【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
【单选题】
Which technology can you implement to centrally mitigate potential threats when users on your network download files that might be malicious?___
A. Enable file-reputation services to inspect all files that traverse the company network and block files with low reputation scores
B. Verify that the compa ny IpS blocks all known malicious website
C. Verity that antivirus software is installed and up to date for all users on your network
D. Implement URL filtering on the perimeter firewall
【单选题】
What is the most common implementation of PaT in a standard networked environment?___
A. configuring multiple external hosts to join the self zo ne and to communicate with one another
B. configuring multiple internal hosts to communicate outside of the network using the outside interface IP address
C. configuring multiple internal hosts to communicate outside of the network by using the inside interface IP address
D. configuring an any any rule to enable external hosts to communicate inside the network
【单选题】
Which component of a bYod architecture provides aAa services for endpoint access ?___
A. Integrated Services Router
B. access point
C. ASA
D. Identity Services
E. ngine
【单选题】
You are configuring a NAT rule on a Cisco ASA ,Which description of a mapped interface is true?___
A. It is mandatory for all firewall modes
B. It is optional in routed mode
C. It is optional in transparent mode
D. It is mandatory for ide ntity NAT only
【单选题】
Which description of the use of a private key is true ?___
A. The sender signs a message using the receivers private key
B. The sender signs a message using their private key
C. The sender encrypts a message using the receivers private key
D. The receiver decrypts a n15ssage using the sender's private key
【单选题】
Which mechanism does the FireAMP Connector use to avoid conflicts with other security applications such as antivirus products ?___
A. Virtualization
B. Containers
C. Sandboxing
D.
E. xclusions
【单选题】
Which network to pology de scribes multiple LANS in a gec? ___
A. SOHO
B. MAN
C. pan
D. CAN
【单选题】
Which statement represents a difference between an access list on an aSa versus an access list on a router?___
A. The asa does not support number access lists
B. The aSa does not support standard access list
C. The asa does not ever use a wildcard mask
D. The asa does not support extended access lists
【单选题】
Which command do you enter to verify the status and settings of an iKE Phase 1 tunnel?___
A. show crypto ipsec as output
B. show crypto isakmp
C. show crypto isakmp policy
D. show crypto ipsec transform
【单选题】
Which feature can help a router or switch maintain packet forwarding and protocol states despite an attack or heavy traffic load on the router or switch?___
A. service Policy
B. Control Plane Policing
C. Policy Map
D. Cisco
E. xpress
F. orwarding
【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
推荐试题
【多选题】
遗失物品需要通过铁路向失主所在站转送时,内附___,物品(ABC ),填写客运记录和行李、包裹交接证,交(ABC )签收。
A. 清单
B. 加封
C. 列车行李员
D. 明细账
【多选题】
遗失物品中的___、(ABCD )或(ABCD )的物品、机要文件应立即移交公安机关或有关部门处理,(ABCD )转送。
A. 危险品
B. 国家禁止
C. 限制运输
D. 不办理
E. 办理
【多选题】
列车停运且不能在短时间内恢复运行时,___应做好服务工作,解决旅客的困难,做好(ACD )工作,必要时,向地方政府报告(ACD )。
A. 站车
B. 车站
C. 饮食供应
D. 请求援助
E. 食品发放
【多选题】
在发站或由中途站返回发站停止旅行时,退还全部票价,其中包括在列车上补购的车票,但___、(ABC )和(ABC )不退。
A. 罚款
B. 手续费
C. 携带品超重、超大补收的费用
D. 已使用至到站的车票
【多选题】
停止运行站和被阻列车应在车票背面注明“___、(ABC )、(ABC )”字样或贴同样内容的小条,
A. 日期
B. 原因
C. 返回××站
D. 变更经由××站
【多选题】
铁路组织旅客绕道运输乘坐原座别、铺别时票价___,变更座别、铺别时,(ABC )。中途下车(ABC )。
A. 不补不退
B. 补收或退还差额
C. 车票失效
D. 退还票价差额
【多选题】
铁路客运运价规则所指客运运价包括___和。
A. 旅客票价
B. 票价
C. 行李、包裹运价
D. 包裹运价
E. 行李运价
【多选题】
国家铁路的___和(AC )由国务院铁路主管部门拟定,报国务院批准。
A. 旅客票价率
B. 旅客票价
C. 行李、包裹运价率
D. 行李、包裹运价
【多选题】
对在铁路局管内运行的旅客列车的___,可根据具体情况,赋予(AD )自行浮动的权力。
A. 票、运价
B. 票价、价格
C. 站段
D. 铁路局
【多选题】
国家铁路的行李、包裹运价及客运杂费的尾数保留至___。对浮动票价应分别按票种处理(AD )。
【多选题】
铁路客运运价规则用语:“___”、“(ABCD )”、“(ABCD )”、“以外”、“(ABCD )”、“以后”——均包括本数。
【多选题】
铁路客运运价规则用语:“___”、“大于”、“(ABCD )”、“小于”、“(ABCD )”、“(ABCD )”——不包括本数。
【多选题】
___及(BD )线路时,应按规定的接算站接算.
A. 站间
B. 跨两条及其以上
C. 跨两条
D. 发到站间
【多选题】
旅客票价里程,没有直达列车的,按中转次数___的列车径路计算,中转次数相同的,按(AB )列车径路计算。
【多选题】
计算旅客票价的起码里程为:客票___千米;空调票(ABD )千米;加快票(ABD )千米;卧铺票(ABD )千米.
