【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
【单选题】
Which technology can you implement to centrally mitigate potential threats when users on your network download files that might be malicious?___
A. Enable file-reputation services to inspect all files that traverse the company network and block files with low reputation scores
B. Verify that the compa ny IpS blocks all known malicious website
C. Verity that antivirus software is installed and up to date for all users on your network
D. Implement URL filtering on the perimeter firewall
【单选题】
What is the most common implementation of PaT in a standard networked environment?___
A. configuring multiple external hosts to join the self zo ne and to communicate with one another
B. configuring multiple internal hosts to communicate outside of the network using the outside interface IP address
C. configuring multiple internal hosts to communicate outside of the network by using the inside interface IP address
D. configuring an any any rule to enable external hosts to communicate inside the network
【单选题】
Which component of a bYod architecture provides aAa services for endpoint access ?___
A. Integrated Services Router
B. access point
C. ASA
D. Identity Services
E. ngine
【单选题】
You are configuring a NAT rule on a Cisco ASA ,Which description of a mapped interface is true?___
A. It is mandatory for all firewall modes
B. It is optional in routed mode
C. It is optional in transparent mode
D. It is mandatory for ide ntity NAT only
【单选题】
Which description of the use of a private key is true ?___
A. The sender signs a message using the receivers private key
B. The sender signs a message using their private key
C. The sender encrypts a message using the receivers private key
D. The receiver decrypts a n15ssage using the sender's private key
【单选题】
Which mechanism does the FireAMP Connector use to avoid conflicts with other security applications such as antivirus products ?___
A. Virtualization
B. Containers
C. Sandboxing
D.
E. xclusions
【单选题】
Which network to pology de scribes multiple LANS in a gec? ___
A. SOHO
B. MAN
C. pan
D. CAN
【单选题】
Which statement represents a difference between an access list on an aSa versus an access list on a router?___
A. The asa does not support number access lists
B. The aSa does not support standard access list
C. The asa does not ever use a wildcard mask
D. The asa does not support extended access lists
【单选题】
Which command do you enter to verify the status and settings of an iKE Phase 1 tunnel?___
A. show crypto ipsec as output
B. show crypto isakmp
C. show crypto isakmp policy
D. show crypto ipsec transform
【单选题】
Which feature can help a router or switch maintain packet forwarding and protocol states despite an attack or heavy traffic load on the router or switch?___
A. service Policy
B. Control Plane Policing
C. Policy Map
D. Cisco
E. xpress
F. orwarding
【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
