【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
【单选题】
Which technology can you implement to centrally mitigate potential threats when users on your network download files that might be malicious?___
A. Enable file-reputation services to inspect all files that traverse the company network and block files with low reputation scores
B. Verify that the compa ny IpS blocks all known malicious website
C. Verity that antivirus software is installed and up to date for all users on your network
D. Implement URL filtering on the perimeter firewall
【单选题】
What is the most common implementation of PaT in a standard networked environment?___
A. configuring multiple external hosts to join the self zo ne and to communicate with one another
B. configuring multiple internal hosts to communicate outside of the network using the outside interface IP address
C. configuring multiple internal hosts to communicate outside of the network by using the inside interface IP address
D. configuring an any any rule to enable external hosts to communicate inside the network
【单选题】
Which component of a bYod architecture provides aAa services for endpoint access ?___
A. Integrated Services Router
B. access point
C. ASA
D. Identity Services
E. ngine
【单选题】
You are configuring a NAT rule on a Cisco ASA ,Which description of a mapped interface is true?___
A. It is mandatory for all firewall modes
B. It is optional in routed mode
C. It is optional in transparent mode
D. It is mandatory for ide ntity NAT only
【单选题】
Which description of the use of a private key is true ?___
A. The sender signs a message using the receivers private key
B. The sender signs a message using their private key
C. The sender encrypts a message using the receivers private key
D. The receiver decrypts a n15ssage using the sender's private key
【单选题】
Which mechanism does the FireAMP Connector use to avoid conflicts with other security applications such as antivirus products ?___
A. Virtualization
B. Containers
C. Sandboxing
D.
E. xclusions
推荐试题
【单选题】
青年女患者于受凉淋雨后突发寒战.高热.胸痛.咳嗽.气急,咳铁锈色痰,体检左下肺有实变体征及湿啰音,治疗用药应首选___
A. 安乃近
B. 地塞米松
C. 青霉素
D. 氨基糖苷类
E. 氨茶碱
【单选题】
肺脓肿患者经抗生素治疗已3个月,仍咳脓痰,脓腔直径为6cm。下一步治疗应首先考虑___
A. 联合用药
B. 加强体位引流
C. 理疗
D. 手术治疗
E. 加用气管内滴注抗生素
【单选题】
促进排痰的护理措施除外___
A. 体位引流
B. 限制水分
C. 机械吸痰
D. 湿化气道
E. 背部扣击
【单选题】
诊断慢性支气管炎的标准是在排除心.肺其他疾病后,有___
A. 咳嗽.咳痰半年以上
B. 咳嗽.咳痰或伴喘息半年以上
C. 咳嗽.咳痰或伴喘息反复发作每年累计3个月,连续2年或2年以上
D. 咳嗽.咳痰或伴喘息反复发作累计2年或2年以上
E. 咳嗽.咳痰或伴喘息反复发作每年持续3个月,连续2年或2年以上
【单选题】
诊断结核性胸膜炎最主要的依据是___
A. 结核中毒症状明显
B. 胸水为渗出液
C. 患侧呼吸运动减弱
D. 痰或胸水中找到抗酸杆菌
E. 有结核病接触史
【单选题】
肺阿米巴脓肿时痰液可呈___
A. 铁锈样痰
B. 黄脓痰
C. 咖啡样痰
D. 红棕色胶冻样痰
E. 粉红色泡沫痰
【单选题】
关于支气管哮喘的临床表现,下列哪项不正确___
A. 呼气性呼吸困难
B. 两肺布满哮鸣音
C. 奇脉
D. 三凹征
E. 发绀
【单选题】
哮喘速发反应的主要细胞是___
A. 肥大细胞
B. T淋巴细胞
C. 中性粒细胞
