【单选题】
what improvement does EAP-FASTv2 provide over EAP-FAST? ___
A. It allows multiple credentials to be passed in a single EAP exchange.
B. It supports more secure encryption protocols
C. It allows faster authentication by using fewer packets.
D. It addresses security vulnerabilities found in the original protocol
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
推荐试题
【单选题】
在社会发展中起决定作用的因素是 ___
A. 地理环境
B. 人口因素
C. 生产方式
D. 风俗习惯
【单选题】
真理是没有阶级性的,在真理面前人人平等,这是因为 ___
A. 真理是不以人的意志为转移的客观规律
B. 真理是一个不断发展的过程
C. 真理都有其适用的条件和范围
D. 真理中包含着不依赖于人类的客观内容
【单选题】
下列选项中,属于生产力中独立的实体性因素的是 ___
A. 自然科学
B. 教育
C. 劳动资料
D. 经营管理
【单选题】
历史唯物主义认为,国家政权属于 ___
A. 社会物质生活条件
B. 社会生产力系统
C. 社会经济基础
D. 社会上层建筑
【单选题】
把社会形态划分为原始社会、奴隶社会、封建社会、资本主义社会、共产主义社会的根据是 ___
A. 生产力的发展水平
B. 生产关系的性质
C. 国家政权的性质
D. 社会道德的状况
【单选题】
马克思主义中国化的第一个重大理论成果是 ___
A. 毛泽东思想
B. “三个代表”重要思想
C. 科学发展观
D. 邓小平理论
【单选题】
毛泽东关于农村包围城市、武装夺取政权革命道路理论的提出,标志着毛泽东思想 ___
A. 开始萌芽
B. 基本形成
C. 走向成熟
D. 继续发展
【单选题】
新民主主义经济纲领规定,对民族工商业的政策是 ___
【单选题】
新民主主义社会经济成分中,个体经济向社会主义集体经济过渡的形成是 ___
A. 国家资本主义经济
B. 合作社经济
C. 私人资本主义经济
D. 国营经济
【单选题】
新中国成立初期,毛泽东谈到,“现在我们能造什么?能造桌子椅子,能造茶壶茶碗,能种粮食,还能磨成面粉,还能造纸,但是,一辆汽车、一架飞机、一辆坦克、一辆拖拉机都不能造。”这段话旨在说明 ___
A. 实现社会主义工业化的必要性
B. 进行农业社会主义改造的必要性
C. 进行手工业社会主义改造的必要性
D. 进行资本主义工商业社会主义改造的必要性
【单选题】
科学发展观的基本要求是 ___
A. 发展
B. 以人为本
C. 全面协调可持续
D. 统筹兼顾
【单选题】
“三个代表”重要思想形成的现实依据是 ___
A. 国际局势和世界格局的深刻变化
B. 党和人民建设中国特色社会主义的实践
C. 党的建设面临的新形势新任务
D. 时代主题由战争与革命转换为和平与发展
【单选题】
在邓小平理论中,把对社会主义的认识提高到新的科学水平的是 ___
A. 社会主义本质理论
B. 社会主义初级阶段理论
C. 社会主义改革开放理论
D. 社会主义市场经济理论
【单选题】
一种社会制度是否具有优越性,从根本上说,就是看其 ___
A. 是否促进生产力的发展
B. 是否消灭了剥削
C. 是否做到分配上的公平
D. 是否坚持生产资料公有制
【单选题】
坚持党在社会主义初级阶段的基本路线不动摇,关键是 ___
A. 坚持”两手抓,两手都要硬”的方针不动摇
B. 坚持以经济建设为中心不动摇
C. 坚持四项基本原则不动摇
D. 坚持改革开放不动摇
【单选题】
改革、发展、稳定三者是内在统一的,其中稳定是 ___
【单选题】
