【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
推荐试题
【单选题】
坚决反对和防止腐败是全党一项重大的政治任务。不坚决惩治腐败,党同人民群众的血肉联系就会受到严重损害,就有丧失< >的危险,就有可能走向自我毁灭。___
A. 党的领导地位
B. 党的执政基础
C. 党的执政地位
D.
E.
【单选题】
党员必须自觉遵守党的纪律,模范遵守< >。严格保守党和国家的秘密,执行党的决定,服从组织分配,积极完成党的任务。___
A. 国家的法律法规
B. 宪法和制度
C. 法律和纪律
D. 制度和纪律
E.
【单选题】
党的各级委员会实行集体领导和个人分工负责相结合的制度。凡属重大问题都要按照集体领导、民主集中、< >、会议决定的原则,由党的委员会集中讨论,作出决定。___
A. 个别酝酿
B. 个别商谈
C. 私下酝酿
D.
E.
【单选题】
凡是成立党的新组织,或是撤销党的原有组织,必须由< >决定。___
A. 上级党组织
B. 县级以上党组织
C. 上级党委
D.
E.
【单选题】
党的基层组织要对党员进行< >和服务,提高党员素质,增强党性,严格党的组织生活,开展批评和自我批评,维护和执行党的纪律,监督党员切实履行义务,保障党员的权利不受侵犯。___
A. 教育、培养、管理
B. 培养、管理、监督
C. 教育、管理、监督
D.
E.
【单选题】
国有企业和集体企业中党的基层组织,发挥< >作用围绕企业生产经营开展工作。___
A. 政治核心
B. 领导核心
C. 管理核心
D.
E.
【单选题】
党的干部是党的事业的骨干,是人民的公仆。党按照德才兼备的原则选拔干部,坚持任人唯贤,反对任人唯亲,努力实现干部队伍的< >、年轻化、知识化、专业化。___
A. 现代化
B. 革命化
C. 政治化
D.
E.
【单选题】
机关党的建设是党的建设新的伟大工程的重要组成部分,要坚持党要管党、从严治党,围绕中心、服务大局,< >、开拓进取,不断提高机关党建工作水平。___
A. 不忘初心
B. 改革创新
C. 自我革新
D. 勇往直前
E.
【单选题】
对党的中央委员会和地方各级委员会的委员、候补委员,给以撤销党内职务、留党察看或开除党籍的处分,必须由本人所在的委员会全体会议< >决定。___
A. 二分之一以上的多数
B. 三分之二以上的多数
C. 绝大多数
D.
E.
【单选题】
党组织对党员作出处分决定,应当实事求是地查清事实。处分决定所依据的事实材料和处分决定必须< >,听取本人说明情况和申辩。___
A. 同本人所在的基层组织见面
B. 同本人所在基层组织中的党员见面
C. 同本人见面
D.
E.
【单选题】
在中央和地方国家机关、人民团体、经济组织、文化组织和其他非党组织的领导机关中,可以成立党组,党组发挥< >作用。___
A. 政治核心
B. 管理核心
C. 领导核心
D. 业务核心
E.
【单选题】
党章总纲强调,要不断提高党的创造力、凝聚力、战斗力,建设学习型、< >、创新型的马克思主义执政党,使我们党始终走在时代的前列,成为领导全国人民沿着中国特色社会主义道路不断迁建的坚强核心。___
A. 科学型
B. 服务型
C. 制度型
D. 革命型
E.
【单选题】
年满十八岁的中国工人、农民、军人、知识分子和< >的先进分子,承认党的纲领和章程,愿意参加党的一个组织并在其中积极工作、执行党的决议和按期交纳党费的,可以申请加入中国共产党。___
A. 其他社会阶层
B. 私营企业主
C. 学生
D.
E.
【单选题】
党的十九大报告指出:< >是中国特色社会主义的本质要求和重要保障。___
A. 全面依法治国
B. 全面从严治党
C. 全面发展经济
D. 全面可持续发展
E.
【单选题】
< >,是我们党制定和实施正确路线方针政策的重要前提,是我们党一贯坚持的工作方法,也是党员干部的基本功。___
A. 解决问题
B. 调查研究
C. 密切联系群众
D. 深入基层
E.
【单选题】
中国共产党,成立于< >,1949年10月至今为代表工人阶级领导工农联盟和统一战线,在中国大陆实行人民民主专政的中华人民共和国唯一执政党。___
A. 1919年7月
B. 1920年7月
C. 1921年7月
D. 1922年7月
E.
【单选题】
41.从全面建成小康社会到基本实现现代化,再到全面建成< >,是新时代中国特色社会主义发展的战略安排。___(B)
A. 创新型国家
B. 社会主义现代化强国
C. 社会主义现代化大国
D. 世界一流强国
E.