推荐试题
【多选题】
精神分裂症的临床分型有哪些___
A. 单纯性
B. 青春型
C. 紧张型
D. 偏执型
E. 未分型
【多选题】
神经症的临床类型有哪些___
A. 恐惧症
B. 焦虑症
C. 强迫症
D. 躯体形式障碍
E. 神经衰弱
【多选题】
流行性出血热病的“三痛”是指___
A. 头痛
B. 眼眶痛
C. 脚痛
D. 腰痛
E. 牙痛
【多选题】
乙脑极期患者主要有哪些表现___
A. 持续高热
B. 意识障碍
C. 惊厥或抽搐
D. 呼吸衰竭
E. 其他神经系统的症状和体征
【多选题】
惊厥患儿紧急处理措施___
A. 就地抢救
B. 防舌咬伤
C. 保持呼吸道通畅
D. 应用止痉药物
E. 观察病情
【多选题】
化疗药物引起的迟发反应有哪些___
A. 白细胞减少
B. 迟发性恶心
C. 心肝毒性反应
D. 呕吐
E. 心律不齐
【多选题】
新生儿呼吸窘迫综合征严重时的临床表现有哪些___
A. 呼吸浅表
B. 心率加快
C. 呼吸节律不整
D. 四肢松弛
E. 呼气性三凹征
【多选题】
低血糖的临床表现有下列哪些___
A. 脉缓
B. 心慌不安
C. 出汗
D. 精神萎靡
E. 休克
【多选题】
上颌窦穿刺可能发生的并发症是下列哪几项___
A. 出血
B. 血管空气栓塞
C. 皮下气肿
D. 穿通眼眶底及窦外侧壁
E. 窦口黏连
【多选题】
社区康复护理的对象是下列哪些___
A. 残障者
B. 年老体弱者
C. 慢性病患者
D. 急性病患者
E. 健康人群
【多选题】
情志护理的方法有哪些___
A. 说理疏导
B. 释疑解惑
C. 移情相制
D. 暗示疗法
E. 顺情从欲
【多选题】
日光引起的皮肤病按其作用机制可分为___
A. 日晒伤
B. 脂溢性皮炎
C. 光毒反应
D. 光变态反应
E. 角化过度
【多选题】
新生儿氧疗适应症有下列哪些___
A. 缺氧
B. 发绀
C. 窒息
D. 惊厥
E. 中毒
【多选题】
拔牙后的注意事项正确的是下列哪些___
A. 拔牙当天不能漱口
B. 拔牙后咬纱卷或棉球30分钟后吐出,若出血较多可延至1小时
C. 拔牙后24小时内唾液混有淡红色血水是正常现象
D. 拔牙后1小时可进温、凉软食,不宜吃太热,太硬食物
E. 如有明显大出血或疼痛应及时就诊
【多选题】
神经症的基本特征有下列哪些___
A. 起病与心理社会因素有关
B. 病前多有一定的素质和人格基础
C. 表现为脑功能症状、情绪症状等
D. 一般无器质性病变
E. 病人自知力不存在
【多选题】
如何评价母乳是否足够___
A. 每天换6次以上湿尿布
B. 婴儿睡眠安静、吸允后自动放下乳头
C. 按需哺乳6-8次/日或更多
D. 生理性体重下降不超过10%,10天内回升
E. 每周平均增重100G左右
【多选题】
从哪些方面观察脑水肿患者病情___
A. 头痛
B. 视乳头水肿
C. 意识障碍
D. 肌张力减弱
E. 血压增高
【多选题】
哪些不符合烧伤休克期的补液原则___
A. 先胶后晶
B. 先晶后胶
C. 先盐后糖
D. 先慢后快
E. 交替输入
【多选题】
康复护理常用的评定有哪些___
A. 疼痛评定
B. 压疮评定
C. 情绪测验
D. 排便障碍评定
E. 心理学评定
【多选题】
正常新生儿出生后血液循环发生巨大变化,这是因为___
A. 肺血管阻力降低,肺血流增加
B. 脐带结扎
C. 回流至右心房血量明显增多,体循环压力上升
D. 卵圆孔和动脉导管出现功能性关闭
E. 回流至左心房血量明显增多,肺循环压力上升
【多选题】
抢救急危患者未能及时书写护理病历的处理,正确的是下列那几项___
A. 应在抢救结束后6小时内据实补记
B. 抢救记录时间要具体到分钟
C. 于护理记录单的病情与措施栏内第一行顶格书写
D. 记录时间写补记时间
E. 按医嘱病程记录
【多选题】
人类年龄划分一般分为下列哪几种___
A. 日历年龄
B. 生物年龄
C. 心理年龄
D. 社会年龄
E. 实际年龄
【多选题】
使用约束带注意事项___
A. 使用前应耐心向患者及家属解释清楚
B. 约束带越近越好
C. 及时调整松紧程度以防止损伤皮肤及肢体功能
D. 套结处加衬垫
E. 可以只约束单侧肢体
【多选题】
治疗有机磷农药中毒时,出现阿托品化的临床表现包括___
A. 颜面潮红
B. 皮肤、口腔干燥
C. 心率减慢
D. 瞳孔缩小
E. 体温降低
【多选题】
体格检查的基本方法有哪些___
A. 视诊
B. 触诊
C. 叩诊
D. 听诊
E. 嗅诊
【多选题】
气管切开的并发症有哪些___
A. 感染
B. 出血
C. 窒息
D. 气管食管瘘
E. 气胸
【多选题】
康复医学的主要内容包括哪些___
A. 康复指导
B. 康复评定
C. 康复治疗
D. 康复护理
E. 康复预防
【多选题】
小儿氧中毒可引起下列哪些病症___
A. 眼晶体后纤维增生
B. 窒息
C. 发热
D. 中枢神经系统损伤
E. 慢性肺功能不全
【多选题】
慢性扁桃体炎的并发症有哪些___
A. 风湿性关节炎
B. 失声
C. 风湿性心脏病
D. 肾炎
E. 低热
【单选题】
NPW生产方式对制程中品质要求不包括 ___
A. 不制造不良;
B. 不运输不良;
C. 不流出不良;
D. 不接受不良
【单选题】
NPW生产方式中贯彻“人性化”不包括 ___
A. 确保安全;
B. 营造合适的工作环境;
C. 让员工得到更多回报;
D. 减少作业负荷
【单选题】
NPW生产方式中考虑地球环境的叙述不包括 ___
A. 控制全球变暖(减少CO2);
B. 有效利用资源;
C. 减少负荷物质;
D. 使用低成本资源
【单选题】
NPW生产方式中对时间同步叙述不正确的是 ___
A. 在客户要求的期限内提供商品、服务;
B. 不懈接近客户要求;
C. 为客户提供高品质服务;
D. 缩短生产周期和商品开发周期
【单选题】
标准作业设定的时候,在进行该作业时不可或缺的各种基准都必须纳入进去一定进行设定: ___
A. 设备的条件;
B. 主要步骤;
C. 作业量;
D. 要点
【单选题】
现场的职责有几个? ___
A. 1个;
B. 2个;
C. 3个;
D. 4个
【单选题】
本公司的产品是以什么为中心,排除浪费? ___
【单选题】
标准作业设定的范围,除了主体作业外还要把什么作业设定? ___
A. 设备作业
B. 品质检查
C. 返修作业
D. 附随作业
【单选题】
提高公司营业利益的三种方法之一是: ___
A. 减少销售量;
B. 增加销售量;
C. 增加成本;
D. 降低售价
【单选题】
价格是由( )的供给及需求所决定的 ___
A. 市场;
B. 公司;
C. 部门;
D. 个人
【单选题】
科长的工资是() ___
A. 固定费用
B. 变动费用
C. 直接劳务费
D. 加工费用
