【单选题】
What is true about the cisco lOS Resilient Configuration feature ?___
A. The feature can be disabled through a remote session
B. There is additional space required to secure the primary cisco lOS image file.
C. The feature automatically detects image or configuration version mismatch.
D. Remote storage is used for securing files
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
When is the default deny all policy an exception in zone-based firewalls?___
A. when traffic terminates on the router via the self zone
B. when traffic traverses two interfaces in different zones
C. when traffic traverses two interfaces in the same zone
D. when traffic sources from the router via the self zone
【单选题】
.If an access port is assigned as an isolated port in a PVLAN, which network ports can it communicate with?___
A. promiscuous ports in the same PLVAN
B. isolated ports in the same PVLAN
C. all ports in the same PAVLAN at ILAR
D. all ports in the adjacent PVLAN
【单选题】
Which IPSEC mode is used to encypt traffic directly between a client and a server VPN endpoint?___
A. quick mode
B. transport mode
C. aggressive mode
D. tunnel mode
【单选题】
Which command do you enter to verify that a vpn connection is established between two endpoints and that the connection is passing traffic? ___
A. Firewall#sh crypto session
B. Firewall#debug crypto isakmp
C. Firewall#tsh crypto ipsec sa
D. Firewall#sh crypto isakmp sa
【单选题】
which type of Pvlan port allows communication from all port types?___
A. isolated
B. in -line
C. community
D. promiscuous
【单选题】
Which command do you enter to configure your firewall to conceal internal addresses?___
A. no ip directed-broadcast
B. no ip logging facility
C. no proxy-arp
D. no ip inspect audit-trial
E. no ip inspect
F. route
【单选题】
Which feature defines a campus area network? ___
A. It has a limited number of segments.
B. It has limited or restricted Internet access
C. It lacks ex1ternal connectivity.
D. It has a single geographic location
【单选题】
What technology can you use to provide data confidentiality data integrity and data origin authentication on your network?___
A. IPSec
B. Certificate Authority
C. IKE
D. Data
E. ncryption Standards
【单选题】
which standard is a hybrid protocol that uses oakley and skerne ke y exchanges is an ISAKMP framework?___
【单选题】
What is the actual los privilege level of User Exec mode?___
【单选题】
What is the effect of the asa command crypto isakmp nat-traversal?___
A. It opens port 500 only on the out side interface
B. It opens port 500 only on the inside interface
C. It opens port 4500 on all interfaces that are IPSec enabled
D. It opens port 4500 only on the out side interfac
【单选题】
Which Fire POWER preproce ssor engine is used to prevent SYN attacks?___
A. Inline normalization
B. IP Defragmentation
C. Ports can
D. etection
【单选题】
Which NAT type allows objects or groups to reference an IP address ?___
A. identity NAt
B. static NAT
C. dynamic
D. dynamic NAT
【单选题】
Which Auto NAT policies are processed first?___
A. Dynamic NAT with longest prefix
B. Dynamic NAT with shortest prefix
C. static NAT with longest prefix
D. static NAT with shortest prefix
【单选题】
Which feature allows a dynamic Pat pool to se lect the next address in the pat pool instead of the next port of an existing address?___
A. next IP
B. round robin
C. dynamic rotation
D. NAT address rotation
【单选题】
Which IPS detection method can you use to detect attacks that are based on the attackers IP address?___
A. anomally-based
B. policy-based
C. signature-based
D. reputation-based
【单选题】
Which type of encryption technology has the broadest platform support?___
A. software
B. middleware
C. file-level
D. hardware
【单选题】
Which type of address translation supports the initiation of comm unications bidirectionally ?___
A. multi-session PAT
B. dynamic NAT
C. dynamic PAT
D. static NAT
【单选题】
Which label is given to a person who uses existing computer scripts to hack into computers while lacking the expertise to write the own?___
A. script kiddy
B. white hat hacker
C. hacktivist
D. phreaker
【单选题】
What is the primary purpose of a defined rule in an IPS?___
A. to configure an event action that takes place when a signature is triggered
B. to define a set of actions that occur when a specific user logs in to the system
C. to configure an event action that is pre-defined by the system administrator
D. to detect internal attacks
【单选题】
Which option is the default valuce for the Diffie- Hell man group when configuring a site-to-site VPn on an asa device ?___
A. Group 1
B. Group 2
C. Group 5
D. Group 7
【单选题】
Which feature filters CoPP packets?___
A. access control lists
B. class maps
C. policy maps
D. route maps
【单选题】
Which command is used in global configuration mode to enable AAA?___
A. configure-model aaa
B. configure aaa-modelA
C. aaa new-model
D. aaa
E. XEC
【单选题】
Which statement about the given configuration is true?___
A. The single-connection command causes the device to establish one connection for all TACACS
B. The single-connection command causes the device to process one TacAcs request and then move to the next server
C. The timeout com mand causes the device to move to the next server after 20 seconds of TACACS inactive
【多选题】
What are two well-known security terms?___
A. phishing//网络钓鱼
B. ransomware //勒索软件
C. BPDU guard
D. LACP
E. hair-pinning
【多选题】
Which two commands must you enter to securely archive the primary bootset of a device___
A. router(config )#secure boot-config
B. router(config)#auto secure
C. router(config)#secure boot-image
D. router(config)#service passw ord-encryption
【多选题】
Which two functions can SIEM provide ?___
A. correlation between logs and events from multiple systems
B. event aggregation that allows for reduced log storage requirements
C. proactive malware analysis to block malicious traffic
D. dual-factor authentication
E. centralized firewall management
【多选题】
Which two features of Cisco Web Reputation tracking can mitigate web-based threats?___
