【单选题】
Which command do you enter to enable authentication for OSPF on an interface?___
A. router(config-if)#ip ospf message-digest-key 1 md5 CIS COPASS
B. router(config-if)#ip ospf authentication message-digest
C. router(config-if)#ip ospf authentication-key CISCOPASS
D. router(config-if)#area 0 authentication message-digest
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
What feature defines a campus area network?___
A. It has a single geographic location
B. It lacks external connectivity.
C. It has a limited number of segments.
D. It has limited or restricted Internet access
【单选题】
Which type of attack most commonly involves a direct attack on a network?___
A. :phishing
B. Trojan horse
C. denial of service
D. social engineering
【单选题】
What information does the key length provide in an encryption algorithm?___
A. the cipher block size
B. the hash bloc k size
C. the number of permutations
D. the packet size
【单选题】
How do you verify TaCACS+ connectivity to a device?___
A. You successfully log in to the device by using the local credentials
B. You connect via console port and receive the login prompt.
C. You connect to the device using SSH and receive the login prompt.
D. You successfully log in to the device by using ACS credentials
【单选题】
Which term best describes the concept of preventing the modification of data in transit and in storage?___
A. availability
B. confidentially
C. fidelity
D. integrity
【单选题】
Which loS command is used to define the authentication key for ntp?___
A. switch(config )#ntp authentication-key 1 mds Clcs
B. switch(config )#ntp authenticate
C. switch(config)#ntp trusted-key 1
D. switch(config)#ntp source 192.168.0.1
【单选题】
What is true about the cisco lOS Resilient Configuration feature ?___
A. The feature can be disabled through a remote session
B. There is additional space required to secure the primary cisco lOS image file.
C. The feature automatically detects image or configuration version mismatch.
D. Remote storage is used for securing files
【单选题】
When is the default deny all policy an exception in zone-based firewalls?___
A. when traffic terminates on the router via the self zone
B. when traffic traverses two interfaces in different zones
C. when traffic traverses two interfaces in the same zone
D. when traffic sources from the router via the self zone
【单选题】
.If an access port is assigned as an isolated port in a PVLAN, which network ports can it communicate with?___
A. promiscuous ports in the same PLVAN
B. isolated ports in the same PVLAN
C. all ports in the same PAVLAN at ILAR
D. all ports in the adjacent PVLAN
【单选题】
Which IPSEC mode is used to encypt traffic directly between a client and a server VPN endpoint?___
A. quick mode
B. transport mode
C. aggressive mode
D. tunnel mode
【单选题】
Which command do you enter to verify that a vpn connection is established between two endpoints and that the connection is passing traffic? ___
A. Firewall#sh crypto session
B. Firewall#debug crypto isakmp
C. Firewall#tsh crypto ipsec sa
D. Firewall#sh crypto isakmp sa
【单选题】
which type of Pvlan port allows communication from all port types?___
A. isolated
B. in -line
C. community
D. promiscuous
【单选题】
Which command do you enter to configure your firewall to conceal internal addresses?___
