【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
【单选题】
What term can be defined as the securing, control, and identification of digital data?___
A. cryptography
B. crypto key
C. cryptoanalysis
D. cryptology
【单选题】
Which feature in the dNS security module provide on and off network DNS protection?___
A. Data Loss Prevention
B. Umbrella
C. Real-time sandboxing
D. Layer-4 monitoring
【单选题】
Which a dverse consequence can occur on a network without BPDu guard ?___
A. The olde st switch can be elected as the root bridge
B. Unauthorized switches that are connected to the network can cause spanning-tree loops
C.
D. ouble tagging can cause the switches to experience CAM table overload.
【单选题】
What configuration is required for multitenancy ?___
A. shared infrastructure
B. multiple carriers
C. co-located resources
D. multiple separate zones
【单选题】
Why does ISE require its own certificate issued by a trusted CA?___
A. ISEs certificate allows guest devices to validate it as a trusted network device
B. It generates certificates for guest devices ba sed on its own certificate
C. It requests certificates for guest devices from the Ca server based on its own certificate.
D. ISE's certificate allows it to join the network security framework
【单选题】
which attack involves large numbers of ICMP packets with a spoofed source IP address?___
A. smurf attack
B. Teardrop attack
C. Nuke attack
D. SYN Flood attack
【单选题】
Which statement about interface and global access rules is true?___
A. Interface access rules are processed before global access rules.
B. Global access rules apply only to outbound traffic, but interface access rules can be applied in either direction
C. The implicit allow is proce ssed after both the global and interface access rules
D. If an interface access rule is applied, the global access rule is ignored
【单选题】
Which type of malicious software can create a back-door into a device or network?___
A. bot
B. worm
C. virus
D. Trojan
【单选题】
Which security term refers to the like lihood that a weakness will be exploited to cause damage to an asset?___
A. threat
B. risk
C. countermeasure
D. vulnerability
【单选题】
Which IPS detection method examines network traffic for preconfigured patterns?___
A. signature-based detection
B. honey-pot detection
C. anomaly-based detection
D. policy-based detection
【单选题】
What is an advantage of split tunneling ?___
A. It allows users with a VpN connection to a corporate network to access the internet with sending traffic across the cor porate network.
