【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
【单选题】
Which technology can you implement to centrally mitigate potential threats when users on your network download files that might be malicious?___
A. Enable file-reputation services to inspect all files that traverse the company network and block files with low reputation scores
B. Verify that the compa ny IpS blocks all known malicious website
C. Verity that antivirus software is installed and up to date for all users on your network
D. Implement URL filtering on the perimeter firewall
【单选题】
What is the most common implementation of PaT in a standard networked environment?___
A. configuring multiple external hosts to join the self zo ne and to communicate with one another
B. configuring multiple internal hosts to communicate outside of the network using the outside interface IP address
C. configuring multiple internal hosts to communicate outside of the network by using the inside interface IP address
D. configuring an any any rule to enable external hosts to communicate inside the network
【单选题】
Which component of a bYod architecture provides aAa services for endpoint access ?___
A. Integrated Services Router
B. access point
C. ASA
D. Identity Services
E. ngine
【单选题】
You are configuring a NAT rule on a Cisco ASA ,Which description of a mapped interface is true?___
A. It is mandatory for all firewall modes
B. It is optional in routed mode
C. It is optional in transparent mode
D. It is mandatory for ide ntity NAT only
【单选题】
Which description of the use of a private key is true ?___
A. The sender signs a message using the receivers private key
B. The sender signs a message using their private key
C. The sender encrypts a message using the receivers private key
D. The receiver decrypts a n15ssage using the sender's private key
【单选题】
Which mechanism does the FireAMP Connector use to avoid conflicts with other security applications such as antivirus products ?___
A. Virtualization
B. Containers
C. Sandboxing
D.
E. xclusions
【单选题】
Which network to pology de scribes multiple LANS in a gec? ___
A. SOHO
B. MAN
C. pan
D. CAN
【单选题】