A. buffer overflow filterin dhsuowip
B. Bayesian filters
C. web reputation filters
D. outbreak filtering
E. exploit filtering
【多选题】
What are two challenges when deploying host- level IPS? ___
A. The deployment must support multiple operating systems.
B. It is unable to provide a complete networ k picture of an attack.
C. It is unable to determine the outcome of e very attack that it detects
D. It does not provide protection for offsite computers
E. It is unable to detect fragmentation attacks
【多选题】
Which technology can be used to rate data fidelity and to provide an authenticated hash for data?___
A. file reputation
B. file analysis
C. signature updates
D. network blocking
【多选题】
Which two statements about host-based iPS solutions are true?___
A. It uses only signature-based polices
B. It can be deployed at the perimeter.
C. It can be have more restrictive policies than network-based IPS
D. it works with deployed firewall
E. It can generate alerts based on be havior at the de sto
【多选题】
When two events would cause the state table of a stateful firewall to be updated? ___
A. when a packet is evaluated against the outbound access list and is denied
B. when a con nection is created
C. when rate-limiting is applied
D. when a connection s timer has expired within the state table.
E. when an outbound packet is forwarded to the outbound interface
【多选题】
Which two characteristics apply to an intrusion Prevention System(IPS)?___
A. Cannot drop the packet on its own
B. Cabled directly inline with the flow of the network traffic
C. Runs in promiscuous mode wat
D. Does not add delay to the original traffic
E. Can drop traffic based on a set of rules
【多选题】
crypto ipsec trans form-set myset esp-md5-hmac esp-aes-256,What are two effects of the given command?___
A. It configures authentication use AES 256.
B. It configures authentication to use MD5 HMAC
C. It configures authentication use AES 256.
D. It configures encryption to ase MD5 HMAC.
E. It configures encryption to use AES 256
【多选题】
your security team has discovered a malicious program that has been harvesting the CEos email messages and the com pany 's user database for the last 6 months. What are two possible types of attacks your team discovered?___
A. social activism
B. EPolymorphic Virus
C. advanced persistent threat
D. drive-by spyware
