【单选题】
You are configuring a NAT rule on a Cisco ASA ,Which description of a mapped interface is true?___
A. It is mandatory for all firewall modes
B. It is optional in routed mode
C. It is optional in transparent mode
D. It is mandatory for ide ntity NAT only
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which description of the use of a private key is true ?___
A. The sender signs a message using the receivers private key
B. The sender signs a message using their private key
C. The sender encrypts a message using the receivers private key
D. The receiver decrypts a n15ssage using the sender's private key
【单选题】
Which mechanism does the FireAMP Connector use to avoid conflicts with other security applications such as antivirus products ?___
A. Virtualization
B. Containers
C. Sandboxing
D.
E. xclusions
【单选题】
Which network to pology de scribes multiple LANS in a gec? ___
A. SOHO
B. MAN
C. pan
D. CAN
【单选题】
Which statement represents a difference between an access list on an aSa versus an access list on a router?___
A. The asa does not support number access lists
B. The aSa does not support standard access list
C. The asa does not ever use a wildcard mask
D. The asa does not support extended access lists
【单选题】
Which command do you enter to verify the status and settings of an iKE Phase 1 tunnel?___
A. show crypto ipsec as output
B. show crypto isakmp
C. show crypto isakmp policy
D. show crypto ipsec transform
【单选题】
Which feature can help a router or switch maintain packet forwarding and protocol states despite an attack or heavy traffic load on the router or switch?___
A. service Policy
B. Control Plane Policing
C. Policy Map
D. Cisco
E. xpress
F. orwarding
【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
推荐试题
【单选题】
患者,男性,46岁。已10余小时未排尿,腹胀,为非尿路阻塞引起的尿潴留,用温水冲洗会阴的目的是___
A. 分散注意力,减轻紧张心理
B. 利用条件反射促进排尿
C. 清洁会阴防止尿路感染
D. 利用温热作用预防感染
E. 使患者感觉舒适
【单选题】
患者,女,55岁。5天未解大便,医嘱用0.2%肥皂液500ml进行大量不保留灌肠。进行灌肠时,护士应为患者安置 ___
A. 平卧位
B. 屈膝仰卧位
C. 左侧卧位
D. 右侧卧位
E. 俯卧位
【单选题】
患者,男性,88岁。被诊断为尿失禁,尿失禁患者的护理不妥的是___
