【单选题】
Refer to the exhibit All ports on switch 1 have a primary vLan of 300 Which devices can host 1 reach?___
A. host 2
B. server
C. host 4
D. other devices within VLAN303
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which option is the cloud-based security service from Cisco the provides URL filtering, web browsing content security, and roaming user protection?___
A. Cloud Web service
B. Cloud Advanced Malware Protection
C. Cloud We b Security
D. Cloud Web Protection
【单选题】
How can you detect a false negative on an IPS?___
A. View the alert on the ips
B. Review the ips log
C. Review the is console
D. Use a third- party system to perform penetration testing.
E. Use a third- party to audit the next generation firewall rules
【单选题】
If a switch port goes directly into a blocked state only when a superior BPDU is received, what mechanism must be in use?___
A. STP BPDU guard
B. Loop guard
C. EtherChannel guard
D. STP Root guard
【单选题】
what improvement does EAP-FASTv2 provide over EAP-FAST? ___
A. It allows multiple credentials to be passed in a single EAP exchange.
B. It supports more secure encryption protocols
C. It allows faster authentication by using fewer packets.
D. It addresses security vulnerabilities found in the original protocol
【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
推荐试题
【单选题】
如果被执行人是银行时,被执行银行收到执行部门(主要是人民法院)发出的限期履行通知书后,应尽可能在通知书规定的期限内___履行。
A. 3工作日
B. 5天
C. 10天
D. 15天
【单选题】
单独办理活期起息金额止付的,需要在办理表的备注栏注明产品为“活期冠几号”并需要提供签约信息截屏,最长止付为___年。
【单选题】
协助冻结的数据清单、法院出具的冻结裁定书、协助执行通知书、两名执行人员工作证和执行公务证等电子数据,按会计档案管理制度保管___。
【单选题】
2409冻结交易中可输入冻结到期日,默认为1年期限,且需___当前柜面日期。
A. 大于等于
B. 大于
C. 小于等于
D. 小于等于
【单选题】
提前部分还本和提前结清时下列那个作为主凭证___
【单选题】
同一贷款账号下,如果当天先做过___,之后再做提前结清,系统会报错,需将提前还本冲账后再处理提前结清。
A. 归还欠款
B. 提前还本
C. 归还应计利息
D. 贷款利息批扣
【单选题】
归还垫款时,还款类型只能选归还欠款或___。
A. 提前还本
B. 逾期结清
C. 到期一次还本付息
D. 归还垫款
【单选题】
受托支付的贷款发放后,系统同时会把贷款金额做___处理。
A. 止付
B. 冻结
C. 汇出
D. 存入同名账户
【单选题】
当委托贷款的还款方式为自动时,是指委托贷款还款后本金会自动返还到___
A. 委托人结算账户
B. 委托存款账户
C. 借款人结算账户
D. 借款人存款账户
【单选题】
垫款贷款在银行中被列为不良资产,属于逾期贷款一类,按年利率___计收罚息。
A. 5%
B. 10%
C. 18%
D. 20%
【单选题】
借款借据的___应盖贷款审批专用章。
A. 第一联
B. 第二联
C. 第三联
D. 第四联
【单选题】
___作为贷款发放的主凭证。
A. 借款借据第一联
B. 放款通知书
C. 提款申请书
D. 通用凭证
【单选题】
___是银行的主要资产。
A. 贷款
B. 存款
C. 中间业务
D. 理财业务
【单选题】
贷款到期日___还款不用审批提前还款审批表。
A. 前10天
B. 前五天
C. 前一天
D. 当天
【单选题】
