correct them or something. I'm new to Tesk King so maybe they do this one all their guides.

[stvbrx]

How soon after TestKing releases a new version does prometricvue.com release their version?....or do they?

I want to get the latest, but would like to get the discount through the prometricvue.com site.

[ma77smith]

Quote:

Originally Posted by stvbrx

How soon after TestKing releases a new version does prometricvue.com release their version?....or do they?

I want to get the latest, but would like to get the discount through the prometricvue.com site.

latest tk is v13, prometric are still on v9 I believe

Def worth spending the extra money

Matt