【单选题】
Refer to the exhibit All ports on switch 1 have a primary vLan of 300 Which devices can host 1 reach?___
A. host 2
B. server
C. host 4
D. other devices within VLAN303
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which option is the cloud-based security service from Cisco the provides URL filtering, web browsing content security, and roaming user protection?___
A. Cloud Web service
B. Cloud Advanced Malware Protection
C. Cloud We b Security
D. Cloud Web Protection
【单选题】
How can you detect a false negative on an IPS?___
A. View the alert on the ips
B. Review the ips log
C. Review the is console
D. Use a third- party system to perform penetration testing.
E. Use a third- party to audit the next generation firewall rules
【单选题】
If a switch port goes directly into a blocked state only when a superior BPDU is received, what mechanism must be in use?___
A. STP BPDU guard
B. Loop guard
C. EtherChannel guard
D. STP Root guard
【单选题】
what improvement does EAP-FASTv2 provide over EAP-FAST? ___
A. It allows multiple credentials to be passed in a single EAP exchange.
B. It supports more secure encryption protocols
C. It allows faster authentication by using fewer packets.
D. It addresses security vulnerabilities found in the original protocol
【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
推荐试题
【单选题】
建设中国特色社会主义的首要的基本理论问题是()。___
A. 实现什么样的发展、怎样发展
B. 建设什么样的党、怎样建设
C. 什么是社会主义、怎样建设社会主义
D. 建设什么样的法制国家
E.
【单选题】
< >是中国特色社会主义的本质要求和重要保障。___
A. 全面依法治国
B. 全面从严治党
C. 全面发展经济
D. 全面可持续发展
E.
【单选题】
< >是一个国家、一个民族发展中更基本、更深沉、更持久的力量。___
A. 道路自信
B. 理论自信
C. 制度自信
D. 文化自信
E.
【单选题】
从现在到二〇二〇年,是全面建成小康社会< >。___
A. 决战期
B. 决胜期
C. 关键期
D. 攻坚期
E.
【单选题】
从< >到< >,是“两个一百年”奋斗目标的历史交汇期。___
A. 二〇二〇年二〇三五年
B. 十九大二十大
C. 二十大二十一大
D. 二〇三五年本世纪中叶
E.
【单选题】
贯彻新发展理念,建设现代化经济体系,必须坚持质量第一、效益优先,以< >为主线。___
A. 转变发展方式
B. 优化经济结构
C. 供给侧结构性改革
D. 转换增长动力
E.
【单选题】
全党必须牢记,< >的问题,是检验一个政党、一个政权性质的试金石。___
A. 为什么人
B. 执政宗旨
C. 建党宗旨
D. 权力来源
E.
【单选题】
我们要牢固树立社会主义生态文明观,推动形成< >现代化建设新格局,为保护生态环境作出我们这代人的努力!___
A. 人与自然和谐共生
B. 人与环境和谐发展
C. 人与自然和谐发展
D. 人与环境和谐共生
E.
【单选题】
我们呼吁,各国人民同心协力,构建人类命运共同体,建设< >的世界。___
A. 持久和平、普遍安全、共同繁荣、开放包容、公平正义
B. 持久和平、普遍安全、共同繁荣、公平正义、清洁美丽
C. 持久和平、普遍安全、共同繁荣、开放包容、清洁美丽
D. 持久和平、普遍安全、公平正义、开放包容、清洁美丽
E.
【单选题】
深刻认识党面临的< >的尖锐性和严峻性,坚持问题导向,保持战略定力,推动全面从严治党向纵深发展。___
A. 精神懈怠危险、能力不足危险、脱离群众危险、消极腐败危险
B. 精神懈怠危险、封闭僵化危险、脱离群众危险、消极腐败危险
C. 精神懈怠危险、能力不足危险、官僚主义危险、消极腐败危险
D. 精神懈怠危险、能力不足危险、脱离群众危险、腐化堕落危险
E.
【单选题】
入党介绍人的任务是认真了解申请人的思想、品质、经历和工作表现,向他解释(),说明党员的条件、义务和权利,并向党组织作出负责的报告。___
A. 党的路线方针政策
B. 党的纲领和党的章程
C. 党的历史
D. 国家政策
E.
【单选题】
党的()是党的根本性建设,决定党的建设方向和效果。___
A. 思想建设
B. 政治建设
C. 组织建设
D. 制度建设
E.
【单选题】
要尊崇党章,严格执行新形势下党内政治生活若干准则,增强党内政治生活的< >。___
A. 政治性、时代性、原则性、战斗性
B. 思想性、政治性、时代性、原则性
C. 政治性、思想性、时代性、原则性
D. 政治性、思想性、时代性、战斗性
E.
【单选题】
预备党员的预备期为< >。___
A. 一年
B. 两年
C. 三年
D. 四年
E.
【单选题】
预备党员的预备期,从< >算起。___
A. 填写入党志愿
B. 入党宣誓
C. 支部大会通过他为预备党员
D. 党组织找他谈话
E.
【单选题】
坚决防止和反对(),坚决防止和反对宗派主义、圈子文化、码头文化,坚决反对搞两面派、做两面人。___
A. 个人主义、享乐主义、自由主义、本位主义、好人主义
B. 个人主义、分散主义、山头主义、本位主义、好人主义
C. 个人主义、分散主义、自由主义、本位主义、好人主义
D. 个人主义、分散主义、自由主义、本位主义、享乐主义
E.
