【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
推荐试题
【多选题】
下列关于需求不足型失业的说法正确的是 ___
A. 又叫非自愿失业或周期性失业
B. 是指劳动者在现行工资水平下找不到工作的状况,或者是指总需求相对不足减少劳动力派生需求所导致的失业
C. 这种失业与经济周期有关系
D. 包括摩擦型失业和结构性失业两种形式
【多选题】
关于国内生产总值的说法,错误的是 ___
A. 国内生产总值又称为国民总收入
B. 国内生产总值是按市场价格计算的一个国家(或地区)在一定吋期内生产活动的最终成果
C. 国内生产总值又称为国民生产总值
D. 国内生产总值仅具有价值形态
【多选题】
下列关于居民消费价格指数的说法,正确的有 ___
A. 居民消费价格指数的倒数是货币购买力指数
B. 居民消费价格指数的提高意味着实际工资的减少
C. 居民消费价格指数上涨,货币购买力则下降
D. 实际工资=名义工资/消费价格指数
【多选题】
下列关于特别提款权的说法中错误的是 ___
A. 是世界银行根据会员国缴纳的份额分配的
B. 实行的是有偿分配的方式
C. 不根据一篮子货币定值
D. 是可供会员国政府之间偿付国际收支逆差的一种账面资产
【多选题】
下列关于利润表项目之间关系的恒等式中,正确的是 ___
A. 主营业务利润=主营业务收入一主营业务成本一主营业务税金及附加
B. 营业利润=主营业务利润+其他业务利润一营业费用一管理费用一财务费用
C. 利润总额=营业利润一营业外支出
D. 净利润=利润总额一所得税
【多选题】
与所有权和担保物权相比,用益物权具有的特征包括 ___
A. 用益物权是具有独立性的他物权
B. 用益物权是限制物权
C. 用益物权具有使用的目的
D. 用益物权的标的物主要是不动产
【多选题】
下列经济业务中,因经营活动而引起的现金流入有______。___
A. 收到咨询收入
B. 销售商品而取得贷款
C. 收到出口退税
D. 收到银行借款
【多选题】
企业财务报表分析的主要内容包括______。___
A. 企业的偿债能力
B. 企业技术水平
C. 企业资产的营运能力
D. 企业的盈利能力
【多选题】
以下属于反映企业偿债能力的指标是______。___
A. 流动比率
B. 已获利息倍数
C. 产权比率
D. 资本收益率
【多选题】
计算速动比率时,把存货从流动资产中剔除,可能的原因是______。___
A. 存货变现速度最慢
B. 存货可能存在盘亏、毁损
C. 存货可能已充当了抵押品
D. 存货可能已降价
【多选题】
中央银行业务活动的特征有______。___
A. 不以盈利为目的
B. 对居民办理存贷款业务
C. 与政府发生资金往来关系
D. 在制定和执行货币政策时具有相对独立性
【多选题】
根据《中华人民共和国商标法》,禁止作为商标注册或使用的标志包括______。___
A. 中华人民共和国国徽标志
B. “红十字”标志
C. 夸大宣传并带有欺骗性的标志
D. 带有民族歧视性的标志
【多选题】
合同履行应遵循的原则包括__________
A. 全面履行原则
B. 诚实信用原则
C. 协作履行原则
D. 过罚相当原则
【多选题】
下列各项不属于筹资活动产生的现金流量的有______。___
A. 处置固定资产所收回的现金
B. 偿还债务所支付的现金
C. 融资租赁所支付的租赁费
D. 销售商品、提供劳务收到的现金
【多选题】
应当先履行债务的当事人,有确切证据证明对方有下列情形之一的,可以中止履行______。___
A. 经营状况严重恶化
B. 转移财产以逃避债务
C. 抽逃资金以逃避债务
D. 丧失商业信誉
【多选题】
根据《中华人民共和国公司法》的规定,下列关于股份有限公司转让的说法中,正确的是______。___
A. 股东持有的股份可以依法转让
B. 股东转让其股份,应当在依法设立的证券交易场所进行或者按照国务院规定的其他方式进行
C. 记名股票,由股东以背书方式或者法律、行政法规规定的其他方式转让
D. 无记名股票的转让,由股东将股票交付给受让人后即发生转让的效力
【多选题】
根据《中华人民共和国公司法》,公司可以收购本公司股份的情形包括______。___
A. 减少公司注册资本
B. 股东因对股东大会作出的公司合并、分立决议持异议,要求公司收购其股份
C. 将股份奖励给本公司职工
D. 与持有本公司股份的其他公司合并
【多选题】
下列关于专利权的说法正确的是______。___
A. 发明人可以是自然人、单位或是课题组
B. 专利权的客体包括发现、实用新型和外观设计三种
C. 专利权的客体包括发明、实用新型和外观设计三种
D. 实用新型和外观设计专利权的期限是10年