A. 给予患者安慰与鼓励
B. 作好皮肤护理防止压疮
C. 控制饮水,减少尿量
D. 酌情留置导尿管
E. 指导患者锻炼盆底肌肉
【单选题】
患者,女性,67岁。昨日入院被诊断为膀胱肿瘤,遵医嘱给予患者采用导尿术,下列关于导尿操作方法错误的是 ___
A. 患者取仰卧屈膝位
B. 保护患者的隐私
C. 由内向外自上而下消毒外阴
D. 导尿管插入尿道4~6cm
E. 误入阴道应拔管重插
【单选题】
患者,男性,81岁。因尿潴留急诊入院,给患者导尿时,首次放出尿量不应超过___
A. 500ml
B. 800ml
C. 1000ml
D. 1500ml
E. 2000ml
【单选题】
患者,男性,68岁。因阿米巴痢疾需作保留灌肠,置右侧卧位的目的是___
A. 便于护士操作
B. 患者感觉舒适
C. 促进灌肠液排出
D. 减轻不良反应
E. 提高治疗效果
【单选题】
患者,男性,65岁。遵医嘱给予导尿,护理留置导尿患者的措施错误的是___
A. 集尿袋需每两天更换一次
B. 每日定时消毒尿道口
C. 每周更换导尿管一次
D. 观察和记录尿液的情况
E. 集尿袋位置应低于耻骨联合
【单选题】
患者,女性,39岁。遵医嘱给予保留灌肠,则其保留灌肠的溶液量不宜超过___
A. 50ml
B. 100ml
C. 150ml
D. 200ml
E. 500ml
【单选题】
患者,男性,65岁。遵医嘱给予导尿,由于长期留置导尿管患者尿液出现浑浊、沉淀或结晶ying___
A. 多饮水,膀胱冲洗
B. 经常更换卧位
C. 膀胱内滴药
D. 热敷下腹部
E. 经常清洁尿道口
【单选题】
患者,女性,39岁,遵医嘱给予保留灌肠,保留灌肠液应保留的时间是 ___
A. 10min
B. 20min
C. 30min
D. 40min
E. 60min以上
【单选题】
患者,女性,47岁。肝昏迷,为患者灌肠时不宜用肥皂水,其原因是___
A. 防止发生腹胀
B. 防止发生酸中毒
C. 院止对肠黏膜的刺激
D. 减少氨的产生与吸收
E. 避免引起顽固性腹泻
【单选题】
患者,男性,45岁,膀胱高度膨胀且极度虚弱,一次放尿过多可导致血尿,其原因是 ___
A. 腹压急剧下降,致大量血液滞留于腹腔血管内
B. 膀胱内压突然降低,导致膀胱黏膜急剧充血
C. 操作过程中损伤尿道内口
D. 尿道黏膜发生损伤
E. 操作中损伤输尿管
【单选题】
患者,女,30岁。确诊为无尿,无尿是指24小时尿量少于___
A. 80ml
B. 100ml
C. 70ml
D. 50ml
E. 17ml
【单选题】
患者,男性,66岁。因直肠癌将于次日手术,手术前做肠道清洁准备,护士正确的做法是 ___
A. 行大量不保留灌肠一次,排出粪便
B. 行小量不保留灌肠一次,排出粪便
C. 行保留灌肠一次、刺激肠蠕动,促进排便
D. 反复多次行大量不保留灌肠,至排出澄清液
E. 采用开塞露通便法,排出粪便及气体
【单选题】
排便失禁的患者的护理重点是___
A. 保护臀部,防止发生压疮
B. 给予患者高蛋白饮食
C. 认真观察排便时的心理反应当
D. 鼓励患者多饮水
E. 观察记录粪便性质、颜色和量
【单选题】
患者,女性,32岁。不慎割破手指,医嘱TAT肌内注射,立刻执行。患者行TAT过敏试验,结果阳性,正确的做法是___
A. 禁用TAT注射
B. 备好抢救物品,直接注射TAT
C. 注射肾上腺素等药物抗过敏
D. 采用脱敏疗法注射TAT
E. 再做过敏试验并用生理盐水做对照试验
【单选题】
患者,男,36岁,结核病,医嘱链霉素治疗,该患者在治疗过程中出现全身麻木、无力、抽搐、听力下降,此时可选用的药物是___
A. 10%葡萄糖酸钙
B. 0.1%肾上腺素
C. 新斯的明
D. 山梗茶碱
【单选题】
李先生,38岁,该病人去年注射青霉素后引起哮喘,此次入院应___
A. 直接给药
B. 禁止做青霉素过敏试验
C. 皮试后注意观察
D. 青霉素常规皮试
E. 皮试同时作对照试验
【单选题】
下列给药的途径中,药物吸收最快的是___
A. 肌内注射
B. 直肠给药
C. 口服给药
D. 吸入给药
E. 舌下给药
【单选题】
护士指导患者服用硫酸亚铁,发药时应提醒患者___
A. 等待患者服下后离开
B. 嘱咐患者服药后不要饮茶
C. 嘱咐患者多饮水
D. 嘱咐患者不宜多饮水
E. 发药前测脉搏
【单选题】
患者,女性,24岁。肺炎,医嘱青霉素治疗。患者在青霉素皮试后2分钟突然出现休克,护士首先应___
A. 观察生命体征
B. 应用升压药
C. 让患者平卧
D. 通知家属
E. 给患者吸氧
【单选题】
王某,青霉素皮试呈阳性反应,下列措施哪项错误___
A. 报告医生,修改治疗方案
B. 告知病人、家属,以后要再用青霉素一定重做试敏
