【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
推荐试题
【单选题】
作业人员应具备必要的安全生产知识,学会紧急救护法,特别要学会___。
A. 创伤急救
B. 触电急救
C. 溺水急救
D. 灼伤急救
【单选题】
作业人员对本规程应每年考试一次。因故间断电气工作连续___及以上者,应重新学习本规程,并经考试合格后,方可恢复工作。
A. 一个月
B. 两个月
C. 三个月
D. 六个月
【单选题】
柱上断路器应有分、合位置的___指示。
【单选题】
参与公司系统所承担电气工作的外单位或外来人员应熟悉本规程;经考试合格,并经___认可后,方可参加工作。
A. 工程管理单位
B. 设备运维管理单位
C. 公司领导
D. 安监部门
【单选题】
凡装有攀登装置的杆、塔,攀登装置上应设置___标示牌。
A. “止步,高压危险!”
B. “禁止攀登,高压危险!”
C. “从此上下!”
D. “有电危险!”
【单选题】
一回线路检修(施工),若配合停电线路属于其他单位,应由___单位事先书面申请,经配合停电线路的运维管理单位同意并实施停电、验电、接地。
A. 运维
B. 施工
C. 检修
D. 检修(施工)
【单选题】
停电线路、设备的断开点,应有能够反映线路、设备运行状态的电气和机械等指示。无明显断开点也无电气、机械等指示时,应断开___。
A. 同级电源
B. 下一级电源
C. 上一级电源
D. 断路器(开关)
【单选题】
接地线应使用专用的线夹固定在导体上,禁止用___的方法接地或短路。
【单选题】
若需变更或增设___,应填用新的工作票,并重新履行签发、许可手续。
A. 安全条件
B. 施工范围
C. 工作任务
D. 安全措施
【单选题】
填用配电第二种工作票的配电线路工作,可不履行___手续。
A. 工作票
B. 工作许可
C. 工作监护
D. 工作交接
【单选题】
电气设备___在母线或引线上的,设备检修时应将母线或引线停电。
A. 直接连接
B. 间接连接
C. 可靠连接
D. 连接
【单选题】
填用配电第一种工作票的工作,应得到___的许可,并由工作负责人确认工作票所列当前工作所需的安全措施全部完成后,方可下令开始工作。
A. 现场工作许可人
B. 配电运维人员
C. 全部工作许可人
D. 值班调控人员
【单选题】
停电拉闸操作应按照___的顺序依次进行,送电合闸操作应按与上述相反的顺序进行。禁止带负荷拉合隔离开关(刀闸)。
A. 断路器(开关)—负荷侧隔离开关(刀闸)—电源侧隔离开关(刀闸)
B. 负荷侧隔离开关(刀闸)——断路器(开关)——电源侧隔离开关(刀闸)
C. 断路器(开关)—电源侧隔离开关(刀闸)—负荷侧隔离开关(刀闸)
D. 负荷侧隔离开关(刀闸)——电源侧隔离开关(刀闸)——断路器(开关)
【单选题】
当验明确已无电压后,应立即将检修的高压配电线路和设备接地并___短路。
A. 单相
B. 两项
C. 三相
D. 中相和边相
【单选题】
摘挂跌落式熔断器的熔管,应使用___,并派人监护。
A. 绝缘棒
B. 验电器
C. 操作杆
D. 专用工具
【单选题】
巡视中发现高压配电线路、设备接地或高压导线、电缆断落地面、悬挂空中时,室内人员应距离故障点___m以外。
【单选题】
在工作地点或检修的配电设备上悬挂___标示牌;
