【单选题】
In which configuration do you configure the ip ospf authentication key 1 command?___
A. routing process
B. interface
C. privileged
D. global
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which statement about command authorization and security contexts is true?___
A. If command authorization is configured, it must be enabled on all contexts.
B. The change to command invokes a new context session with the credentials of the currently
C. AAA settings are applied on a per-context basis
D. The enable. 15 user ang admins with chang to permission ha e dfferent command authorization levels pertontext
【单选题】
Which command do you enter to enable authentication for OSPF on an interface?___
A. router(config-if)#ip ospf message-digest-key 1 md5 CIS COPASS
B. router(config-if)#ip ospf authentication message-digest
C. router(config-if)#ip ospf authentication-key CISCOPASS
D. router(config-if)#area 0 authentication message-digest
【单选题】
What feature defines a campus area network?___
A. It has a single geographic location
B. It lacks external connectivity.
C. It has a limited number of segments.
D. It has limited or restricted Internet access
【单选题】
Which type of attack most commonly involves a direct attack on a network?___
A. :phishing
B. Trojan horse
C. denial of service
D. social engineering
【单选题】
What information does the key length provide in an encryption algorithm?___
A. the cipher block size
B. the hash bloc k size
C. the number of permutations
D. the packet size
【单选题】
How do you verify TaCACS+ connectivity to a device?___
A. You successfully log in to the device by using the local credentials
B. You connect via console port and receive the login prompt.
C. You connect to the device using SSH and receive the login prompt.
D. You successfully log in to the device by using ACS credentials
【单选题】
Which term best describes the concept of preventing the modification of data in transit and in storage?___
A. availability
B. confidentially
C. fidelity
D. integrity
【单选题】
Which loS command is used to define the authentication key for ntp?___
A. switch(config )#ntp authentication-key 1 mds Clcs
B. switch(config )#ntp authenticate
C. switch(config)#ntp trusted-key 1
D. switch(config)#ntp source 192.168.0.1
【单选题】
What is true about the cisco lOS Resilient Configuration feature ?___
A. The feature can be disabled through a remote session
B. There is additional space required to secure the primary cisco lOS image file.
C. The feature automatically detects image or configuration version mismatch.
D. Remote storage is used for securing files
【单选题】
When is the default deny all policy an exception in zone-based firewalls?___
A. when traffic terminates on the router via the self zone
B. when traffic traverses two interfaces in different zones
C. when traffic traverses two interfaces in the same zone
D. when traffic sources from the router via the self zone
【单选题】
.If an access port is assigned as an isolated port in a PVLAN, which network ports can it communicate with?___
A. promiscuous ports in the same PLVAN
B. isolated ports in the same PVLAN
C. all ports in the same PAVLAN at ILAR
D. all ports in the adjacent PVLAN
【单选题】
Which IPSEC mode is used to encypt traffic directly between a client and a server VPN endpoint?___
A. quick mode
B. transport mode
C. aggressive mode
D. tunnel mode
【单选题】
Which command do you enter to verify that a vpn connection is established between two endpoints and that the connection is passing traffic? ___
A. Firewall#sh crypto session
B. Firewall#debug crypto isakmp
C. Firewall#tsh crypto ipsec sa
D. Firewall#sh crypto isakmp sa
【单选题】
which type of Pvlan port allows communication from all port types?___
A. isolated
B. in -line
C. community
D. promiscuous
【单选题】
Which command do you enter to configure your firewall to conceal internal addresses?___
