【单选题】
Which feature can help a router or switch maintain packet forwarding and protocol states despite an attack or heavy traffic load on the router or switch?___
A. service Policy
B. Control Plane Policing
C. Policy Map
D. Cisco
E. xpress
F. orwarding
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
推荐试题
【单选题】
area控制器调节用的基本温度是___
A. A.最低的area温度
B. B.用最高的area温度
C. C.用三个仓的中间值
D. D.用三个仓的平均值
【单选题】
以下哪个传感器会送压缩机过热信号给组件控制器___
A. A.压缩机过热传感器
B. B.压缩机温度传感器
C. C.B都不是
D. D.B都是
【单选题】
当组件出口温度大于95摄氏度,就会触发组件过热警告,请问这个温度信号是由哪个传感器送出的___
A. A.压缩机过热传感器
B. B.组件出口温度传感器
C. C.水分离器出口温度传感器
D. D.压缩机温度传感器
【单选题】
当座舱高度大于9550英尺的时候,座舱压力控制器送信号到哪个控制器来触发旅客信号?___
A. A.FWC
B. B.CFDIU
C. C.CIDS
D. D.AIDS
【单选题】
对外流valve,以下说法不正确的是___
A. A.外流valve有三个马达
B. B.外流valve有两个电器盒
C. C.外流valve有一个反馈组件用于在自动和人工位反馈valve位置
D. D.外流valve可以自动控制及人工控制
【单选题】
关于空调系统的控制器___
A. A.两个空调组件控制器可以互换
B. B.area控制器和货舱加温控制器可以互换
C. C.组件控制器和area控制器可以互换
D. D.座舱压力控制器可以和组件控制器互换
【单选题】
关于外流valve的描述,以下哪个是正确的___
A. A.1号马达由1号控制器控制
B. B.2号马达由2号控制器控制
C. C.3号马达由座舱增压面板控制
D. D.以上都对
【单选题】
混合总管可以从哪里接近?___
A. A.前货舱前壁板
B. B.前货舱后壁板
C. C.后货舱前壁板
D. D.后货舱后壁板
【单选题】
ECAM哪几个页面可以看到空调系统的数据___
A. A.引气和空调页面
B. B.座舱压力页面
C. C.巡航页面
D. D.以上都可以
【单选题】
EIU和空调系统的控制器之间是如何进行数据交换的___
A. A.EIU送信号给组件控制器起飞推力的信号以关闭充压进气门
B. B.EIU送高压燃油valve信号给area控制器以计算引气需求
C. C.area控制器送信号给EIU,引气流量增加时增加发动机推力
D. D.以上都是
【单选题】
当厕所和厨房风扇失效时___
A. A.客舱温度调节失效
B. B.客舱管道温度固定在15摄氏度
C. C.驾驶仓温度调节正常
D. D.以上都对
【单选题】
当接通空调面板的RAMAIR电门时___
A. A.DITCHING电门在正常位时,充压进气门打开
B. B.当客舱压差小于1时,外流valve完全打开
C. C.以上都不是
D. D.A+B
【单选题】
以下说法不正确的是___
A. A.安全valve有两个,一个防止正压超压,一个防止负压超压
B. B.后货舱门打开是,货舱加温照常工作
C. C.客舱温度到达15000时,外流valve完全关闭
D. D.地面,电子舱构型只能是开路构型
【单选题】
组件控制器控制组件充压进气门关闭,需要那些信号___
A. A.LGCIU2
B. B.BSCU
C. C.EIU
D. D.以上都是
【单选题】
当DITCHING电门接通,以下哪个说法是错误的___
A. A.充压进气门会关闭
B. B.电子通风排气valve会关闭
C. C.无论是否在在自动位,外流valve都会关闭
D. D.在人工位,外流valve不会关闭
【单选题】
假如空调组件有故障,应该做哪个测试___
A. A.温度控制测试
B. B.座舱压力测试
C. C.货舱加温测试
D. D.组件控制器测试
【单选题】
如果飞机反映有组件过热信息___
A. A.首先应该察看MCDU确认是组件出口过热还是涡轮出口过热以及有无故障信息
B. B.首先应该察看故障历史确认出现故障的航段
C. C.首先应该察看故障历史确认出现故障的时间
D. D.首先应该做cpc测试
【单选题】
如果想在AIDS上看组件流量的实时数据,应该输入什么代码?___
A. A.PF
B. B.FP
C. C.PT
D. D.DP
【单选题】
如果有PACK1REGULFAULT警告信息和“p1cont”故障信息,应该首先考虑哪个LRU?___
A. A.组件控制器
B. B.area控制器
C. C.FCV
D. D.配平valve
【单选题】
安全valve的功用?___
A. A.防止反压超压
B. B.代替外流valve
C. C.防止正,反压超压.
D.