Which statement represents a difference between an access list on an aSa versus an access list on a router?___
A. The asa does not support number access lists
B. The aSa does not support standard access list
C. The asa does not ever use a wildcard mask
D. The asa does not support extended access lists
【单选题】
Which command do you enter to verify the status and settings of an iKE Phase 1 tunnel?___
A. show crypto ipsec as output
B. show crypto isakmp
C. show crypto isakmp policy
D. show crypto ipsec transform
【单选题】
Which feature can help a router or switch maintain packet forwarding and protocol states despite an attack or heavy traffic load on the router or switch?___
A. service Policy
B. Control Plane Policing
C. Policy Map
D. Cisco
E. xpress
F. orwarding
【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
推荐试题
【单选题】
对母乳性黄疸的正确指导是___
A. 立即给予牛乳喂养
B. 口服葡萄糖溶液
C. 给予乳粉喂养
D. 暂停母乳待黄疸消退后再喂母乳
E. 母乳与牛乳交替哺喂
【单选题】
不属于新生儿特殊生理状态的表现是___
A. 生理性体重下降
B. 生理性黄疸
C. 生理性贫血
D. 乳腺肿大
E. 假月经
【单选题】
急性菌痢肠道病变的主要部位在___
A. 结肠
B. 回盲部
C. 乙状结肠
D. 乙状结肠和直肠
E. 十二指肠
【单选题】
新生儿寒冷损伤综合征复温原则是___
A. 逐步升温,循序渐进
B. 供给足够液量,缓慢升温
C. 立即升温,使体温迅速达到正常
D. 立即放入暖箱,每30分钟提高箱温1℃
E. 每小时提高箱温1℃,8小时体温达正常
【单选题】
百日咳最常见的并发症是___
A. 细菌性肺炎
B. 百日咳脑病
C. 手足搐搦症
D. 营养不良
E. 维生素缺乏
【单选题】
对化脓性脑膜炎患儿的处理,正确的是___
A. 保持安静,头侧位以防窒息
B. 硬脑膜下穿刺时应侧卧位,固定头部
C. 重症患儿输液速度宜快,防止休克
D. 颅压高时应适量放出脑脊液
E. 硬脑膜下积液者可穿刺放液,每次不少于30ml
【单选题】
保护易感人群最重要的防疫措施是___
A. 接种疫苗、菌苗、类毒素
B. 注射高效价免疫球蛋白
C. 口服中草药
D. 接种抗毒素
E. 注射丙种球蛋白
【单选题】
下列哪一项不是病毒性心肌炎的护理诊断___
A. 舒适改变
B. 活动无耐力
C. 潜在并发症:心律失常
D. 潜在并发症:心力衰竭
E. 心肌敏感性降低
【单选题】
下列各项中不属于低渗脱水的特点是___
A. 失钠大于失水
B. 主要为细胞外液减少
C. 易出现休克
D. 黏膜于燥重,口渴重
E. 多见于营养不良小儿患者
【单选题】
不符合中毒型菌痢的临床特点是___
A. 起病急
B. 腹痛、腹泻、里急后重
C. 呼吸衰竭
D. 高热、惊厥
E. 周围循环衰竭
【单选题】
按A系统隔离法,艾滋病病室外应设置___
A. 蓝色标志
B. 红色标志
C. 绿色标志
D. 黄色标志
E. 灰色标志
【单选题】
生理性腹泻,下列叙述错误的是___
A. 多见于出生6个月以内的婴儿
B. 小儿虚胖,常伴湿疹
C. 除大便次数增加外,还有其他生发育不正常
D. 生后不久即出现腹泻
E. 无其他症状,食欲好,生长发育正常
【单选题】
在正常安静的情况下,1岁小儿每分钟的呼吸次数为___
A. 45~55次
B. 40~45次
C. 30~40次
D. 25~30次
E. 20~25次
【单选题】
下列哪一点不是小儿生长发育的一般规律___
A. 由上至下
B. 由粗到细
C. 由远到近
D. 由低级到高级
E. 由简单到复杂
【单选题】
儿科护理学所涉及的范围包括___
A. 儿科专科护理
B. 社会学
C. 心理学
D. 教育学
E. 以上都是
【单选题】
婴幼儿期引起支气管肺炎的细菌主要是___
A. 金黄色葡萄球菌
B. 变形杆菌
C. 脑膜炎双球菌
D. 肺炎链球菌
E. 肺炎球菌
【单选题】
以下哪项不符合肾炎性肾病___