A. no ip directed-broadcast
B. no ip logging facility
C. no proxy-arp
D. no ip inspect audit-trial
E. no ip inspect
F. route
【单选题】
Which feature defines a campus area network? ___
A. It has a limited number of segments.
B. It has limited or restricted Internet access
C. It lacks ex1ternal connectivity.
D. It has a single geographic location
【单选题】
What technology can you use to provide data confidentiality data integrity and data origin authentication on your network?___
A. IPSec
B. Certificate Authority
C. IKE
D. Data
E. ncryption Standards
【单选题】
which standard is a hybrid protocol that uses oakley and skerne ke y exchanges is an ISAKMP framework?___
【单选题】
What is the actual los privilege level of User Exec mode?___
【单选题】
What is the effect of the asa command crypto isakmp nat-traversal?___
A. It opens port 500 only on the out side interface
B. It opens port 500 only on the inside interface
C. It opens port 4500 on all interfaces that are IPSec enabled
D. It opens port 4500 only on the out side interfac
【单选题】
Which Fire POWER preproce ssor engine is used to prevent SYN attacks?___
A. Inline normalization
B. IP Defragmentation
C. Ports can
D. etection
【单选题】
Which NAT type allows objects or groups to reference an IP address ?___
A. identity NAt
B. static NAT
C. dynamic
D. dynamic NAT
【单选题】
Which Auto NAT policies are processed first?___
A. Dynamic NAT with longest prefix
B. Dynamic NAT with shortest prefix
C. static NAT with longest prefix
D. static NAT with shortest prefix
【单选题】
Which feature allows a dynamic Pat pool to se lect the next address in the pat pool instead of the next port of an existing address?___
A. next IP
B. round robin
C. dynamic rotation
D. NAT address rotation
【单选题】
Which IPS detection method can you use to detect attacks that are based on the attackers IP address?___
A. anomally-based
B. policy-based
C. signature-based
D. reputation-based
【单选题】
Which type of encryption technology has the broadest platform support?___
A. software
B. middleware
C. file-level
D. hardware
【单选题】
Which type of address translation supports the initiation of comm unications bidirectionally ?___
A. multi-session PAT
B. dynamic NAT
C. dynamic PAT
D. static NAT
【单选题】
Which label is given to a person who uses existing computer scripts to hack into computers while lacking the expertise to write the own?___
A. script kiddy
B. white hat hacker
C. hacktivist
D. phreaker
【单选题】
What is the primary purpose of a defined rule in an IPS?___
A. to configure an event action that takes place when a signature is triggered
B. to define a set of actions that occur when a specific user logs in to the system
C. to configure an event action that is pre-defined by the system administrator
D. to detect internal attacks
【单选题】
Which option is the default valuce for the Diffie- Hell man group when configuring a site-to-site VPn on an asa device ?___
A. Group 1
B. Group 2
C. Group 5
D. Group 7
【单选题】
Which feature filters CoPP packets?___
A. access control lists
B. class maps
C. policy maps
D. route maps
【单选题】
Which command is used in global configuration mode to enable AAA?___
A. configure-model aaa
B. configure aaa-modelA
C. aaa new-model
D. aaa
E. XEC
【单选题】
Which statement about the given configuration is true?___
A. The single-connection command causes the device to establish one connection for all TACACS
B. The single-connection command causes the device to process one TacAcs request and then move to the next server
C. The timeout com mand causes the device to move to the next server after 20 seconds of TACACS inactive
【多选题】
What are two well-known security terms?___
A. phishing//网络钓鱼
B. ransomware //勒索软件
C. BPDU guard
D. LACP
E. hair-pinning
【多选题】
Which two commands must you enter to securely archive the primary bootset of a device___
A. router(config )#secure boot-config
B. router(config)#auto secure
C. router(config)#secure boot-image
D. router(config)#service passw ord-encryption
【多选题】
Which two functions can SIEM provide ?___
A. correlation between logs and events from multiple systems
B. event aggregation that allows for reduced log storage requirements
C. proactive malware analysis to block malicious traffic
D. dual-factor authentication
E. centralized firewall management
【多选题】
Which two features of Cisco Web Reputation tracking can mitigate web-based threats?___
A. buffer overflow filterin dhsuowip
B. Bayesian filters
C. web reputation filters
D. outbreak filtering
E. exploit filtering
【多选题】
What are two challenges when deploying host- level IPS? ___
A. The deployment must support multiple operating systems.
B. It is unable to provide a complete networ k picture of an attack.
C. It is unable to determine the outcome of e very attack that it detects
D. It does not provide protection for offsite computers
E. It is unable to detect fragmentation attacks
【多选题】
Which technology can be used to rate data fidelity and to provide an authenticated hash for data?___
A. file reputation
B. file analysis
C. signature updates
D. network blocking
【多选题】
Which two statements about host-based iPS solutions are true?___
A. It uses only signature-based polices
B. It can be deployed at the perimeter.
C. It can be have more restrictive policies than network-based IPS
D. it works with deployed firewall
E. It can generate alerts based on be havior at the de sto
【多选题】
When two events would cause the state table of a stateful firewall to be updated? ___