A. “在此工作!”
B. “从此进出!”
C. “禁止合闸,有人工作!”
D. “止步,高压危险!”
【单选题】
装设柱上开关(包括柱上断路器、柱上负荷开关)的配电线路停电,应___。送电操作顺序与此相反。
A. 先断开柱上开关,后拉开隔离开关(刀闸)
B. 先拉开隔离开关(刀闸),后断开柱上开关
C. 先停主线开关,后停支线柱上开关
D. 先停支线柱上开关,后停主线开关
【单选题】
单独巡视人员应经___批准并公布。
A. 公司领导
B. 工区领导
C. 工区
D. 安质部门
【单选题】
为防止树木(树枝)倒落在线路上,应使用绝缘绳索将其拉向与线路___的方向,绳索应有足够的长度和强度,以免拉绳的人员被倒落的树木砸伤。
A. 相反
B. 60度
C. 90度
D. 相同
【单选题】
在下水道、煤气管线、潮湿地、垃圾堆或有腐质物等附近挖坑时,应设___。
A. 工作负责人
B. 工作许可人
C. 监护人
D. 工作班成员
【单选题】
柱上变压器台架工作,若变压器的低压侧无法装设接地线,应采用___措施。
A. 禁止工作
B. 加强监护
C. 拆除引线
D. 绝缘遮蔽
【单选题】
低压电气工作时,拆开的引线、断开的线头应采取___等遮蔽措施。
A. 胶带包裹
B. 绝缘包裹
C. 帆布遮盖
D. 剪断包裹
【单选题】
在多电源和有自备电源的用户线路的高压系统接入点,应有明显___。
A. 电气指示
B. 机械指示
C. 警示标识
D. 断开点
【单选题】
在人员密集或有人员通过的地段进行杆塔上作业时,___下方应按坠落半径设围栏或其它保护措施。
A. 杆塔
B. 杆上人员
C. 作业点
D. 横担
【单选题】
装有SF6设备的配电站,应装设强力通风装置,风口应设置在___,其电源开关应装设在门外。
A. 室内中部
B. 室内顶部
C. 室内底部
D. 室内电缆通道
【单选题】
对作业中可能触及的其他带电体及无法满足安全距离的接地体(导线支承件、金属紧固件、横担、拉线等)应采取___。
A. 作业人员防护措施
B. 绝缘遮蔽措施
C. 拆除措施
D. 隔离措施
【单选题】
带电设备附近测量绝缘电阻,移动引线时,应___,防止人员触电。
A. 加强监护
B. 将设备停电
C. 加挂临时接地
D. 采取隔离措施
【单选题】
使用绝缘电阻表测量绝缘电阻前后,应将被测设备___
A. 对地放电
B. 充电
C. 充、放电
D. 短接
【单选题】
带电短接设备时,短接开关设备的绝缘分流线截面积和两端线夹的载流容量,应满足___的要求。
A. 最大负荷电流
B. 额定开断电流
C. 最大短路电流
D. 开断容量
【单选题】
作业人员在接触运用中的二次设备箱体前,应___确认其确无电压。
A. 用高压验电器
B. 用低压验电器或测电笔
C. 以手触试
D. 看带电显示
【单选题】
高压试验不得少于两人,试验负责人应由___担任。
A. 有试验资质人员
B. 工作负责人
C. 班长
D. 有经验的人员
【单选题】
带电断、接电缆引线前应___。
A. 检查相序并做好标志
B. 检查相序
C. 做好标志
D. 设置专责监护人
【单选题】
10kV绝缘操作杆最小有效绝缘长度为___m。
A. 0.7
B. 0.4
C. 0.8
D. 0.5
【单选题】
为防止损伤运行电缆或其他地下管线设施,在城市道路___内不宜使用大型机械开挖沟(槽),硬路面面层破碎可使用小型机械设备,但应加强监护,不得深入土层。
A. 红线范围
B. 警示线
C. 绿化区
D. 两侧区域
【单选题】
沟(槽)开挖时,应将路面铺设材料和泥土___,堆置处和沟(槽)之间应保留通道供施工人员正常行走。
A. 分别堆置
B. 一起堆置
C. 单独堆置
D. 依次堆置
【单选题】
对难以做到与电源完全断开的检修线路、设备,可___其与电源之间的电气连接。
【单选题】
独立抱杆至少应有四根缆风绳,人字抱杆至少应有___根缆风绳并有限制腿部开度的控制绳。
【单选题】
配电设备检修,若无法保证安全距离或因工作特殊需要,可用与带电部分直接接触的___隔板代替临时遮栏。
【单选题】
电动工具应做到___。
A. 一机一闸
B. 一机两闸一保护
C. 一机一闸一线路
D. 一机一闸一保护