B. It allows users with a vpn connection to a corporate network to access the internet by using the vPN for security.
C. It protects traffic on the private network from users on the public network
D. It enables the VPN server to filter traffic more efficiently
【单选题】
Which IDS/IPS state misidentifies acceptable behavior as an attack ?___
A. false negative
B. true positive NEKA G
C. true negative
D. false positive
【单选题】
What is the maximum num ber of methods that a single method list can contain?___
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
推荐试题
【判断题】
保证金账户余额减去锁定金额,即等于可用于追加锁定或支取的金额。
【判断题】
人民法院依法可以对银行承兑汇票保证金采取冻结措施,但不得扣划。
【判断题】
开立的定期保证金零值账户,在未存入钱之前,当日不能销户只能冲账。已有值的定期保证金账户,可以当日销户。
【判断题】
保证金账户只能通过专用交易进行核算,不能使用通用记账功能,活期结算账户销户时需要对对应的保证金账户进行状态检查。
【判断题】
定期类账户未到期前可通过柜面进行单独结息或结息销户。
【判断题】
保证金调增金额应小于保证金账户可用余额。
【判断题】
非银承保证金的销户和提前置换销户的银承保证金,需要客户经理提供变动通知书。
【判断题】
保证金被部分或全部锁定时,不能进行结息销户。
【判断题】
保证金增追减无需会计主管授权,柜员间相互授权即可。
【判断题】
定期保证金在开户时可以自行设置到期日,但不能小于原存期的对日到期日。
【判断题】
保证金业务下设立银承保证金,保函保证金,开证项下保证金,其它保证金等产品。
【判断题】
定期保证金账户到期后,不再计算利息。定期保证金到期前支取的,支取部份的积数将从定期积数转入活期积数。
【判断题】
定期类账户可通过柜面进行单独结息或结息销户;定期未到期前只能进行结息销户,不能进行单独结息。
【判断题】
对于活期类的保证金,也可以作增加或减少存取,通过2406行内转账操作,相应的存取款应就客户经理提供变动通知书作相应的锁定和解锁
【判断题】
已开立过的集团账户子户编号若已销户,可以重复使用。
【判断题】
账户在设定父账户时,父账户尚有从上次结息日至设定日期间的应计利息,由于父账户一经设定后不能再发生交易,故必须指定其中一个子户在下一个结息日接收自动入账的利息。
【判断题】
当子户为最后一个子户时,不允许结清,只能取消主户设定来实现。
【判断题】
集中核算账户的主账户余额为各子账户余额的总和,可进行统一结算。
【判断题】
账户在设定为主账户时,主账户尚有从上次结息日至设定日期间的应计利息,需指定其中一个子账户在下一个工作日接收自动入账的利息。
【判断题】
集中核算账户的父账户余额为各子账户余额的总和,但其可用余额为零,无法进行结算;集中核算账户的子账户余额为各子账户自有余额,可各自进行结算,结算类型范围同一般银行结算账户。
【判断题】
集团账户开立子户时,主户的余额必须全部分配给子户,一经开立了子户,主户不能再有业务进出。包括冻结等特殊业务,交易皆通过子户实现。
【判断题】
当集中核算账户设定时,由于集团父账户余额分配至各集团子户,故需要先对活期账户临时结息(2417活期账户临时结息交易)。
【判断题】
集中核算账户分为父账户(集团账户)与子账户(各核算单位账户),父账户账号使用原有实体账号,各子账户虚拟账号组成为“父账号+四位子账号编号”。
【判断题】
类多级账簿业务中,集中核算账户的父账户余额为各子账户余额的总和,其可用余额为零时,无法进行结算。
【判断题】
集中核算账户的各子账户分别结息,集团不可以根据需要自行指定利息入账账号。
【判断题】
集中核算账户的父账户可打印全体子户汇总的账单信息,各子账户不可分别查询到交易明细。
【判断题】
集团账户子户的查询、维护中对于子账户户名的修改及子账户的删除,只有余额为0的子账户才能作删除操作。
【判断题】
集团账户子户的设立其账户名称如为父账户名称加后辍的话子户账户名设立时应为父账户为加后辍,而不能直接用后辍代替子户户名。
【判断题】
在操作类多级账簿子户修改交易,只允许修改子户户名和期末余额。
【判断题】
类多级账簿中子户解约,子户余额必须为“0”。
【判断题】
类多级账簿中的主户是实体结算账号,子户是虚拟账号或卡号。
【判断题】
子账户变更只允许修改子户户名和期初余额。
【判断题】
类多级账簿主户发生交易后,使用虚拟卡号作为子户账号的,系统能获取交易对手等完整信息的,则不再推送柜面补登任务。使用虚拟账号作为子户账号的,该主户发生的每一笔业务都需要补登记子户信息。
【判断题】
主户发生交易后,柜面会收到流水补登任务,其中,如果交易柜员是1开头的柜员号,流水补登任务推给该交易网点所有柜员。如果交易柜员是非1开头的柜员号,流水补登任务推给交易柜员。
【判断题】
签约生效日默认当天,也可以自行输入大于等于当天的日期。签约到期日默认2099-12-31。
【判断题】
类多级账簿业务中,使用虚拟卡号作为子户账号的,系统能获取交易对手等完整信息的,则不再推送柜面补登任务。
【判断题】
类多级账簿主要适用于财政、学校等部分需要进行资金集中管理、分级核算的企事业单位。
【判断题】
类多级账簿具有核算精准、设置灵活、操作方便等特点,可满足特殊客户银企对账,方便明细信息查询。
【判断题】
流水补登时,输入子账号编号或虚拟卡号后,子户账号、子户户名自动回显。