【单选题】
开展“两学一做”学习教育是推动党内教育从“关键少数”向广大党员拓展、从()向经常性教育延伸的重要举措,是加强党的思想政治建设的重要部署。___
A. 集中性教育
B. 不常规教育
C. 全部教育
D. 偶尔教育
E.
【单选题】
开展“两学一做”学习教育,要坚持< >为主,用科学理论武装头脑。___
A. 反面教育
B. 正面教育
C. 内部教育
D. 创新教育
E.
【单选题】
解决台湾问题、实现祖国完全统一,是全体中华儿女< >,是中华民族< >所在。___
A. 一致愿望 根本利益
B. 共同愿望 本质利益
C. 一致愿望 本质利益
D. 共同愿望 根本利益
E.
【单选题】
坚决防止和反对个人主义、< >、< >、本位主义、< >,坚决防止和反对宗派主义、圈子文化、码头文化,坚决反对搞两面派、做两面人。___
A. 享乐主义、自由主义、好人主义
B. 分散主义、山头主义、好人主义
C. 分散主义、自由主义、好人主义
D. 分散主义、自由主义、享乐主义
E.
【单选题】
党的十九大报告提出新时代坚持和发展中国特色社会主义的十四条基本方略,第一条是< >。___
A. 坚持党对一切工作的领导
B. 坚持以人民为中心
C. 坚持全面深化改革
D. 坚持新发展理念
E.
【单选题】
按时交纳党费是党员的()。___
A. 义务
B. 权利
C. 两者都是
D.
E.
【单选题】
中国共产党的性质是()。___
A. 中国工人阶级的先锋队,同时是中国人民和中华民族的先锋队
B. 中国工人阶级的先锋队,同时是中国人民和中华民族的先锋队,是中国特色社会主义事业的领导核心,代表中国先进生产力的发展要求,代表中国先进文化的前进方向,代表中国最广大人民的根本利益
C. 代表中国先进生产力的发展要求,代表中国先进文化的前进方向,代表中国最广大人民的根本利益
D.
E.
【单选题】
中国共产党的最高理想和最终目标是()。___
A. 实现共产主义
B. 实现共产主义社会制度
C. 实现中国特色社会主义宏伟目标
D.
E.
【单选题】
()是党的根本宗旨。___
A. 以人为本
B. 不断解放和发展社会生产力
C. 全心全意为人民服务
D.
E.
【单选题】
党的最高领导机关是()。___
A. 党的全国代表大会
B. 党的中央委员会
C. 党的全国代表大会和它所产生的中央委员会
D.
E.
【单选题】
第一次国共合作的政治基础是()。___
A. 新三民主义
B. 马克思列宁主义
C. 毛泽东思想
D.
E.
【单选题】
中国共产党打响武装反抗国民革命第一枪的起义是()。___
A. 1927年八一南昌起义
B. 1927年秋收起义
C. 1927年广州起义
D.
E.
【单选题】
党是全国代表大会每隔几年举行一次:()___
A. 3年
B. 5年
C. 4年
D. 10年
E.
【单选题】
党的组织原则是()。___
A. 民主集中制
B. 密切联系群众
C. 一切从实际出发
D. 理论联系实际
E.
【单选题】
中国共产党成立的具体时间是()。___
A. 1921.6.1
B. 1921.7.1
C. 1921.7.21
D. 1921.7.23
E.
【单选题】
党章规定,发展党员,必须经过(),坚持个别吸收的原则。___
A. 党委
B. 党的支部
C. 党小组
D.
E.
【单选题】
党章规定,预备党员的预备期为()。___
【单选题】
中国共产党员标准主要是由()决定的。___
A. 党的工人阶级先锋队性质
B. 党在各个时期的方针政策
C. 党的优良传统和作风
D.
E.
【单选题】
推进党的()建设,核心是保持党同人民群众的血肉联系。___
【单选题】
一九一九年五四运动标志着中国()的开端。___
A. 旧民主主义革命
B. 新民主主义革命
C. 社会主义革命
D.
E.
【单选题】
我们党必须坚持把()作为一切工作的出发点和归宿。___
A. 人民的根本利益
B. 党的群众基础
C. 党的执政能力
D. 工人阶级力量
E.
【单选题】
中国共产党是中国特色社会主义事业的()。___
A. 领导核心
B. 忠实代表
C. 先锋队
D. 中坚力量
E.
【单选题】
全党同志紧密团结在以习近平同志为核心的党中央周围,全面深入贯彻十八届六中全会精神,牢固树立“四个意识”,即“< >”。___
A. 担当意识、政治意识、核心意识、看齐意识
B. 政治意识、全局意识、责任意识、看齐意识
C. 政治意识、担当意识、责任意识、看齐意识
D. 政治意识、大局意识、核心意识、看齐意识
E.