受托支付支付确认交易码 ___。
A. 3005
B. 3002
C. 2005
D. 3001
【单选题】
关于受托支付说法正确的是___
A. 该交易是将受托支付金额作解除止付处理,解除后允许撤销
B. 受托支付确认成功后允许贷款发放冲账
C. 同一条受托支付信息多次操作,系统会报错
D. 受托支付通书中的名称和账号可以与系统中不一致
【单选题】
贷款归还业务操作代码为___
A. 3001
B. 3002
C. 3003
D. 3004
【单选题】
垫款账号的科目号为___
A. 1250
B. 1260
C. 1270
D. 1280
【单选题】
以保本型理财产品办理理财产品质押贷款的(对公流动资金贷款),贷款金额一般不超过理财产品金额的___。
A. 65%
B. 75%
C. 85%
D. 90%
【单选题】
垫款贷款在银行中被列为不良资产,属于逾期贷款一类,按年利率___计收罚息。
A. 10%
B. 12%
C. 15%
D. 18%
【单选题】
垫款发放日为2016年1月1日,那么下一个结息日为___。
A. 2月1日
B. 4月1日
C. 3月20日
D. 贷款原到期日
【单选题】
垫款贷款属于逾期贷款,还款顺序产品层默认为___。
A. 先还利息,再还本金
B. 先还本金,再还利息
C. 先还费用,再还本金
D. 先还费用,再还利息
【单选题】
归还银承垫款时,借据号为___。
A. 信贷流水号
B. 承兑协议号
C. 备款清单中的号
D. 垫款清单中的贷款账号
【单选题】
垫款贷款属于贷款___
A. 正常贷款
B. 委托贷款
C. 保证贷款
D. 逾期贷款
【单选题】
垫款发放的交易码为___
A. 3001
B. 3002
C. 3003
D. 3004
【单选题】
___是指由委托人提供合法来源的资金转入委托银行委托存款账户,委托银行根据委托人确定的贷款对象、用途、金额、期限、利率等代为发放、监督使用并协助收回的贷款业务;
A. 微型贷
B. 委托贷款
C. 贴现业务
D. 公积金贷款
【单选题】
委托贷款入账账户状态为___,允许放款。
A. 止付—存款证明
B. 止付
C. 冻结
D. 资金池
【单选题】
以下说法正确的是:___
A. 委托存款账户是否有足够的贷款资金,如果资金在结算户中,需要提供现金支票将资金转入同名委托存款账户中。
B. 委托存款账户是否有足够的贷款资金,如果资金在结算户中,需要提供转账支票将资金转入同名委托存款账户中。
C. 委托存款账户是否有足够的贷款资金,如果资金在结算户中,无需提供直接将资金转入同名委托存款账户中。
D. 委托存款账户是否有足够的贷款资金,如果资金在结算户中,需要填制特种转账凭证将资金转入同名委托存款账户中。
【单选题】
当产品为委托贷款时,还款模式为自动,是指委托贷款还款后本金会返还到___,还款模式手工,是指还款本金返回到()。
A. 委托人结算账户 委托人贷款账户
B. 委托人存款账户 委托人结算账户
C. 委托人结算账户 委托存款账户
D. 委托人贷款账户 委托人存款账户
【单选题】
以下说法错误的是:___
A. 同一贷款帐号下,如果当天先做过提前还本,允许再做提前结清。
B. 有欠款的情况下,允许做提前还本。还款方式为等额本息(按月、按季)和等额本金(按月、按季)时系统控制,必须欠款归还后才能做提前还本。
C. 归还垫款时,还款类型只能选归还欠款或逾期结清。
D. 还款类型为归还欠款且需要调整欠款顺序时需会计主管授权。
【单选题】
以下放款日与到期日的组合符合委托贷款等额本金按月、按季;等额本息按月、按季的还款方式的要求的是___
A. 2016.4.30-2018.4.29
B. 2016.4.30-2018.4.30
C. 2016.4.30-2018.4.31
D. 2016.4.30-2018.5.1
【单选题】
公积金贷款必须选___且本金也是入( )。
A. 手动 结算账户
B. 手动 暂挂账户
C. 自动 结算账户
D. 自动 暂挂账户
【单选题】
委托贷款还本时,需要输入“提前还款本金”金额,输入的金额应___剩余本金。
A. 小于
B. 大于
C. 等于
D. 小于等于
【单选题】
接受银团委托,进行银团贷款事务管理和协调活动工作的银行是___
A. 出资行
B. 代理行
C. 参加行
D. 贷款行
【单选题】
银团贷款是指由不少于___家获准经营贷款业务的银行业金融机构基于相同贷款条件,依据同一贷款合同,按约定时间和比例,通过代理行向借款人提供的本外币贷款或授信业务。
【单选题】
银团贷款牵头行是指经___同意,负责发起组织银团、分销银团贷款份额的银行。
A. 贷款行
B. 借款人
C. 出资人
D. 代理行
【单选题】
我行只作为参与行的银团贷款贷款利息如与我行计提不一致时,应如何操作?___
A. 直接还款
B. 先利息调整再还款
C. 先还款后补差额利息
D. 不能还款
【单选题】
我行作为代理行时发放的银团贷款,放银团贷款前必须先做___。
A. 银团协议经办
B. 银团协议签约
C. 银团协议复核
D. 银团协议录入
【单选题】
本行担任牵头行时,承贷份额原则上不得少于银团融资总金额的___;分销给其他银团成员的份额原则上不得低于( )。
A. 20% 50%
B. 30% 60%
C. 20% 60%
D. 30% 50%
