【单选题】
Which STP feature can prevent an attacker from becoming the root bridge by immediately shutting down the interface when it receives a BPDU?___
A. root guard
B. Port Fast
C. BPDU guard
D. BPDU filtering
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which technology can best protect data at rest on a user system?___
A. full-disk encryption
B. IPsec tunnel
C. router ACL
D. network IPS
【多选题】
Which two primary security concerns can you mitigate with a BYOD solution ?___
A. schedule for patching the device
B. securing access to a trusted corporate network
C. compliance with applicable policies
D. connections to public Wi-Fi networks
E. device tagging and invento
【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
推荐试题
【单选题】
马氏体片的粗细,主要取决于___
A. 淬火冷却速度
B. 母相奥氏体的晶粒度
C. Ms点的高低
D. 淬火加热速度
【单选题】
下列属于定心夹紧机构的是 ___
A. 螺旋夹紧压板
B. 四爪单动卡盘
C. 偏心夹紧机构
D. 三爪卡盘
【单选题】
申江厂冷精整压机是___
A. 400吨
B. 500吨
C. 300吨
D. 800吨
【单选题】
冷精整首件送三座标精测的工件尺寸公差需收紧____% ___
【单选题】
C200 PTU装配线hypoid gear和pinion gear是否可以互换装配___
A. 可以
B. 不可以
C. 部分可以
D. 无所谓
【单选题】
为了保证产品质量检验结果的准确,产品生产者必须重视对检验结果影响因素的___
A. 质量策划
B. 质量控制
C. 质量保证
D. 质量承诺
【单选题】
临时脱离通知,在 需识别为变化点___
A. 从临时脱离开始,一直到临时脱离结束期间
B. 在临时脱离开始首次执行时
C. 从临时脱离开始和结束时都需执行
D. 仅在临时脱离退出时执行
【单选题】
过程输入要求的五大要素是___
A. 人机工法环
B. 人机料法测
C. 人机料法环
D. 人机检法测
【单选题】
金相显微镜通过物镜和目镜两次放大成像后,最终确定图片的倍率,那么图片的放大倍率应该为___
A. 物镜+目镜
B. 物镜*目镜
C. 物镜-目镜
D. 物镜/目镜
【单选题】
以下哪种说法是正确的___
A. 工厂所有量具都必须经过法定计量单位校准或检定后,才能投入使用
B. 工厂所有量具都必须经过校准或检定后,才能投入使用
C. 工厂所有量具都无需校准或检定
D. 工厂所有量具在任何情况下,都必须校准或检定
【单选题】
轴叉球道热处理时产生打火,导致球道表面出现材质熔化凸点,该轴叉在车辆上使用时有可能会引起___
A. 车辆行驶停止
B. 车辆抖动
C. 万向节护套破裂
D. 万向节漏油
【单选题】
常温下,刀具材料的硬度应在____以上___
A. 50HRC
B. 60HRC
C. 80HRC
D. 100HRC
【单选题】
当程序中出现F550时,表示为___
A. 进给率为550rev/min
B. 进给速度为550mm/min
C. 进给量为550mm/min
D. 进给速度为550m/min
【单选题】
以下对089.5-1008R夹箍描述错误的是:___
A. 夹箍直径为ф89.5
B. 夹箍宽度为10mm
C. 夹箍厚度为0.8mm
D. 字母R表示镀锌夹箍
【单选题】
为了确保安全,用示教编程器手动运行机器人时,机器人的最高速度限制为___
A. 250mm/s
B. 50mm/s
C. 800mm/s
D. 1600mm/s
【单选题】
对于精度要求高的主轴部件,轴承与轴配合时可采用___
A. 定向装配
B. 固定装配
C. 浮动装配
D. 互换装配
【单选题】
以下哪种球笼热后不需要再硬加工___
A. AC节球笼
B. SX节球笼
C. DO节球笼
D. 冷精整球笼
【多选题】
以下哪种零件需要淬火热处理后回火___
A. AC外星轮
B. VL内星轮
C.
