【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
【单选题】
What term can be defined as the securing, control, and identification of digital data?___
A. cryptography
B. crypto key
C. cryptoanalysis
D. cryptology
【单选题】
Which feature in the dNS security module provide on and off network DNS protection?___
A. Data Loss Prevention
B. Umbrella
C. Real-time sandboxing
D. Layer-4 monitoring
【单选题】
Which a dverse consequence can occur on a network without BPDu guard ?___
A. The olde st switch can be elected as the root bridge
B. Unauthorized switches that are connected to the network can cause spanning-tree loops
C.
D. ouble tagging can cause the switches to experience CAM table overload.
【单选题】
What configuration is required for multitenancy ?___
A. shared infrastructure
B. multiple carriers
C. co-located resources
D. multiple separate zones
推荐试题
【单选题】
计算机网络可以按网络的拓扑结构来划分,以下不属于按此标准划分的是___
A. 星状网
B. 环状网
C. 局域网
D. 总线结构
【单选题】
按照TCP/IP协议,接入Internet的每一台计算机都有一个唯一的地址标识,这个地址标识是___
A. 主机地址
B. 网络地址
C. IP地址
D. 端口地址
【单选题】
Internet的前身是___
A. ARPAnet
B. CSNET
C. BITNET
D. NCFC
【单选题】
一座大楼内的一个计算机网络系统,网络类型是___
A. PAN
B. MAN
C. LAN
D. WAN
【单选题】
数据传输率是指每秒钟传输二进制数据的 ___
A. 1的个数
B. 字节数
C. 位数
D. 字数
【单选题】
所有的ISDN连接都基于B信道和D信道,其中单个B信道最大传输速率是___
A. 16Kbit/s
B. 32Kbit/s
C. 64Kbit/s
D. 128Kbit/s
【单选题】
在OSI的七层结构中,对通信设备和传输介质的机械特性和电气特性进行规定的层是___
A. 物理层
B. 数据链路层
C. 网络层
D. 传输层
【单选题】
Internet的拓扑结构是___
A. 总线型
B. 星型
C. 环型
D. 网状型
【单选题】
下列协议中不属于应用层协议的是___
A. SNMP
B. SMTP
C. DNS
D. ICMP
【单选题】
在TCP/IP协议簇中,用来通告网络错误或拥塞的协议是___
A. ARP
B. IP
C. UDP
D. ICMP
【单选题】
加强因特网的安全管理措施包括 ___
A. 禁止上网
B. 取缔网吧等场所
C. 采取匿名制
D. 完善管理功能,加大安全技术的开发力度
【单选题】
计算机网络是一门综合技术,其主要技术是___
A. 计算机技术与多媒体技术
B. 计算机技术与通信技术
C. 电子技术与通信技术
D. 数字技术与模拟技术
【单选题】
TCP/IP模型在网际层仅有___
A. 面向连接通信
B. 面向无连接通信
C. 面向对象通信
D. 面向实体通信
【单选题】
下列网络拓扑结构的名称中,正确的是___
A. 环型、总线型、树型、球型
B. 星型、总线型、网状型
C. 星型、环型、总线型、线型
D. 树型、环型、总线型、非线型
【单选题】
衡量网络上数据传输速率的单位是bps,其中文含义是___
A. 信号每秒传输多少千米
B. 每秒传送多少个二进制位
C. 信号每秒传输多少米
D. 每秒传送多少个字节
【单选题】
下列不属于网络安全的主要特性的是___
A. 保密性
B. 可控性
C. 依赖性
D. 可用性
【单选题】
为网络提供共享资源并对这些资源进行管理的计算机称之为___
A. 工作站
B. 服务器
C. 网桥
D. 路由器
【单选题】
网状拓扑结构的缺点是___
A. 对根结点的依赖性大
B. 中心节点的故障导致整个网络的瘫痪
C. 任意节点的故障或一条传输介质的故障能导致整个网络的故障
D. 结构复杂
【单选题】
将路由项目添加给路由表使用的命令是___
A. route add
B. route change
C. route delete
D. route print
【单选题】
可以远程控制Web服务器,以方便网络管理员管理的协议是___
A. FTP
B. TELNET
C. SNMP
D. DNS
【单选题】
计算机网络中节点与通信线路之间的几何关系称为___
A. 网络体系结构
B. 协议关系
C. 网络层次
D. 网络拓扑结构
【单选题】
对讲机采用的通信方式为 ___
A. 全双工通信
B. 半双工通信
C. 混合通信
D. 单工通信
【单选题】
世界上第一个计算机网络是___
A. ARPANET
B. ChinaNet
C. Internet
D. CERNET
【单选题】
城域网可采用环型拓扑,其最适合的传输介质是___
A. 光纤
B. 同轴电缆
C. 双绞线
D. 无线电
【单选题】
在传输过程中建立物理链路并且适用于大量数据一次性传输的数据交换方式是 ___
A. 分组交换
B. 虚电路分组交换
C. 电路交换
D. 数据报分组交换
【单选题】
网络层中涉及的地址是___
A. IP地址
B. WINS地址
C. NetBIOS地址
D. MAC地址
【单选题】
下面描述的内容属于网络管理中的计费管理的是 ___
A. 收集网络管理员指定的性能变量数据
B. 控制和监测网络操作的费用和代价
C. 监控机密网络资源访问点
D. 跟踪和管理不同版本的硬件和软件对网络的影响
【单选题】
计算机网络中的通信子网主要完成数据的传输、交换以及通信控制,通信子网的组成部分是___
A. 主机系统和终端控制器
B. 网络结点和通信链路
C. 网络通信协议和网络安全软件
D. 计算机和通信线路
【单选题】
决定局域网特性的主要技术要素包括介质访问控制方法、传输介质和___
A. 网络拓扑结构
B. 体系结构
C. 数据传输环境
D. 所使用的协议
【单选题】
在IP数据报的格式中,源IP地址和目的IP地址的长度都是___
A. 16位
B. 32位
C. 48位
D. 64位
【单选题】
在IP网络中管理网络节点(如服务器、工作站、路由器、交换机等)的标准协议是___
A. HTTP
B. TELNET
C. SNMP
D. FTP
【单选题】
接入Internet的方式不包括___
A. 拨号方式
B. 直接连接方式
C. 专线方式
D. FTP方式
【单选题】
在DHCP客户机上用来更新IP租约的命令是___
A. ipconfig/release
B. ipconfig/all
C. ipconfig/renew
D. ping
【单选题】
传送速率的单位"b/s"代表___
A. bits per second
B. billion per second
C. bytes per second
D. baud per second
【单选题】
数据只能沿一个固定方向进行传输的通信方式是___
A. 全双工
B. 混合通信
C. 单工通信
D. 半双工
【单选题】
网络层典型的代表设备为___
A. 网桥
B. 交换机
C. 集线器
D. 路由器
【单选题】
在Internet中要确认每一台计算机,靠的是___
A. IP地址
B. MAC地址
C. 网络地址
D. 主机地址
【单选题】
OSI参考模型的第五层是___
A. 会话层
B. 网络层
C. 表示层
D. 应用层
【单选题】
SMTP协议默认使用的端口号是___
A. TCP端口21
B. TCP端口23
C. TCP端口25
D. TCP端口53
【单选题】
通信系统必须具备的三个基本要素是___
A. 信号发生器、通信线路、信号接收设备
B. 终端、通信设施、接收设备
C. 终端、电缆、计算机
D. 信源、通信媒体、信宿