E. targeted malware
【单选题】
以下关于数据处理的叙述中,不正确的足___。
A. :数据处理不仅能预测不久的未来,自时还能影响未
B. :数据处理和数据分析可以为决策提供真知灼见
C. :数据处理的重点应从技术角度去发现和解释数据蕴涵的意义
D. :数据处理足从现实世界到数据,冉从数据到现实世界的过程
【单选题】
“互联网十制造”是实施《中国制造2025》的重要措施。以下对“互联网十制造”主要特征的叙述中,不正确的是___。
A. :数字技术得到普遍应用,设计和研发实现协同与共享
B. :通过系统集成,打通整个制造系统的数据流、信息流
C. :企业生产将从以用户为中心向以产品为中心转型
D. :企业、产品和用户通过网络平台实现联接和交互
【单选题】
信息技术对传统教育方式带来了深刻的变化。以下叙述中,不正确的是___。
A. :学习者可以克服时空障碍,实现随时、随地、随愿学习
B. :给学习者提供宽松的、内容丰富的、个性化的学习环境
C. :通过信息技术与学科教学的整合,激发学生的学习兴趣
D. :教育信息化的发展使学校各学科全部转型为电子化教育
【单选题】
厂参加技能考核的女工有___人。
A. :16
B. :18
C. :20
D. :24
【单选题】
(a+b-|a-b|)/2=___。
A. :a
B. :b
C. : min (a,b)
D. :max (a,b)
推荐试题
【判断题】
新常态不是一个筐子,不要什么都往里装。
【判断题】
社会主要矛盾发生变化后,我国最大的国情仍是处于并将长期处于社会主义初级阶段。
【判断题】
供给侧结构性改革就是从提高供给质量出发,用改革的办法推进结构性调整,矫正要素配置扭曲,扩大有效供给,提高供给结构对需求变化的适应性和灵活性,提高全要素生产率,更好满足广大人民群众的需要。其根本目的是提高生产力水平。
【判断题】
缩小收入差距,就是要增加乡村居民收入,降低城市居民收入。
【判断题】
分类扶持贫困家庭,就是要对生态特别重要和脆弱的实施扶贫搬迁。
【判断题】
我国现阶段市场体系不完善、市场机制不健全,市场主体创新能力较弱的基本国情下需要更好地发挥政府这只创新驱动“有形之手”的作用。
【判断题】
加快建设国家自主创新示范区,在创新创业方面打破禁区,在全国全面推进创新改革试验,并向全国推广。
【判断题】
人民当家作主是社会主义民主政治的本质和核心。
【判断题】
市场经济是中国特色社会主义的经济运行基础。
【判断题】
民主政治是中国特色社会主义的重要保障。
【判断题】
一个民族,一个国家都有它自己的文化。我们中华民族有优秀的文化,应当继承发扬,同时要创新先进的文化,并吸收国外优秀的文化。
【判断题】
实现共同富裕,要解决资本主义制度下生产的社会化和私人占有的矛盾。我们要实行生产社会化和劳动者共同占有生产资料相结合。
【判断题】
以人民为本位,一切权力属于人民,是中国特色社会主义的出发点和落脚点。
【判断题】
和谐社会的建设包括两个层面的内容:一是人与自然的和谐,一是人和人之间的和谐。
【判断题】
当代中国共产党人和中国人民应该而且一定能够担负起新的文化使命,在实践创造中进行文化创造,在历史进步中实现文化进步。
【判断题】
繁荣发展社会主义文艺,要发扬学术民主、艺术民主,提升文艺原创力,推动文艺创新。
【判断题】
繁荣发展社会主义文艺,加强文艺队伍建设,造就一大批德艺双馨名家大师,培育一大批高水平创作人才。
【判断题】
增进民生福祉、促进人的全面发展,朝着共同富裕方向稳步前进,是经济发展的出发点和落脚点,是发展的根本目的。
【判断题】
可持续发展、科学发展观、生态文明建设、循环经济等都与绿色发展的观念和原则相一致。
【判断题】
中国梦是和平、发展、合作、共赢的梦,与世界各国人民的美好梦想息息相通。
【判断题】
中国梦指明了全党全国各族人民共同奋斗的目标。
【判断题】
中国梦为坚持和发展中国特色社会主义注入崭新内涵。
【判断题】
中国梦最大的特点,就是把国家民族个人作为一个命运共同体。
【判断题】
实现中国梦,意味着中国将成为世界第一超级大国。
【判断题】
只有中国特色社会道路,才能发展中国、稳定中国。
【判断题】
中国越发展,对世界和平与发展就越有利。
【判断题】
实现中华民族伟大复兴的中国梦是各民族共同的梦,也是各民族自己的梦。
【判断题】
1997年党的十五大正式宣布,人民生活总体达到了小康。
【判断题】
2002年党的十六大提出了全面建设小康社会的奋斗目标。
【判断题】
党的19大报告提出,全面建设社会现代化强国的进程分三个阶段来安排。
【判断题】
从全面建成小康社会,到基本实现现代化,再到全面建成社会主义现代化强国,是新时代,中国特色社会主义发展的战略安排。
【判断题】
从2035年到本世纪中叶, 建成社会主义现代化强国时,我国的核心竞争力名列世界前茅,经济总量和市场规模超越其他国家。
【判断题】
距离实现中华民族伟大复兴的目标越来越近,我们的梦想将一夜成真。
【判断题】
实现祖国的完全统一是近代以来中华民族最伟大的梦想。
【判断题】
实现中华民族伟大复兴是海内外中华儿女的共同梦想。
【判断题】
改革开放之后,在解决人民温饱问题、人民生活总体上达到小康水平这两个目标提前实现的基础上,我们党又提出“两个一百年”奋斗目标。
【判断题】
从十九大到二十大,是“两个一百年”奋斗目标的历史交汇期。
【判断题】
中华民族伟大复兴,绝不是轻轻松松、敲锣打鼓就能实现的。