A. no ip directed-broadcast
B. no ip logging facility
C. no proxy-arp
D. no ip inspect audit-trial
E. no ip inspect
F. route
【单选题】
Which feature defines a campus area network? ___
A. It has a limited number of segments.
B. It has limited or restricted Internet access
C. It lacks ex1ternal connectivity.
D. It has a single geographic location
【单选题】
What technology can you use to provide data confidentiality data integrity and data origin authentication on your network?___
A. IPSec
B. Certificate Authority
C. IKE
D. Data
E. ncryption Standards
【单选题】
which standard is a hybrid protocol that uses oakley and skerne ke y exchanges is an ISAKMP framework?___
【单选题】
What is the actual los privilege level of User Exec mode?___
【单选题】
What is the effect of the asa command crypto isakmp nat-traversal?___
A. It opens port 500 only on the out side interface
B. It opens port 500 only on the inside interface
C. It opens port 4500 on all interfaces that are IPSec enabled
D. It opens port 4500 only on the out side interfac
【单选题】
Which Fire POWER preproce ssor engine is used to prevent SYN attacks?___
A. Inline normalization
B. IP Defragmentation
C. Ports can
D. etection
【单选题】
Which NAT type allows objects or groups to reference an IP address ?___
A. identity NAt
B. static NAT
C. dynamic
D. dynamic NAT
【单选题】
Which Auto NAT policies are processed first?___
A. Dynamic NAT with longest prefix
B. Dynamic NAT with shortest prefix
C. static NAT with longest prefix
D. static NAT with shortest prefix
【单选题】
Which feature allows a dynamic Pat pool to se lect the next address in the pat pool instead of the next port of an existing address?___
A. next IP
B. round robin
C. dynamic rotation
D. NAT address rotation
【单选题】
Which IPS detection method can you use to detect attacks that are based on the attackers IP address?___
A. anomally-based
B. policy-based
C. signature-based
D. reputation-based
【单选题】
Which type of encryption technology has the broadest platform support?___
A. software
B. middleware
C. file-level
D. hardware
【单选题】
Which type of address translation supports the initiation of comm unications bidirectionally ?___
A. multi-session PAT
B. dynamic NAT
C. dynamic PAT
D. static NAT
【单选题】
Which label is given to a person who uses existing computer scripts to hack into computers while lacking the expertise to write the own?___
A. script kiddy
B. white hat hacker
C. hacktivist
D. phreaker
【单选题】
What is the primary purpose of a defined rule in an IPS?___
A. to configure an event action that takes place when a signature is triggered
B. to define a set of actions that occur when a specific user logs in to the system
C. to configure an event action that is pre-defined by the system administrator
D. to detect internal attacks
【单选题】
Which option is the default valuce for the Diffie- Hell man group when configuring a site-to-site VPn on an asa device ?___
A. Group 1
B. Group 2
C. Group 5
D. Group 7
【单选题】
Which feature filters CoPP packets?___
A. access control lists
B. class maps
C. policy maps
D. route maps
【单选题】
Which command is used in global configuration mode to enable AAA?___
A. configure-model aaa
B. configure aaa-modelA
C. aaa new-model
D. aaa
E. XEC
【单选题】
Which statement about the given configuration is true?___
A. The single-connection command causes the device to establish one connection for all TACACS
B. The single-connection command causes the device to process one TacAcs request and then move to the next server
C. The timeout com mand causes the device to move to the next server after 20 seconds of TACACS inactive
【多选题】
What are two well-known security terms?___
A. phishing//网络钓鱼
B. ransomware //勒索软件
C. BPDU guard
D. LACP
E. hair-pinning
【多选题】
Which two commands must you enter to securely archive the primary bootset of a device___
A. router(config )#secure boot-config
B. router(config)#auto secure
C. router(config)#secure boot-image
D. router(config)#service passw ord-encryption
【多选题】
Which two functions can SIEM provide ?___
A. correlation between logs and events from multiple systems
B. event aggregation that allows for reduced log storage requirements
C. proactive malware analysis to block malicious traffic
D. dual-factor authentication
E. centralized firewall management
【多选题】
Which two features of Cisco Web Reputation tracking can mitigate web-based threats?___
A. buffer overflow filterin dhsuowip
B. Bayesian filters
C. web reputation filters
D. outbreak filtering
E. exploit filtering
【多选题】
What are two challenges when deploying host- level IPS? ___
A. The deployment must support multiple operating systems.
B. It is unable to provide a complete networ k picture of an attack.
C. It is unable to determine the outcome of e very attack that it detects
D. It does not provide protection for offsite computers
E. It is unable to detect fragmentation attacks
【多选题】
Which technology can be used to rate data fidelity and to provide an authenticated hash for data?___