A. 血清补体下降
B. 肾功能障碍
C. 多为选择性蛋白尿
D. 高血压
E. 血尿
【单选题】
水痘的治疗,错误的措施是___
A. 口服抗病毒药物
B. 皮肤瘙痒者可用抗组织胺药物
C. 体温发热者宜用阿司匹林降温
D. 口腔黏膜疹用盐水漱口
E. 皮肤破溃处宜用甲紫
【单选题】
5岁患儿,排不消化稀水便2天,每天3~6次,偶吐奶,神志清,前囟及眼窝凹陷。血清钠140mmol/L,CO结合力(COCP)14.2mmol/L。应选用下列哪种治疗方法___
A. 4:3:2液
B. 2:1等张含钠液
C. 3:2:1液
D. 口服补液盐
E. 生理维持液
【单选题】
重度脱水伴循环障碍扩容段下列治疗不正确的是___
A. 使用2:1等张含钠液补液
B. 液体量为20ml/kg
C. 补液速度为在30~60min内滴入
D. 有重度酸中毒时可用1.4%碳酸氢钠扩容
E. 同时补充氯化钾,浓度<0.3%
【单选题】
引起急性上呼吸道感染的病因,正确的是___
A. 多数为病毒感染
B. 多数为细菌感染
C. 多数先细菌感染后再继发病毒感染
D. 病毒感染中主要是柯萨奇病毒等
E. 细菌感染主要有葡萄球菌
【单选题】
与佝偻病发病有关的因素是___
A. 水质污染
B. 空气污染
C. 食物污染
D. 卫生习惯
E. 睡眠习惯
【单选题】
3岁小儿正常的血压是___
A. 60/40mmHg
B. 11.4/76kPa
C. 13/9kPa
D. 100/60mmHg
E. 110/80mmHg
【单选题】
4个月婴儿,来儿保门诊检查,下列哪项情况可认为发育异常___
A. 乳牙未萌生
B. 后囟已闭合
C. 头尚不能抬起
D. 不能伸手取物
E. 前囟未闭1.5cm×2.0cm
【单选题】
典型痢疾病人粪便镜检结果是___
A. 大量白细胞,少量红细胞
B. 大量脓细胞
C. 大量红细胞
D. 大量红细胞,少量白细胞
E. 大量脓细胞,少量巨噬细胞及红细胞
【单选题】
新生儿败血症的概念错误的是___
A. 缺乏特异性症状
B. 出现黄疸
C. 伴肝脾肿大
D. 合并硬肿症
E. 白色念球菌不引起败血症
【单选题】
百日咳痉咳期的特征是___
A. 阵发性痉咳
B. 发热3~5天
C. 流涕、打喷嚏
D. 眼结膜充血
E. 呕吐、腹泻
【单选题】
于急性粟粒性肺结核以下哪项不符___
A. 是全身粟粒性结核的一部分
B. 是原发综合征发展的后果
C. 主要见于年长儿与成人
D. 应注意与伤寒、败血症等鉴别
E. 确诊靠X线胸片
【单选题】
关于百日咳,错误的概念是___
A. 病人是唯一的传染源
B. 细菌经呼吸道传播
C. 人群普遍易感
D. 病后获持久免疫
E. 抗体能经胎盘传给胎儿
【单选题】
儿科护士应具备的素质___
A. 要有高尚的道德品质
B. 丰富的学识
C. 熟练的操作技巧
D. 有效的人际沟通技巧
E. 以上都是
【单选题】
出生时存在而以后逐渐消失的反射是___
A. 角膜反射
B. 瞳孔对光反射
C. 吞咽反射
D. 拥抱反射
E. 腹壁反射
【单选题】
代谢性酸中毒,呼吸代替的表现是___
A. 呼吸浅而快
B. 呼吸浅而慢
C. 呼吸不规则
D. 呼吸深而快
E. 呼吸深而慢
【单选题】
口服铁剂时促进铁吸收的最佳方法是___
A. 餐前服药
B. 加大剂量
C. 加服维生素C
D. 与牛乳同服
E. 给三价铁
【单选题】
患儿1岁,3天前发热、流涕、咳嗽,今晨发现耳后发际处有红色斑疹,流泪,结膜充血,最大的可能是___
A. 风疹
B. 幼儿急疹
C. 猩红热
D. 上感
E. 麻疹
【单选题】
要使肺炎患儿呼吸功能恢复正常,其关键措施是___
A. 吸氧
B. 保持呼吸道通畅
C. 维持呼吸中枢兴奋
D. 及时消除腹胀
E. 控制感染
【单选题】
某1岁患儿,其母患开放性肺结核,出生时未接种卡介苗,72h前作OT试验1:100浓度,今局部红、硬直径为10mm,宜采用下列哪项措___
A. 接种卡介苗
B. 动态观察
C. 脑部摄片
D. 抗结核治疗
E. 血沉检查
【单选题】
对病儿应实施保护性隔离的疾病是___
A. 上呼吸道感染
B. 缺铁性贫血
C. 佝偻病
D. 接受化疗的白血病
E. 甲状腺功能减退症
【单选题】
流行性腮腺炎的临床表现不包括___
A. 急性起病
B. 病后24h内出现腮腺肿大
C. 腮腺以耳垂为中心,呈弥漫性肿胀,边界不清,表面不红
D. 腮腺导管开口红肿,挤压时可有脓液溢出
E. 腮腺四周的蜂窝组织水肿
【单选题】
5个月患儿,麻疹并发脑炎,应隔离至出疹后___
A. 5天
B. 7天
C. 10天
D. 14天
E. 21天
【单选题】
患儿,女,1岁半,3天前出现哭闹,右耳流脓,现体温39℃,神志不清,出现喷射性呕吐,初步诊断为化脓性脑膜炎,需做腰椎穿刺。此时重要的护理是___
A. 固定患儿屈曲位
B. 安慰家长并说明此项操作的意义和安全性
C. 给患儿备皮
D. 对患儿讲明腰椎穿刺的目的及意义
E. 准备腰椎穿刺包
