【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
【单选题】
What term can be defined as the securing, control, and identification of digital data?___
A. cryptography
B. crypto key
C. cryptoanalysis
D. cryptology
【单选题】
Which feature in the dNS security module provide on and off network DNS protection?___
A. Data Loss Prevention
B. Umbrella
C. Real-time sandboxing
D. Layer-4 monitoring
【单选题】
Which a dverse consequence can occur on a network without BPDu guard ?___
A. The olde st switch can be elected as the root bridge
B. Unauthorized switches that are connected to the network can cause spanning-tree loops
C.
D. ouble tagging can cause the switches to experience CAM table overload.
【单选题】
What configuration is required for multitenancy ?___
A. shared infrastructure
B. multiple carriers
C. co-located resources
D. multiple separate zones
【单选题】
Why does ISE require its own certificate issued by a trusted CA?___
A. ISEs certificate allows guest devices to validate it as a trusted network device
B. It generates certificates for guest devices ba sed on its own certificate
C. It requests certificates for guest devices from the Ca server based on its own certificate.
D. ISE's certificate allows it to join the network security framework
【单选题】
which attack involves large numbers of ICMP packets with a spoofed source IP address?___
A. smurf attack
B. Teardrop attack
C. Nuke attack
D. SYN Flood attack
【单选题】
Which statement about interface and global access rules is true?___
A. Interface access rules are processed before global access rules.
B. Global access rules apply only to outbound traffic, but interface access rules can be applied in either direction
C. The implicit allow is proce ssed after both the global and interface access rules
D. If an interface access rule is applied, the global access rule is ignored
【单选题】
Which type of malicious software can create a back-door into a device or network?___
A. bot
B. worm
C. virus
D. Trojan
【单选题】
Which security term refers to the like lihood that a weakness will be exploited to cause damage to an asset?___
A. threat
B. risk
C. countermeasure
D. vulnerability
【单选题】
Which IPS detection method examines network traffic for preconfigured patterns?___
A. signature-based detection
B. honey-pot detection
C. anomaly-based detection
D. policy-based detection
【单选题】
What is an advantage of split tunneling ?___
A. It allows users with a VpN connection to a corporate network to access the internet with sending traffic across the cor porate network.
B. It allows users with a vpn connection to a corporate network to access the internet by using the vPN for security.
C. It protects traffic on the private network from users on the public network