D. 嗜酸性粒细胞
E. B淋巴细胞
【单选题】
肺循环血压为体循环血压的___
A. 1/10
B. 1/5
C. 1/2
D. 2倍
E. 5倍
【单选题】
下列哪项是影响抗结核化疗效果的重要因素___
A. 合理的化疗方案和坚持规则用药
B. 病情严重程度
C. 休息
D. 营养
E. 其余选项均不是
【单选题】
肺脓肿患者的热型多为___
A. 稽留热
B. 弛张热
C. 间歇热
D. 回归热
E. 不规则热
【单选题】
患者,男,84岁。因呼吸困难,不能平卧,家属给患者吸氧后来就诊,门诊护士应让患者___
A. 执行医嘱
B. 实施护理程序
C. 做好心理护理
D. 满足患者一切需要
E. 开展健康教育
【单选题】
以下哪一项不是医院工作的特点___
A. 医院工作以患者为中心
B. 医院工作科学性.技术性强
C. 医院工作随机性小.规范性强
D. 医院工作时间性.连续性强
E. 医院工作是脑力劳动和体力劳动相结合的复合型劳动
【单选题】
以下不属于预检分诊的内容是___
A. 询问病史
B. 观察病情
C. 初步判断
D. 分诊指导
E. 科普教育
【单选题】
急救物品准备完好率为___
A. 100%
B. 99%
C. 95%
D. 90%
E. 85%
【单选题】
门诊护士接诊的首要工作是___
A. 卫生指导
B. 健康教育
C. 预检分诊
D. 查阅病历
E. 心理安慰
【单选题】
患者,女,33岁。因食欲不振,厌油,肝区隐痛,面色及巩膜黄染,门诊护士应指导___
A. 提前就诊
B. 到隔离门诊就诊
C. 测量体温
D. 对患者做好耐心的解释工作
E. 健康教育
【单选题】
急诊科预检分诊护士遇有危重患者时应立即___
A. 实施抢救
B. 通知护士长
C. 报告医务科
D. 通知值班医生及护士
E. 通知科主任
【单选题】
下列哪项不引起高渗性缺水___
A. 禁饮.禁食
B. 高热.大量出汗
C. 严重呕吐
D. 鼻饲高浓度的胃肠内营养液
E. 糖尿病
【单选题】
高渗性缺水血清钠浓度高于___
A. 130mmol/L
B. 142mmol/L
C. 155mmol/L
D. 135mmol/L
E. 150mmol/L
【单选题】
凡是血液pH高于下列哪一项,即为碱中毒___
A. 7.25
B. 7.35
C. 7.45
D. 7.55
E. 7.50
【单选题】
慢性肠梗阻患者,10天来每天呕吐大量胃肠液。每天输液为:10%葡萄糖溶液3000ml.5%葡萄糖盐水500ml。患者出现精神萎靡.反应迟钝.乏力。应考虑为患有下列哪一项___
A. 高渗性非酮性昏迷
B. 肺水肿
C. 水中毒
D. 低钾血症
E. 低钙血症
【单选题】
男性,45岁,体重70kg,细胞外液量为___
A. 7000ml
B. 10500ml
C. 12000ml
D. 14000ml
E. 15000ml
【单选题】
低钾血症时补钾,下列错误的是___
A. 5%葡萄糖液500ml,加入钾盐不得超过1.5g
B. 尿量每小时>40ml方可补钾
C. 静脉滴注的速度为20~40mmol/h
D. 每天补钾量在60~80mmol
E. 每天补钾量不能超过5g
【单选题】
治疗重度低渗性缺水,首先应输入的液体是___
A. 5%葡萄糖溶液
B. 0.9%葡萄糖盐水
C. 平衡盐溶液
D. 3%氯化钠溶液
E. 复方氯化钠溶液
【单选题】
静脉补钾时,补钾浓度不能超过___
A. 0.10%
B. 0.4%
C. 0.3%
D. 0.5%
E. 0.15%
【单选题】
血清钠浓度高于多少时诊断为高渗性缺水___
A. 135mmol/L
B. 140mmol/L
C. 145mmol/L
D. 150mmol/L
E. 160mmol/L
【单选题】
酸中毒pH低于___
A. 7.15
B. 7.35
C. 7.55
D. 7.25
E. 7.45
【单选题】
正常成年人24小时水代谢,下列哪项是错误的___
A. 尿量约为1500ml
B. 出入液量基本相等
C. 尿量每24小时最少不能少于300ml
D. 无形失水850ml
E. 内生水约为300ml
【单选题】
血清钾浓度低于多少时称为低钾血症___
A. 7.5mmol/L
B. 6.5mmol/L
C. 5.5mmol/L
D. 4.5mmol/L
E. 3.5mmol/L
【单选题】
等渗性缺水,下列不正确的是___
A. 多发生在消化液的大量丢失
B. 多发生在大面积烧伤后48小时内
C. 口渴.尿少.厌食.恶心.软弱无力
D. 迅速丧失细胞外液达到体重5%时,出现心率加快,血压下降
E. 血清钠.血清钾明显降低
【单选题】
细胞外液中主要的阳离子为___
A. K
B. Na
C. Mg
D. Ca
E. Fe
【单选题】
细胞内液中主要的阳离子为___
A. K
B. Na
C. Ca
D. Mg
E. Fe
【单选题】
低钾血症时不会出现___
A. 腹胀
B. 肌肉软弱无力
C. 感觉异常
D. 恶心呕吐
E. 心率失常
【单选题】
代谢性酸中毒的常见病因中,下列不正确的是___
A. 肾功能不全
B. 长期禁食
C. 腹泻,肠瘘
D. 休克
E. 长期胃肠减压
【单选题】
患者女性,60岁。因胆石症急性发作,呕吐多次,不能进食。目前该患者生命体征平稳,尚无明显缺水征象。比较确切的护理诊断___
A. 体液不足
B. 组织灌注量改变
C. 有体液不足的危险
D. 焦虑
E. 心排血量减少
【单选题】
代谢性酸中毒的最典型表现是___
A. 尿液呈酸性
B. 心率加快,血压降低
C. 呼吸深快,呼气有烂苹果味
D. 严重者神志不清,甚至昏迷
E. 面色潮红
【单选题】
关于补钾下列哪项是错误的___
A. 浓度不超过0.3%
B. 总量不超过8g/d
C. 紧急情况下可少量静脉注射10%氯化钾
D. 速度不超过60滴/分
E. 尿量>40ml/h
【单选题】
患者男性,腹痛.呕吐,肛门停止排气.排便,以急性肠梗阻入院2天。入院后行胃肠减压,患者口渴.皮肤干燥.尿量减少。下列哪一项护理诊断比较合适___
A. 体液不足
B. 活动无耐力
C. 有皮肤受损的危险
D. 营养失调一低于机体需要量
E. 有受伤的危险
【单选题】
高渗性缺水的补液原则,下列哪一项是错误的___
A. 先快后慢
B. 先盐后糖
C. 尿畅补钾
D. 先晶体后胶体
E. 优先口服