【单选题】
飞机高度39000英尺,客舱高度最大为:___
A. A.8000英尺
B. B.12000英尺
C. C.800英尺.
D.
【单选题】
如从APU引气(APU引气valve打开),空调组件的流量自动选择在:___
A. A 高位
B. B 正常位
C. C 低位
D. D以上都不正确
【单选题】
配平空气valve的控制是由:___
A. A area控制器
B. B 空调组件控制器
C. C 热空气压力调节valve
D. D驾驶舱人工控制
【单选题】
客舱area温度传感器探测哪里的空气温度___
A. A行李架附近的空气温度
B. B座椅附近的空气温度
C. C厨房和盥洗室风扇抽取的空气温度
D. D接近地板的空气温度
【单选题】
当冲压空气按钮设置在ON位时,放气valve将:___
A. A 关闭
B. B 每次都打开
C. C 当压差小于1PSI时部分打开
D. D 当压差大于1PSI时打开
【单选题】
当APU为空调组件供气时,如area温度不能被满足,空调组件将送信号给下列哪个装置要求增加空气流量:___
A. A空调组件流量控制valve
B. B发动机控制盒
C. CAPU电子控制盒
D. D空调组件冲压空气进气风门
【单选题】
在空中,使用压力控制器1时,如有故障:___
A. A 你必须用人工控制
B. B 你必须设定着陆场高
C. C 你必须人工选择控制器2
D. D自动转到控制器2
【单选题】
在地面,系统开始工作后外流valve在什么位置?___
A. 完全打开
B. 完全关闭
C. 由FMGEC调节
D. 半开位
【单选题】
外流valve显示在ECAM的什么面?___
A. 空调页
B. 增压页
C. 引气页
D. 门页
【单选题】
增压系统由两个CPC控制,___
A. 两个CPC互为备用
B. CPC轮流控制增压系统
C. 两个CPC计算机可以互换
D. 以上都对
【单选题】
在人工增压控制方式下,那个CPC给人工控制提供显示数据:___
A. CPC1
B. CPC2
C. 两者都提供
D. 人工模式备用控制器
【单选题】
安全valve是如何作动的?___
A. 电动
B. 气动
C. 液压作动
D. 燃油作动
【单选题】
当着陆场高选择在自动位时,从哪里获得着陆场高的数据:___
A. 大气数据和惯性导航计算机
B. FMGEC
C. 飞行控制计算机
D. 无线电高度计
【单选题】
何时开始客舱预增压?___
A. 发动机启动时
B. 舱门关好后
C. 需要人工控制
D. 发动机功率设置在起飞推力时
【单选题】
在ECAM的增压页上安全valve指示何时会变成琥珀色?___
A. 任意一个安全valve打开时
B. 两个安全valve都打开时
C. 两个安全valve都关闭时
D. 以上都不对
【单选题】
座舱高度为多少时会发出红色警告___
A. 8000英尺时
B. 14000英尺时
C. 9550英尺时
D. 11000英尺时
【单选题】
正常时增压是如何操作的?___
A. 全自动控制
B. 由人工控制的
C. 有一个作动马达工作
D. 以上A、C是正确的
【单选题】
组件是如何调节基本温度的___
A. 以满足最低的area温度需求进行调节
B. 以满足最高的area温度需求进行调节
C. 根据不同area不同需求进行调节
D. 以上都不对
【单选题】
掺混valve的作用是什么?___
A. 增加冷空气来优化控制area温度
B. 增加热空气来优化控制area温度
C. 调节热空气压力
D. 以上都不对
【单选题】
防冰valve的作用是什么?___
A. 防止热交换器结冰
B. 防止再加热器结冰
C. 防止冷凝器结冰
D. 调节组件出口温度