A. file reputation
B. file analysis
C. signature updates
D. network blocking
【多选题】
Which two statements about host-based iPS solutions are true?___
A. It uses only signature-based polices
B. It can be deployed at the perimeter.
C. It can be have more restrictive policies than network-based IPS
D. it works with deployed firewall
E. It can generate alerts based on be havior at the de sto
推荐试题
【判断题】
协调控制方式运行时,主控系统中的功率指令处理回路不接受任何指令信号
【判断题】
在机组启动过程中发生油膜振荡时,可以像通过临界转速那样以提高转速冲过去的办法来消除
【判断题】
评定汽轮发电机组的振动以轴承垂直、水平、轴向三个方向振动中最大者为依据,而振动类型是按照振动频谱来划分的
【判断题】
汽轮机采用节流调节时,每个喷嘴组由一个调速汽门控制,根据负荷的大小依次开启一个或几个调速汽门
【判断题】
为保证凝结水泵在高度真空下工作,需用生水密封盘根
【判断题】
汽轮机冷态启动时,为了避免金属产生过大的温差,一般不应采用低压微过热蒸汽冲动汽轮机转子的方法
【判断题】
超高压汽轮机的高、中压缸采用双层缸结构,在夹层中通入蒸汽,以减小每层汽缸的压差和温差
【判断题】
汽轮发电机启动过程中在通过临界转速时,机组的振动会急剧增加,所以提升转速的速率越快越好
【判断题】
对于大型机组而言,自冷态启动进行超速试验,应按制造厂规定进行,一般在带负荷到25%~30%额定负荷、连续运行1~2h后进行
【判断题】
油管道应尽量减少用法兰盘连接,在热体附近的法兰盘必须装金属罩壳,大容量机组的油管道多采用套装式
【判断题】
当转子在第一临界转速以下发生动静摩擦时,机组的振动会急剧增加,所以提升转速的速率越快越好
【判断题】
常用的寿命评估方法为常规肉眼检查、无损探伤和破坏性检验三级管理法
【判断题】
低负荷运行时,定压运行的单元机组仍比变压运行的经济性好
【判断题】
单机容量为200MW及以上的新机组的试生产阶段为3个月
【判断题】
对汽轮机来说,滑参数启动的特点是安全性好
【判断题】
主蒸汽压力、温度随负荷变化而变化的运行方式称滑压运行
【判断题】
汽轮机快速冷却是将压缩空气经空气电加热器加热到所需温度再送入汽轮机各个冷却部位进行冷却的过程
【判断题】
协调控制方式既能保证有良好的负荷跟踪性能,又能保证汽轮机运行的稳定性
【判断题】
汽轮机总体试运行的目的,是检查、考核调速系统的动态特性及稳定性,检查危急保安器动作的可靠性及本体部分的运转情况
【判断题】
调速系统的稳定性、过渡过程的品质、系统动作的迅速性和过程的振荡性是衡量调节系统动态特性的四个指标
【判断题】
高压大容量汽轮机热态启动参数的选择原则:根据高压缸调节级汽室温度和中压缸进汽室温度,选择与之相匹配的主蒸汽和再热蒸汽温度
【判断题】
超速保安器装置手打试验的目的是检查危急保安器动作是否灵活可靠
【判断题】
当阀壳上无流向标志时,对于止回阀,介质应由阀瓣上方向下流动
【判断题】
运行分析的方法通常采用对比分析法、动态分析法及多元分析法
【判断题】
汽轮机低压缸一般都是支撑在基础台板上,而高、中压缸一般是通过猫爪支撑在轴承座上
【判断题】
运行分析的内容只有岗位分析、定期分析和专题分析三种
【判断题】
冷油器的检修质量标准是:油、水侧清洁无垢,铜管无脱锌、机械损伤,水压0.5MPa、5min无泄漏,筒体组装时可用面黏净,会同化学验收合格
【单选题】
在三相交流电路中所谓三相负载对称是指___。
A. 各相阻抗值相等;
B. 各相阻抗值不等;
C. 电阻相等、电抗相等、电抗性质相同;
D. 阻抗角相等。
【单选题】
在交流电流i通过某电阻,在一定时间内产生的热量,与某直流电流I在相同时间内通过该电阻所产生的热量相等,那么就把此直流I定作为交流电流i的___。
A. 有效值;
B. 最大量;
C. 最小值;
D. 瞬时值。
【单选题】
导体的电阻与导体的长度关系为___。
A. 正比;
B. 反比;
C. 随之增加;
D. 无关。
【单选题】
导体的电阻与导体的截面积关系为___。
A. 正比;
B. 反比;
C. 随之减少;
D. 无关。
【单选题】
蓄电池是一种储能设备,他能把电能转变为___能。
A. 热;
B. 化学;
C. 机械;
D. 光。
【单选题】
在计算复杂电路的各种方法中,最基本的方法是___法。
A. 支路电流;
B. 回路电流;
C. 叠加原理;
D. 戴维南原理。
【单选题】
在电阻、电感、电容组成的电路中,不消耗电能的元件是___。
A. 电感、电容;
B. 电阻与电感;
C. 电容与电阻;
D. 电阻。
【单选题】
在电阻、电感、电容和电抗组成的电路中,消耗电能的元件是___。
A. 电阻;
B. 电感;
C. 电抗;
D. 电容。
【单选题】
在电阻串联电路中,每个电阻上的电压大小___。
A. 与电阻大小成正比;
B. 相同;
C. 与电阻大小成反比;
D. 无法确定。