【单选题】
How can you detect a false negative on an IPS?___
A. View the alert on the ips
B. Review the ips log
C. Review the is console
D. Use a third- party system to perform penetration testing.
E. Use a third- party to audit the next generation firewall rules
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
If a switch port goes directly into a blocked state only when a superior BPDU is received, what mechanism must be in use?___
A. STP BPDU guard
B. Loop guard
C. EtherChannel guard
D. STP Root guard
【单选题】
what improvement does EAP-FASTv2 provide over EAP-FAST? ___
A. It allows multiple credentials to be passed in a single EAP exchange.
B. It supports more secure encryption protocols
C. It allows faster authentication by using fewer packets.
D. It addresses security vulnerabilities found in the original protocol
【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
推荐试题
【单选题】
脑疝形成的机制是___
A. 颅腔内容物体积增大
B. 颅内血容量增加
C. 颅内脑脊液增加
D. 颅内压力分布不均
E. 颅内占位性病变
【单选题】
胆固醇结石形成的最主要原因是___
A. 胆汁成分改变
B. 胆道感染
C. 葡萄糖醛酸酶增加
D. 胆道内蛔虫残体存留
E. 胆道梗阻
【单选题】
患儿,9个月,呕吐、腹泻3天,尿量略少,皮肤弹性稍差,口唇微干,眼窝轻度凹陷,血清钠浓度为140mmol/L,其脱水的程度为___
A. 重度脱水
B. 无脱水
C. 中度脱水
D. 极重度脱水
E. 轻度脱水
【单选题】
一患者胸部受伤后,胸内有进行性出血,出血源多为___
A. 心脏大血管破裂出血
B. 肺组织破裂出血
C. 支气管动脉破裂出血
D. 肋间动、静脉或胸廓内
E. 肋骨骨折断端出血
【单选题】
直肠癌的主要特点是___
A. 便秘
B. 大便性质和排便习惯改变
C. 便血
D. 大便变细
E. 贫血
【单选题】
头皮损伤骨膜下血肿的突出特点是___
A. 血肿小
B. 血肿局限
C. 血肿以骨缝为界
D. 疼痛重
E. 常合并有骨折
【单选题】
颅脑损伤病人处理便秘的方法哪项不妥当___
A. 口服液体石蜡
B. 开塞露
C. 酚酞
D. 用液体石蜡灌肠
E. 用肥皂水灌肠
【单选题】
血管闭塞性脉管炎局部缺血期的临床表现,不包括___
A. 间歇性跛行
B. 静息痛
C. 足背动脉搏动减弱
D. 游走性血栓性静脉炎
E. 肢端发凉、麻木、酸痛
【单选题】
维持细胞外液渗透压的重要离子是___
A. Ca
B. K
C. Mg
D. Na
E. Cl
【单选题】
当人血中的碳酸氢根离子与碳酸的比值为20:1时,血浆的pH是___
A. 7.3
B. 7.4
C. 7.5
D. 7.6
E. 7.7
【单选题】
前列腺增生症病人发生急性尿潴留,首选的处理方法是___
A. 热敷、按摩
B. 留置导尿
C. 膀胱穿刺抽尿
D. 膀胱造口
E. 改变体位
【单选题】
重度脱水失量约为体重的___
A. 2%以上
B. 3%以上
C. 4%以上
D. 5%以上
E. 6%以上
【单选题】
男,20岁,被人用刀捅伤半小时急诊入院,入院查体:血压9.3/6.7kPa(70/50mmHg),脉搏快弱,呼吸音减弱。X线示有大量积液阴影,应确诊为___
A. 开放性气胸
B. 损伤性气胸
C. 张力性气胸
D. 损伤性血气胸
E. 以上均不是
【单选题】
阿米巴肝脓肿没有继发细菌感染,应选用下列哪种方法治疗___
A. 脓肿内注入抗阿米巴药,切开引流
B. 脓肿内注入抗阿米巴药,穿刺抽吸
C. 全身应用抗阿米巴药,穿刺抽吸
D. 全身应用抗阿米巴药,切开引流
E. 全身应用抗阿米巴药,肝部分切除
【单选题】
心脏骤停后最容易发生的继发性病理变化是___
A. 肺水肿
B. 急性肾衰竭
C. 急性肝坏死
D. 脑缺氧和脑水肿
E. 心肌缺氧性损伤
【单选题】
关于脑复苏下列错误的是___
A. 低温疗法
B. 脱水疗法
C. 不可用皮质激素
D. 给用脑活素
E. 高压氧疗法
【单选题】