D. O外星轮
【多选题】
材料常用的硬度表述方法有___
A. 布氏硬度
B. 洛氏硬度
C. 维氏硬度
D. 亨氏硬度
【多选题】
下列元素中那些能够提高钢的淬透性 ___
【多选题】
以下哪个属于高速节连接方法___
A. Disk
B. Monobloc
C. DTF
D. Flange
【多选题】
下面表示量值的有___
A. 1000Nm
B. 75
C. 5℃
D. -45
【多选题】
冷挤压加工渐开线花键时对累积分度误差超差影响的因素有哪些___
A. 毛坯的跳动
B. 毛坯的材质硬度不均
C. 搓齿板定位面相对毛坯中心的对称度
D. 预搓直径较小
【多选题】
固定节可拆卸和不可拆卸结构压入反拉程序动作设置为___
A. 可拆卸式:压入-反拉-压入
B. 可拆卸式:压入-反拉
C. 不可拆卸式:压入-反拉
D. 不可拆卸式:压入-反拉-压入
【多选题】
固定节装配扭矩大,超出工艺要求,如果是外星轮问题,从哪几个方面入手检查寻找原因___
A. 球道直径小超差
B. 内球面直径小超差
C. 球道与球面中心高超差
D. 球道直径大超差
【多选题】
直径为φ3mm的45号钢样品,退火后的组织是铁素体+珠光体,45号钢的AC3温度是780℃。将其分别加热不同温度并保温,然后水冷,各得到的组织是 ___
A. 加热温度700℃水冷后的组织是铁素体+珠光体
B. 加热温度760℃水冷后的组织是马氏体+铁素体
C. 加热温度840℃水冷后的组织是马氏体
D. 加热温度940℃水冷后的组织是马氏体
【多选题】
数控设备运行的方式有___
A. Auto
B. JOG
C. MDA
D. HND
【多选题】
外径千分尺测量误差产生的原因以下正确的有 ___
A. 零点漂移
B. 测杆摆放不当
C. 棘轮有适当的测量力
D. 视差
【多选题】
对于特殊特性的管理,应___
A. 使用SPC进行监控
B. 与顾客规定的定义和符号相符合
C. 在控制计划、FMEA及作业指导书中进行标注
D. 包括在控制计划中
【多选题】
在批量生产阶段,企业可以采用 ___ 等方法对供应商进行质量控制。
A. 监控供应商的过程能力指数和过程性能指数
B. 监控供应商的测量系统
C. 评价供应商生产能力
D. 进货质量检验
【多选题】
换产品生产时,外星轮回火后硬度偏高,可采取以下哪些措施调整再确认___
A. 提高回火温度
B. 降低回火温度
C. 增加回火时间
D. 重新首件检验
【多选题】
质量管理体系要求所有从事影响产品质量工作的人员应有能力胜任所在岗位的工作,这种能力是基于适当的___
【多选题】
下面是SDS新设备的验收标准? ___
A. 空运转24小时无故障
B. 连续加工50件(不可作任何工装或参数调整)
C. 连续加工200件(可调整,无故障)
D. 连续生产三班无故障等考核
【多选题】
工业4.0时代,工业布局更集中趋向于 ___
A. 劳力丰富地区
B. 原料、燃料地
C. 科技发达地区
D. 交通运输枢纽
【多选题】
激光相对于其他光源的优点为:___
A. 单色性
B. 节能
C. 高亮度
D. 方向性好
【多选题】
纳铁福工厂内,目前不是精确追溯的方式有____. ___
A. RFID
B. 设备上位机存储
C. 激光打标二维码
D. 无纸化屏
【单选题】
关于内螺纹加工的刀具说明正确的是___
A. 盲孔加工时,切削丝锥应选择左旋
B. 切削丝锥前角较小时,不易缠屑
C. 对于齿面光洁度,切削丝锥要优于挤压丝锥
D. 钻削螺纹基孔直径,切削丝锥要大于挤压丝锥
【单选题】
关于三销轴叉外圆磨削阐述不正确的是___
A. 加工长柄轴叉时需保持无火花磨削1s以上
B. 加工表面硬度越高,所选择的砂轮结合剂的强度要越高
C. 相同条件下,砂轮磨料的颗粒尺寸越小,加工表面光洁度越好
D. 在测量同一表面粗糙度时数值Ry>Rz>Ra