【单选题】
下面属于党的纪律处分的是()。___
A. 警告、严重警告、记大过、留党察看、开除党籍
B. 警告、严重警告、撤消党内职务、留党察看、开除党籍
C. 警告、记过、撤消党内职务、留党察看、开除党籍
D. 警告、记大过、撤消党内职务、留党察看、开除党籍
E.
【单选题】
1939年10月,毛泽东< >一文中,全面阐述了党的建设与党的政治路线密切联系的规律,并把党的建设称作"伟大的工程"。___
A. 社会组织结构
B. 社会政治生活
C. 社会基层组织
D. 社会团体
E.
【单选题】
()和(),是中国共产党人的精神支柱和政治灵魂,也是保持党的团结统一的思想基础。___
A. 共产主义远大理想、新时代中国特色社会主义共同理想
B. 共产主义远大理想、中国特色社会主义共同理想
C. 共产主义崇高理想、新时代中国特色社会主义共同理想
D. 共产主义崇高理想、中国特色社会主义共同理想
E.
【单选题】
党组织对违犯党的纪律的党员,应当本着< >精神,按照错误性质和情节轻重,给以批评教育直至纪律处分。___
A. 惩前毖后、治病救人
B. 坦白从宽、抗拒从严
C. 团结-批评-团结
D. 实事求是
E.
【单选题】
< >是党内的最高处分。___
A. 留党察看
B. 开除党籍
C. 开除公职
D. 刑事处分
E.
【单选题】
党章规定,党的基层组织是党在< >中的战斗堡垒,是党的全部工作和战斗力的基础。___
A. 社会组织结构
B. 社会政治生活
C. 社会基层组织
D. 社会团体
E.
【单选题】
党员受到警告或者严重警告处分,< >内不得在党内提升职务和向党外组织推荐担任高于其原任职务的党外职务。___
A. 半年
B. 一年
C. 二年
D. 三年
E.
【单选题】
党员受到撤销党内职务处分,()不得在党内担任和向党外组织推荐担任与其原任职务相当或者高于其原任职务的职务。___
A. 一年内
B. 二年内
C. 三年内
D. 四年内
E.
【单选题】
党的最高理想和最终目标是< >。___
A. 实现共产主义
B. 建设中国特色社会
C. 建设社会主义强国
D. 实现社会主义现代化
E.
【单选题】
党支部党员人数一般不超过< >人。___
A. 30
B. 40
C. 50
D. 60
E.
【单选题】
作为一名共产党员,能否信仰宗教。___
A. 能
B. 不能
C. 不清楚
D. 不了解
E.
【单选题】
党的纲领分最高纲领和社会主义初级阶段基本纲领。最高纲领是< >。___
A. 实现共产主义
B. 实现革命主义
C. 实现社会主义
D. 实现公平主义
E.
【单选题】
中国共产党党徽为< >组成的图案。___
A. 镰刀和锤头
B. 镰刀和斧头
C. 五角星和镰刀
D. 斧头和五角星
E.
【单选题】
< >标志着中国工人阶级开始以独立的政治力量登上了历史舞台。___
A. 中国共产党的成立
B. 五四运动
C. 二七大罢工
D. 五卅运动
E.
【单选题】
中国共产党最早的组织是由< >等发起,在< >首先建立的。___
A. 陈独秀上海
B. 李大钊北京
C. 毛泽东长沙
D. 李达南京
E.
【单选题】
党支部党员大会、党支部委员会会议由< >召集并主持。___
A. 书记
B. 副书记
C. 委员
D. 党小组组长
E.
【单选题】
有正式党员< >人以上的党支部,应当设立党支部委员会。___
【单选题】
民主集中制是民主基础上的集中和集中指导下的民主相结合。它既是党的< >,也是群众路线在党的生活中的运用。___
A. 根本领导原则
B. 根本管理原则
C. 根本组织原则
D. 根本生活准则
E.
【单选题】
坚持反腐败无禁区、全覆盖、零容忍,坚定不移“打虎”、“拍蝇”、“猎狐”,< >的目标初步实现,< >的笼子越扎越牢,< >的堤坝正在构筑,反腐败斗争压倒性态势已经形成并巩固发展。___
A. 不敢腐不能腐不想腐
B. 不能腐不敢腐不想腐
C. 不想腐不敢腐不能腐
D. 不敢腐不想腐不能腐
E.
【单选题】
党政军民学,东西南北中,党是领导一切的。必须增强< >,自觉维护党中央权威和集中统一领导,自觉在思想上政治上行动上同党中央保持高度一致。___
A. 政治意识、大局意识、核心意识、看齐意识
B. 政治意识、大局意识、权威意识、看齐意识
C. 政治意识、全局意识、核心意识、看齐意识
D. 政治意识、全局意识、权威意识、看齐意识
E.
【单选题】
()是改革开放的基本出发点和落脚点。___
A. 改善人民生活
B. 促进共同富裕
C. 消除贫富差距
D. 社会进步
E.
【单选题】
党在自己的工作中实行< >,一切为了群众,一切依靠群众,从群众中来,到群众中去,把党的正确主张变为群众的自觉行动。___
A. 集中力量办大事
B. 党管干部原则
C. 群众路线
D.
E.
【单选题】
党的十九大报告指出,发展是解决我国一切问题的基础和关键,发展必须是< >。___
A. 长期发展
B. 持续发展
C. 绿色发展
D. 科学发展
E.
【单选题】
建设< >是中华民族伟大复兴的基础工程。___
A. 经济强国
B. 政治强国
C. 教育强国
D. 文化强国
E.