A. when a packet is evaluated against the outbound access list and is denied
B. when a con nection is created
C. when rate-limiting is applied
D. when a connection s timer has expired within the state table.
E. when an outbound packet is forwarded to the outbound interface
【多选题】
Which two characteristics apply to an intrusion Prevention System(IPS)?___
A. Cannot drop the packet on its own
B. Cabled directly inline with the flow of the network traffic
C. Runs in promiscuous mode wat
D. Does not add delay to the original traffic
E. Can drop traffic based on a set of rules
推荐试题
【单选题】
《塔里木油田钻井井控实施细则》规定:含H2S地区井的营房摆放应距井口___m以远,避开低洼处,并处于季节风的上风或侧风方向。
A. 200
B. 300
C. 500
D. 600
【单选题】
《塔里木油田钻井井控实施细则》规定:探井和含H2S地区井,钻井队配备不少于___套正压式呼吸器。
【单选题】
《塔里木油田钻井井控实施细则》规定:探井和含H2S地区井,钻井队配备___台及以上的便携式H2S监测仪(其中至少有一台量程达到1500mg/m3(1000ppm)。
【单选题】
《塔里木油田钻井井控实施细则》规定:不含H2S的井,井队生活营房距离井口的距离应大于___m。
【单选题】
《塔里木油田钻井井控实施细则》规定:测井时发生溢流,日费井由钻井监督、总包井由___根据溢流性质、大小决定何时剪断电缆、抢下钻具深度和何时关井,钻井队和测井队应全力配合。
A. 测井队长
B. 录井队长
C. 钻井队平台经理
D. 司钻
【单选题】
《塔里木油田钻井井控实施细则》规定:钻杆传输测井发生溢流,应立即停止测井,条件允许的可尽快起出井内电缆;条件不允许的,立即将电缆卡在钻杆上,在卡点以上___cm左右剪断电缆,下放钻具实施关井。
【单选题】
《塔里木油田钻井井控实施细则》规定:钻头在油气层中和油气层顶部以上300m井段内起钻速度不得超过___m/s。
A. 0.20
B. 0.30
C. 0.50
D. 0.70
【单选题】
《塔里木油田钻井井控实施细则》规定:短程起下钻要求,起到安全井段,直井至少起___柱,水平井(大斜度井)起到直井段,然后停泵,静止观察。
A. 5~10
B. 10~12
C. 10~15
D. 10~20
【单选题】
《塔里木油田钻井井控实施细则》规定:套管柱试压要求,直径大于Φ244.5mm (9 5/8″)的套管柱试压值为___MPa,稳压30min,压降小于或等于0.5MPa为合格。
【单选题】
《塔里木油田钻井井控实施细则》规定:生产井放喷管线接出井口___m以远。
【单选题】
《塔里木油田钻井井控实施细则》规定:固井设计中,技术套管水泥一般应返至上一级套管鞋或套管中和点以上不少于___,“三高”油气井应返至地面。
A. 100 m
B. 300 m
C. 400 m
D. 500 m
【单选题】
《塔里木油田钻井井控实施细则》规定:井控装备现场试压值,环形防喷器封管柱(需入井的最小钻具)试压至___。
A. 额定工作压力
B. 额定工作压力的55%
C. 额定工作压力的70%
D. 额定工作压力的80%
【单选题】
《塔里木油田钻井井控实施细则》规定:地破压力试验最高压力不得大于井口设备的额定工作压力和套管抗内压强度的___两者之较小值。
A. 50%
B. 70%
C. 80%
D. 100%
【单选题】
《塔里木油田钻井井控实施细则》规定:固井设计中,油层套管水泥一般应返至技术套管鞋或油、气、水层以上___。“三高”油气井应返到地面,且其形成的水泥环顶面应高出被技术套管已经封固的喷、漏、塌、卡、碎地层以及全角变化率超出设计要求的井段以上不少于()。
A. 100 m、100 m
B. 300 m 、300 m
C. 400 m、400 m
D. 500 m、500 m
【单选题】
《塔里木油田钻井井控实施细则》规定:使用手动锁紧装置的闸板防喷器,应装齐手动锁紧操作杆,操作杆的中心线与对应锁紧轴中心线之间的夹角___。
A. <30°
B. ≤30°
C. >30°
D. ≥30°
E. <45°
【单选题】
《塔里木油田钻井井控实施细则》规定:预探井和评价井,距离泥浆站常规路大于___km(或沙漠路大于40km)的井,要储备重泥浆( )m3以上。
A. 160、120