建设创新型国家是提高综合国力的关键,其核心是 ___
【单选题】
20世纪70年代末,我国的改革 ___
A. 从农村开始
B. 从城市开始
C. 从沿海地区开始
D. 从内地开始
【单选题】
对外开放是我国的一项长期的基本国策,实行这一国策的前提和基础是 ___
A. 互惠互利,共同发展
B. 独立自立,自力更生
C. 艰苦奋斗,勤俭节约
D. 和平共处,互不侵犯
【单选题】
当前我国非公有制经济是 ___
A. 社会主义市场经济的补充
B. 社会主义市场经济的重要组成部分
C. 社会主义市场经济的主体
D. 社会主义市场经济的附属部分
【单选题】
党的十七大对我国经济发展目标提出的新的更高要求是,增强发展协调性,努力实现经济 ___
A. 持续快速发展
B. 又快又好发展
C. 稳步健康发展
D. 又好又快发展
【单选题】
党的十六大报告首次提出了 ___
A. 建设社会主义物质文明的科学论断
B. 建设社会主义精神文明的科学论断
C. 建设社会主义政治文明的科学论断
D. 建设社会主义生态文明的科学论断
【单选题】
社会主义民主的本质和核心是 ___
A. 民主集中制
B. 人民当家作主
C. 政治协商
D. 人民民主专政
【单选题】
中国特色社会主义文化建设必须坚持的“二为”方向是 ___
A. 为人民服务,为社会主义服务
B. 为经济建设服务,为社会建设服务
C. 为物质文明建设服务,为精神文明建设服务
D. 为改革服务,为对外开放服务
【单选题】
构建社会主义和谐社会的根本出发点和落脚点是 ___
A. 科学发展
B. 以人为本
C. 安定有序
D. 公平正义
【单选题】
发展两岸关系,实现和平统一的基础是 ___
A. 一个中国
B. 两制并存
C. 争取和平
D. 反对干涉
【单选题】
影响世界和平与发展的主要障碍是 ___
A. 宗教问题和领土争端
B. 恐怖主义和民族矛盾
C. 贫富差距和地区冲突
D. 霸权主义和强权政治
【单选题】
中国共产党的最大优势是 ___
A. 以马克思主义为指导
B. 以工人阶级为阶级基础
C. 组织严密、纪律严明
D. 密切联系群众
【单选题】
新的历史条件下,推进党的建设新的伟大工程的重点是 ___
A. 加强党的思想建设
B. 加强党的组织建设
C. 加强党的执政能力建设
D. 加强党的作风建设
【单选题】
党的十八大报告提出,建设中国特色社会主义,总布局是五位一体,从“四位一体”到“五位一体”,所增加的是 ___
A. 经济建设
B. 文化建设
C. 社会建设
D. 生态文明建设
【单选题】
获得2012年诺贝尔文学奖的中国作家是 ___
A. 王蒙
B. 莫言
C. 贾平册
D. 刘震云
【单选题】
2013年4月19日,中共中央政治局召开会议,决定从下半年开始,用一年左右时间,在全党开展以为民务实清廉为主要内容的党的群众路线教育实践活动,坚决反对 ___
A. 教条主义、形式主义、官僚主义和享乐主义
B. 教条主义、形式主义、享乐主义和奢靡主义
C. 教条主义、官僚主义、享乐主义和奢靡主义
D. 形式主义、官僚主义、享乐主义和奢靡主义
【单选题】
2012年7月27日至8月12日,第30届夏季奥林匹克运动会在伦敦举行。此交运动会,位列金牌榜前三位国家依次是 ___
A. 美国、中国、英国
B. 中国、美国、英国
C. 美国、中国、俄罗斯
D. 中国、美国、俄罗斯
【单选题】
2013年3月26日至27日,第五届金砖国家峰会在南非德班举行,此次会议主题是 ___
A. 展望未来,共享繁荣
B. 金砖2013:挑战与机遇
C. 金砖国家致力于稳定、安全和繁荣的伙伴关系
D. 金砖国家与非洲:致力于发展、一体化和工业化的伙伴关系
【判断题】
坚持公有制为主体,促进非公有制经济发展,统一于社会主义现代化建设的进行中。
【简答题】
如何正确理解坚持党的领导、人民当家作主和依法治国的有机统一?
【简答题】
我国独立自主和平外交政策的基本原则有哪些?
【简答题】
试述无产阶级政党的群众观点和路线的内容及其理论基础,并说明坚持群众路线的重要意义。