C. 在体温单、医嘱单醒目注明青霉素阳性标记
D. 在病历卡、床头卡、门诊卡及注射卡醒目注明青霉素阳性标记
E. 做好急救准备
【单选题】
关于TAT脱敏注射法,正确的是___
A. 分2次、量由小到大、每隔20分钟注射1次
B. 分3次、量由小到大、每隔20分钟注射1次
C. 分3次、量平均、每隔20分钟注射1次
D. 分4次、量由小到大、每隔20分钟注射1次
E. 分4次、量平均、每隔20分钟注射1次
【单选题】
先生,男性,48岁。因咳嗽发热前来就诊,医嘱给予青霉素80万U肌内注射,每日2次。皮试后5分钟,患者出现胸闷、气急伴濒危感,面色苍白出冷汗,皮肤瘙痒。考虑患者出现了___
A. 呼吸道过敏反应
B. 血清病型反应
C. 青霉素毒性反应
D. 青霉素过敏性休克
E. 皮肤过敏反应
【单选题】
先锋霉素皮试液的浓度为每毫升___
A. 50μg
B. 100μg
C. 200μg
D. 250μg
E. 500μg
【单选题】
关于碘过敏试验,正确的是___
A. 静脉注射造影剂前不用做皮内试验
B. 试验方法包括口服法、眼结膜试验法
C. 皮内注射试验时皮丘直径超过2cm即可判断为阳性
D. 口服后出现眩晕、心慌等表现即可判断为阳性
E. 过敏试验阴性者,造影时不会发生过敏反应
【单选题】
患儿,2岁,因病毒性腹泻需为其做肌内注射,护士操作错误的是___
A. 刺入针梗的1/2
B. 选择臀大肌注射
C. 注射时固定肢体
D. 注射时固定针头
E. 注射时分散患儿的注意力
【单选题】
臀大肌肌内注射时,可使局部肌肉放松的体位是___
A. 侧卧位,下腿伸直
B. 侧卧位,上腿伸直
C. 俯卧位,足跟相对
D. 仰卧位,下肢放松
E. 侧位为,双腿屈曲
【单选题】
患者,男性,24岁。结核病,医嘱链霉素治疗,链霉素皮试发生过敏性休克而出现中枢神经系统症状,其原因是___
A. 肺水肿
B. 肾衰竭
C. 脑组织缺氧
D. 有效循环血容量锐减
E. 毛细血管扩张,通透性增加
【单选题】
下列皮试液,1ml内含药物剂量,错误的___
A. 青霉素:500u
B. 链霉素:2500u
C. 破伤风抗毒素:15IU
D. 先锋霉素:500ug
E. 普鲁卡因:2.5mg
【单选题】
凝血因子缺乏患者最适宜输入___
A. 红细胞悬液
B. 库存血
C. 新鲜血浆
D. 白蛋白
E. 水解蛋白
【单选题】
患者,男性,65岁。确诊肺心病20余年,今晨因呼吸困难伴喘息加重急诊人院,输液过程中,突然出现胸闷、咳嗽、咯粉红色泡沫样痰,听诊两肺满布湿啰音,心率快且律不齐,该患者可能发生___
A. 心绞痛
B. 心肌梗死
C. 过敏反应
D. 肺栓塞
E. 急性肺水肿
【单选题】
患者,男性,78岁。因上呼吸道感染诱发慢性阻塞性肺病急性发作,人院后给予抗感染、平喘、祛痰治疗,输液总量为800ml,计划5小时输完,输液器滴系数为15,每分钟滴数为___
A. 30滴
B. 35滴
C. 40滴
D. 45滴
E. 50滴
【单选题】
患者,男性,45岁。护士为其静脉注射25%葡萄糖溶液时,患者自述疼痛,推注时稍有阻力,推注部位局部隆起,抽无回血,此情况应考虑是___
A. 静脉痉挛
B. 针头部分阻塞
C. 针头滑出血管外
D. 针头斜面紧贴血管壁
E. 针头斜面部分穿透血管壁
【单选题】
患者,女性,18岁。因急性淋巴细胞白血病行静脉输血治疗,输血约15ml后,主诉头部胀痛、四肢麻木、腰背部剧烈疼痛及胸闷,继而出现酱油色尿及黄疸,此时患者可能发生___
A. 空气栓塞
B. 急性肺水肿
C. 溶血反应
D. 枸櫞酸钠中毒反应
E. 过敏反应
【单选题】
患者,女性,74岁。输液过程中发生肺水肿,吸氧时需用20%~30%乙醇湿化,其目的是___
A. 减低肺泡表面张力
B. 消毒吸入的氧气
C. 使患者呼吸道湿润
D. 使痰液湿薄,易咳出
E. 减低肺泡内泡沫表面张力
【单选题】
对维持血浆胶体渗透压、增加血容量、升高血压有显著效果的溶液是___
A. 林格液
B. 生理盐水
C. 5%葡萄糖溶液
D. 10%葡萄糖溶液
E. 中分子右旋糖酐
【单选题】
使用前需放在37℃温水中提温的血液制品是___
A. 普通血浆
B. 干燥血浆
C. 冰冻血浆
D. 新鲜血
E. 库存血
【单选题】
患者,女性,28岁。手术后大量输血,现患者出现手足抽搐、血压下降,可静脉缓慢注射___
A. 10%氯化钙10ml
B. 4%碳酸氢钠10m
C. 0.9%氯化钠10ml
D. 盐酸肾上腺素2ml
E. 地塞米松5mg
【单选题】
发生溶血反应后,为增加血红蛋白在尿中的溶解度,常用___
A. 枸櫞酸钠
B. 氯化钠
C. 碳酸氢钠
D. 乳酸钠
E. 葡萄糖酸钙