【多选题】
会计要素的确定计量原则包括______。___
A. 权责发生制
B. 配比原则
C. 历史成本原则
D. 划分收益性支出与资产性支出原则
【多选题】
资产负债表中可以根据某一科目总账余额直接填列的有______。___
A. 应收账款
B. 短期借款
C. 实收资本
D. 盈余公职
【多选题】
下列有关资产净利润率指标的说法中,正确的有______。___
A. 资产净利润率越高,说明企业全部资产的盈利能力越差
B. 资产净利润率是用净利润除以资产平均总额再乘以100%计算的
C. 资产净利润率越高,说明企业全部资产的盈利能力越强
D. 资产净利润率与净利润成正比,与资产平均总额成反比
【多选题】
在经济调整对象中,市场管理关系的内容包括______。___
A. 合同法律关系
B. 维护公平竞争关系
C. 消费者权益保护关系
D. 产品质量管理关系
【多选题】
下列关于物权的说法中正确的有______。___
A. 物权的客体是人
B. 物权具有追及效力和优先效力
C. 一物一权原则是物权的基本原则之一
D. 物权和债权构成了市场经济社会的最基本的财产权利
【多选题】
按照《担保法》的相关规定,下列说法错误的有______。___
A. 定金是合同担保的一种方式
B. 定金具有预先给付和抵销的效力
C. 定金是在违约时支付的
D. 定金的数额不超过主合同总金额的10%
【多选题】
商业银行传统的组合营销因素包括__________
【多选题】
与债权相比,下列关于物权的特征表述正确的有 ___
A. 物权是对人权
B. 物权是法定的
C. 物权属于支配权
D. 当物权与债权并存时,物权优先于债权
【多选题】
根据《商标法》的规定,下列选项中关于注册商标的期限的表述正确的有______。___
A. 注册商标的期限为10年
B. 注册商标的续展没有次数限制
C. 超过宽展期仍未提出续展申请,注册商标将被注销
D. 商标仅人不能在规定的期限内提出续展申请的,可以给予6个月的宽展期
【多选题】
根据资产定价理论中的有效市场理论,资本市场可以分为弱式有效市场、半强式有效市场和强式有效市场。其中,半强式有效市场的信息集包括__________
A. 历史价格信息
B. 公司红利政策信息
C. 公司公告
D. 公司财务报告信息
【多选题】
金融期货最主要的功能有__________
A. 转移风险
B. 规避风险
C. 平衡权益
D. 价格发现
【多选题】
下列活动中,属于银行内部控制的要素有__________
A. 利润设定
B. 风险评估
C. 控制活动
D. 信息与沟通
【多选题】
中央银行在公开市场上买进证券,则__________
A. 形成多头市场
B. 刺激投资
C. 证券价格上升
D. 货币供应扩大
【多选题】
金融市场融通资金的途径有__________
A. 长期市场
B. 直接融资
C. 短期融资
D. 间接融资
【多选题】
再贴现政策作用于经济的主要途径有__________
A. 借款成本效果
B. 宣示效果
C. 对货币乘数影响
D. 结构调节效果
【多选题】
下列对股指期货表述正确的有___
A. 以股价指数为标的物的标准化期货保约
B. 双方约定在未来某个特定日期进行买卖
C. 大致可以分为两大类,商品期货与金融期货
D. 到期后通过现金结算差价来进行交割
【多选题】
下列情况中,可能会导致成本推进型通货膨胀的有__________
A. 垄断性大公司为获取垄断利润人为提高产品价格
B. 劳动力不能及时在不同部门之间转移
C. 有组织的工会会迫使工资的增长率超过劳动生产率的增长率
D. 汇率变动引起进出口产品和原材料成本上升
【多选题】
在银行业监管中,监管当局对即将倒闭银行的处置措施主要有__________
A. 收购
B. 兼并
C. 依法清算
D. 注资入股
【多选题】
在治理通货膨胀时,可以采用的紧缩性货币政策措施主要有__________
A. 提高法定存款准备金率
B. 提高再贴现率
C. 公开市场卖出业务
D. 减少储备存款
【多选题】
下列指标中,属于反映企业盈利能力的指标有 ___
A. 市盈率
B. 资产净利润率
C. 资本收益率
D. 主营业务净利润率
【多选题】
存款准备金政策是中央银行实施货币政策的重要工具,其主要内容包括__________
A. 规定存款准备金计提的基础
B. 规定法定存款准备金率
C. 规定存款准备金的构成
D. 规定存款准备金提取的时间
【多选题】
积极的外汇储备管理模式的实现路径主要有__________
A. 货币当局本身的外汇管理转型
B. 将外汇储备转交给商业银行管理
C. 将外汇储备转交给投资银行管理
D. 国家成立专门的投资公司来管理