B. 170、130
C. 180、140
D. 200、160
【单选题】
《塔里木油田钻井井控实施细则》规定:开发井,超出距泥浆站常规路200km(或沙漠路40km)范围内的井要储备比井浆密度高___g/cm3的重泥浆80m3以上,加重材料( )吨以上,并在钻井工程设计中明确。
A. 0.1、100
B. 0.3、130
C. 0.4、140
D. 0.5、150
【单选题】
《塔里木油田钻井井控实施细则》规定:含硫化氢井,测试队(地面计量)配备___台便携式H2S监测仪、()套正压式呼吸器、2台固定式H2S监测仪、2台防爆轴流风机。
A. 1、2
B. 3、2
C. 2、3
D. 4、4
【单选题】
《塔里木油田钻井井控实施细则》规定:含硫化氢井,生活营房至少配备便携式H2S监测仪___台,正压式呼吸器( )套,一台手摇式报警仪,并设置营房人员都清楚的紧急集合点。
A. 1、1
B. 2、2
C. 3、3
D. 5、5
【单选题】
《塔里木油田钻井井控实施细则》规定:戴正压式呼吸器的防喷演习,时间均延长___分钟。
【单选题】
《塔里木油田钻井井控实施细则》规定:发电房和储油罐距井口___m以远。
【单选题】
《塔里木油田钻井井控实施细则》规定:含硫化氢井,配备不少于___套正压式空气呼吸器,有效供气时间应大于( )min。
A. 6、30
B. 6、40.8
C. 12、30
D. 12、40.8
【单选题】
《塔里木油田钻井井控实施细则》规定:关井信号为___。
A. 一声长鸣笛
B. 两声短鸣笛
C. 三声短鸣笛
D. 一声长鸣笛、一声短鸣笛
【单选题】
《塔里木油田钻井井控实施细则》规定:溢流报警信号为___。
A. 一声长鸣笛
B. 两声短鸣笛
C. 三声短鸣笛
D. 一声长鸣笛、一声短鸣笛
【单选题】
《塔里木油田钻井井控实施细则》规定:钻井队从___起开始防喷演习。
A. 井控装备安装就绪之日
B. 钻开油气层之日
C. 开始录井之日
D. 开钻之日
【单选题】
《塔里木油田钻井井控实施细则》规定:___是钻开油气层第一申报人。
A. 钻井队工程师
B. 当班司钻
C. 录井队工程师
D. 钻井监督
【单选题】
《塔里木油田钻井井控实施细则》规定: 油田井控业务管理部门每___至少组织一次油田公司井控安全检查。
【单选题】
《塔里木油田钻井井控实施细则》井控培训合格证有效期为___年,到期应重新培训,考核合格后,持证上岗。
【单选题】
《塔里木油田钻井井控实施细则》规定:其余井,钻井队应有___台以上的便携式H2S监测仪,配备不少于( )套正压式呼吸器。
A. 2、6
B. 3、12
C. 5、12
D. 7、6
【单选题】
《塔里木油田钻井井控实施细则》规定:含硫化氢井,其他辅助作业队伍配备___台便携式H2S监测仪、()套正压式呼吸器。
A. 2、2
B. 3、3
C. 5、5
D. 7、7
【单选题】
《塔里木油田钻井井控实施细则》规定:锅炉房距井口___m远。
【单选题】
《塔里木油田钻井井控实施细则》规定:一旦井喷失控,应立即迅速做好___工作。
A. 储油、供油
B. 储气、供气
C. 储电、供电
D. 储水、供水
【单选题】
《塔里木油田钻井井控实施细则》规定:电测前,钻井队准备___。
A. 防喷单根或防喷立柱、制定测井期间的井控应急预案
B. 剪切电缆工具
C. 电缆卡子
D. 制定测井期间的测井技术问题
【单选题】
《塔里木油田钻井井控实施细则》规定:正压式呼吸器应至少___检查一次,确保处于完好待命状态,并做好相应的检查记录。
【单选题】
《塔里木油田钻井井控实施细则》规定:含硫化氢井,泥浆服务公司配备___台便携式H2S监测仪、()套正压式呼吸器、5(固定探头)固定式H2S监测仪。
A. 1、1
B. 2、2
C. 4、4
D. 6、6
【单选题】
《塔里木油田钻井井控实施细则》规定:在含H2S地区钻井,除硫剂应作为常规储备料,在含H2S气体的井段钻进,保证泥浆___,泥浆中应提前加入除硫剂,并制定防H2S的应急救援预案。
A. pH≥6
B. pH≥8
C. pH≥10
D. pH≥11
【单选题】
《塔里木油田钻井井控实施细则》规定:井口组合的设计,一般应遵循高含H2S区域的井、___、高压气井的钻井作业中,从固技术套管后直至完井全过程应配套使用剪切全封一体式闸板总成和相应的钻具死卡。
A. 新区第一口预探井
B. 预探井
C. 评价井
D. 生产井
【单选题】
《塔里木油田钻井井控实施细则》规定:下完表层套管,保持井口段套管处于拉伸状态,调整并保持套管与___同轴再进行固井施工。
A. 转盘中心线
B. 天车
C. 井口
D. 天车中心线
【单选题】
《塔里木油田钻井井控实施细则》规定:起钻前应进行充分循环,循环时间不少于一个循环周,进出口泥浆密度差___g/cm3。
A. 0.02
B. 0.03
C. 0.05
D. 0.07
【单选题】
《塔里木油田钻井井控实施细则》规定:防喷演习的时间要求(从发出溢流报警信号,到关闭液动节流阀前的节2a平板阀的时间):起下钻铤___分钟。