小而深的伤口多见于___
A. 刺伤
B. 切割伤
C. 擦伤
D. 撕脱伤
E. 裂伤
【单选题】
慢性脓胸纵隔移向___
A. 前侧
B. 后侧
C. 无移位
D. 患侧
E. 健侧
【单选题】
胰头癌的主要临床特点是___
A. 黄疸
B. 肝脏肿大
C. 胆囊肿大
D. 上腹部隐痛
E. 厌食、消瘦、乏力
【单选题】
水中毒对病人危害最大的是___
A. 腹腔积液
B. 脑水肿
C. 眼膜水肿
D. 下肢水肿
E. 消化道水肿
【单选题】
无形失水是指___
A. 排出的尿
B. 排出的粪便中的水
C. 排出的尿与粪中水之和
D. 正常时呼出及皮肤蒸发的水之和
E. 气管切开呼吸道多排出的水
【单选题】
心脏复跳后应用低温疗法,错误的做法是___
A. 头部重点降温
B. 尽早开始降温
C. 直肠温度降至32℃维持24h
D. 控制寒战和抽搐
E. 严格控制输液量
【单选题】
诊断慢性颅内压增高有意义的临床表现是___
A. 头痛
B. 呕吐
C. 视乳头水肿
D. 复视
E. 椎体束征阳性
【单选题】
对严重挤压伤患者,护理时除严密观察生命体征外,还应特别注意___
A. 伤口肿胀程度
B. 精神状态
C. 肢端温度
D. 损伤部位疼痛情况
E. 尿量和尿色
【单选题】
食道癌哪种病理类型恶性程度高___
A. 髓质型
B. 缩窄型
C. 蕈伞型
D. 溃疡型
E. 腺癌
【单选题】
骨盆直肠间隙脓肿晚期治疗的有效措施___
A. 全身抗生素
B. 局部理疗
C. 切开引流
D. 穿刺抽脓
E. 肛门坐浴
【单选题】
防治脑水肿最常用的脱水剂是___
A. 20%甘露醇
B. 5%葡萄糖溶液
C. 25%山梨醇
D. 10%葡萄糖溶液
E. 5%葡萄糖盐水溶液
【单选题】
关于胰腺癌的病理,错误的是___
A. 以导管细胞腺癌最多见
B. 好发部位胰腺头颈部
C. 最多见淋巴转移和癌浸润
D. 早期血行转移
E. 可广泛转移至周围组织
【单选题】
妇科病人术后护理正确的是___
A. 硬膜外麻醉者,去枕平卧12小时
B. 妇科阴部手术后48小时取出阴道内纱布块
C. 会阴Ⅲ度裂伤修补术后5天给予缓泻剂
D. 一般腹部手术保留尿管5~7天
E. 广泛全子宫切除术后留置尿管10~14天
【单选题】
孕妇,28岁,孕36周,因阴道大量出血就诊,确诊胎盘早剥,现进入产程,治疗原则是___
A. 清洁灌肠
B. 期待疗法
C. 抑制宫缩
D. 终止妊娠
E. 禁止人工破膜
【单选题】
产褥期正常的恶露应该是___
A. 血性恶露量多,色鲜红,含大量血液、少量蜕膜组织,持续3~4天
B. 浆液性恶露持续3周左右
C. 白色恶露含大量的白细胞、红细胞、蜕膜
D. 正常恶露有血腥气及有臭味
E. 产褥晚期有较多的红色恶露出现属正常
【单选题】
正常新生儿护理哪项不正确___
A. 新生儿需保暖
B. 1~2天内可有回奶现象
C. 出生后24h无大小便属正常情况
D. 每日测体温2次,如有异常需加测
E. 出生2h内密切观察脐带有无渗血
【单选题】
哺乳产妇恢复排卵的时间为___
A. 产后4~6个月
B. 产后10周
C. 产后8周
D. 产后7周
E. 产后6周
【单选题】
正常妊娠孕妇产前检查时间正确的是___
A. 妊娠28周前每4周查1次,30~36周每2周查1次,36周以后每周查1次
B. 妊娠20~32周后每2周查1次
C. 妊娠32周每周查1次
D. 妊娠39周每3天查1次
E. 妊娠40周无需检查,等待临产
【单选题】
下述哪项是正确的___
A. 通过孕妇尿中雌激素与肌酐比值(E/C比值)可以了解胎儿成熟程度
B. E/C比值正常在10以上
C. 缩宫素激惹试验出现晚期减速,为阴性
D. 缩宫素激惹试验阴性,表明胎盘功能尚佳
E. 胎儿成熟是指孕36周时胎头双顶径为9.3cm
【单选题】
胎产式是指___
A. 胎儿身体纵轴与母体纵轴之间的关系
B. 胎儿在子宫腔内的姿势
C. 胎儿最先进入骨盆入口的部分
D. 胎儿先露部指示点与母体骨盆的关系
E. 胎儿在子宫腔内冲击子宫壁的动作
【单选题】
不会通过胎盘感染胎儿的肝炎病毒类型为___
A. 甲型肝炎病毒
B. 乙型肝炎病毒
C. 丙型肝炎病毒
D. 丁型肝炎病毒
E. 戊型肝炎病毒
【单选题】
有关脐带的叙述,错误的说法是___
A. 为连接胎儿与胎盘的纽带
B. 内有2条脐动脉,1条脐静脉
C. 脐带平均长约50cm
D. 长达或超过70cm者称脐带过长
E. 短至或少于25cm者称脐带过短
【单选题】
妊娠合并心脏病孕妇分娩期血液动力学变化,下述哪项是错误的___
A. 第一产程,规则宫缩使周围循环阻力增加,回心血量减少
B. 第二产程,腹压增高使内脏血流涌向心脏,回心血量增加
C. 第二产程,宫缩加上腹压,周围阻力增大
D. 第三产程,子宫缩小,腹压减低,大量血液流入内脏血管,回心血量减少
E. 第三产程,胎盘娩出后子宫胎盘循环停止,大量血液进入体循环,回心血量增加
【单选题】
胎盘由下列哪些组织构成___
A. 平滑绒毛膜、包蜕膜、羊膜
B. 平滑绒毛膜、底蜕膜、真蜕膜
C. 叶状绒毛膜、包蜕膜、真蜕膜
D. 叶状绒毛膜、底蜕膜、羊蜕膜
E. 叶状绒毛膜、底蜕膜、真蜕膜