A. 20
B. 100
C. 200
D. 400
【多选题】
计算行李、包裹运价的起码里程为:行李___千米;包裹(AB )千米。
A. 20
B. 100
C. 200
D. 400
【多选题】
以下说法正确的是___
A. 空调票的起码里程为20KM
B. 客票的起码里程为20KM
C. 客票的起码里程为40KM
D. 加快票的起码里程为100KM
【多选题】
旅客客票票价:分为___、(AD )客票票价。
【多选题】
旅客附加票票价:分为___、(CDE )、(CDE )票票价。
A. 普快
B. 快速
C. 加快
D. 卧铺
E. 空调
F. 硬卧
【多选题】
旅客票价按照旅客___和(AC ),采取递远递减的办法确定。
A. 旅行的距离
B. 距离
C. 不同的列车设备条件
D. 设备条件
【多选题】
儿童票可享受___、(ACD )和(ACD )的优惠
A. 客票
B. 软硬座车票
C. 加快票
D. 空调票
【多选题】
免费乘车的儿童单独使用卧铺时,可享受___。
A. 半价客票
B. 半价空调票
C. 半价卧铺票
D. 全价卧铺票
【多选题】
身高1.2~1.5m的儿童乘车时,可购买半价___
A. 硬座票
B. 加快票
C. 空调票
D. 软座票
【多选题】
儿童票是指半价的___
A. 客票
B. 加快票
C. 卧铺票
D. 空调票
【多选题】
伤残军人半价票包括___。
A. 半价硬座客票
B. 半价软座客票
C. 半价加快票
D. 半价空调票
【多选题】
优惠票包括___
A. 儿童票
B. 学生票
C. 伤残军、警票
D. 团体旅客票
【多选题】
学生票和儿童票的相同点在于___
A. 客票
B. 卧铺票
C. 空调票
D. 加快票
【多选题】
残疾军人票和儿童票的相同点在于___
A. 客票
B. 卧铺票
C. 空调票
D. 加快票
【多选题】
学生票和残疾军人票的相同点在于___
A. 客票
B. 卧铺票
C. 空调票
D. 加快票
【多选题】
学生票可享受___、(BCD )和(BCD )的优惠
A. 硬座车票
B. 硬座客票
C. 加快票
D. 空调票
【多选题】
享受优惠的儿童、学生、伤残军人乘坐___、(AD )时,仍按硬座半价计算,不再减价。
A. 市郊
B. 硬座车
C. 普客车
D. 棚车
【多选题】
下列行李、包裹规定计价重量正确的是___
A. 残疾人用车25kg/辆
B. 自行车25kg/辆
C. 助力自行车40kg/辆
D. 两轮轻便摩托车50kg/辆
【多选题】
按保价运输的行李、包裹核收保价费。行李保价费按声明价格的___、包裹保价费按声明价格的(AB )计算。
A. 0.50%
B. 0.01
C. 0.5
D. 1
【多选题】
___是特定运价
A. 包车费
B. 租车费
C. 挂运费
D. 行驶费
【多选题】
特定运价包括___。
A. 挂运运价
B. 租车运价
C. 包车运价
D. 空驶运价
【多选题】
包用座车时,应按座车___核收全价客票票价
【多选题】
___可以采用过轨运输。
A. 国家铁路
B. 合资铁路
C. 地方铁路
D. 俄罗斯铁路
【多选题】
" 客运杂费是指在铁路运输过程中,除去___、(BC )以外,铁路运输企业向旅客、托运人、收货人提供的辅助作业、劳务及物耗等所收的费用。
A. 旅客客票票价
B. 旅客车票票价
C. 行李包裹运价
D. 行包运价
【多选题】
客运杂费的___和(AD )由国务院铁路主管部门制定,统一规定的部分杂费收费标准见附表3。
A. 收费项目
B. 项目
C. 标准
D. 收费标准
【多选题】
迟交票款、运费、杂费时从应收该项费用之___起至付款日止,每迟交一日,按迟交总额的(BD )核收运输费用迟交金。
A. 当日
B. 次日
C. 0.02
D. 0.01