D. It enables the VPN server to filter traffic more efficiently
【单选题】
Which IDS/IPS state misidentifies acceptable behavior as an attack ?___
A. false negative
B. true positive NEKA G
C. true negative
D. false positive
【单选题】
What is the maximum num ber of methods that a single method list can contain?___
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
推荐试题
【多选题】
下列属于开发商办理按揭项目时须备齐的“五证”的是___
A. 国有土地使用证
B. 建设用地规划证
C. 建设工程规划许可证
D. 建设工程施工许可证
E. 商品房销/预售许可证
F. 住宅质量保证
【多选题】
客户经理应按照《郑州市市郊农村信用合作联社信贷档案管理办法》的规定,___有关信贷档案,做到一户一档。
【多选题】
申请“商贷通”的客户,须具备以下条件___
A. 在郑州市辖区有自有房产和固定经营场所;
B. 年龄在18周岁(含)至60周岁之间,具有完全民事行为能力的自然人;
C. 从事行业原则上为2年(含)以上,并依法领取个体工商户营业执照、组织机构代码证和税务登记证;
D. 经营项目合法,符合国家产品政策和环保要求,行业前景良好;
E. 在信用社开立有个人结算账户;
【多选题】
以下不符合“房易贷”产品标准的是___
A. 商住两用房、别墅
B. 已补交土地出让金的经济适用房
C. 自建房、房改房
D. 动迁房、位置偏僻无成交市场的抵押物。
【多选题】
消费类“房易贷”额度不超过__万元,经营类“房易贷”不超过__万元。___
A. 100
B. 50
C. 300
D. 500
【多选题】
客户申请“安居贷”时,除身份证、户口本、婚姻状况证明原件等资料外,还需要提供以下哪些资料___
A. 房产证或购房合同、发票原件等
B. 借款人和家庭主要成员在信用社或其他金融机构的1年交易流水;
C. 市郊联社认可的担保相关材料;
D. 市郊联社要求的其他资料。
【多选题】
“安居贷”担保人可以是___
A. 配偶
B. 成年子女
C. 有实力的亲朋好友
D. 60岁以下父母
【多选题】
“金燕e贷”业务新增客户授信标准为___
A. 1、2类客户授信额度不超过借款人年工资收入的5倍
B. 1、2类客户授信额度不超过借款人家庭年收入的5倍
C. 3类客户授信额度不超过借款人年工资收入的3倍
D. 3类客户授信额度不超过借款人家庭年收入的3倍
【多选题】
下列哪些是惠民贷批量授信业务的关键步骤___
A. 渠道建设
B. 授信体验
C. 征信查询
D. 贷后管理
【多选题】
下面哪些客户不属于金燕e贷3类客户___
A. 七中教师
B. 省工会职员
C. 郑大一附院护士
D. 招商银行客户经理
【多选题】
在评定四星级信用社区(村)时,必须符合以下哪些条件___
A. 社区(村)居民在信用社授信覆盖率达到30%。
B. 党员干部群体在信用社授信覆盖率不低于50%。
C. 不良贷款户数比例低于1%。
D. 在信用社开立基本户或在信用社结算账户资金年日均余额在3000万元(含)以上。
【多选题】
在惠民贷合同生成时,需留存哪些资料___
A. 最高额个人借款合同
B. 共同还款承诺书
C. 委托转账付款授权书
D. 贷款用途承诺书
【多选题】
下列哪些区域可以办理我社住房按揭贷款___
A. 金水区
B. 航空港区
C. 中牟
D. 新密
【多选题】
在保险索赔中,享有索赔权的有___
A. 被保险人
B. 保险代理人
C. 投保人
D. 受益人
【多选题】
保险的基本原则包括___
A. 最大诚信原则
B. 保险利益原则
C. 损失补偿原则
D. 近因原则
【多选题】
按照代理保险业务监管要求,商业银行从事代理保险业务,需要在营业场所公示的资料包括___
A. 营业执照
B. 保险兼业代理业务许可证
C. 投保提示
D. 销售人员的销售资格证
E. 代理保险产品清单
【多选题】
近期,河南省农村信用社大额存单实现的最新功能有___
A. 按期付息
B. 靠档计息
C. 提前支取
D. 部分提前支取
【多选题】
河南省农村信用社大额存单的存期有___
A. 1个月、3个月、6个月
B. 9个月、1年、18个月
C. 2年、3年
D. 5年。
【多选题】
信用社区(村)居民备案成为信用户可获得专属优享服务,包括___
A. 优享利率优惠
B. 优享“金伙伴”产品
C. 专属客户经理上门服务
D. 每月专享收益更高的专属理财服务
E. 优先参加信用社(部)筹办的特色活动
【多选题】
“惠民贷”贷后日常巡查要求做到以下___
A. 客户经理可采用账户分析、凭证查验等现场或非现场检查方式做好日常贷后巡查。
B. 客户经理每季度实地检查客户数占上季度末实际用信户数的比例不低于10%。
C. 对连续6个月内实地重复检查的客户不累计计入实地检查客户数。
D. 贷后检查留存资料有《贷后检查表》、现场或非现场检查相关资料。
【多选题】
“流水贷”所指账户流水包括下列哪些账户?___
A. 公司对公账户
B. 实际控制人
C. 实际控制人配偶
D. 公司个人股东
E. 公司财务人员
【多选题】
申请“流水贷”贷款的企业客户,须具备以下条件。___
A. 依法合规设立的企业法人
B. 借款人生产经营合法、合规
C. 借款人具有持续经营能力,有合法的还款来源
D. 公司成立两年以上
E. 借款人及法定代表人、实际控制人信用记录符合市郊联社准入标准
【多选题】
“税易贷”客户,贷款上限测算公式是___。
A. A级纳税人:贷款上限=上年度交纳增值税税额*6
B. A级纳税人:贷款上限=上年度交纳增值税税额*5
C. B级纳税人:贷款上限=上年度交纳增值税税额*4
D. B级纳税人:贷款上限=上年度交纳增值税税额*3
【多选题】
“房快贷”可抵押房产包括下列哪些?___
A. 企业自身房产
B. 企业实际控制人及其直系亲属房产
C. 企业法定代表人及其直系亲属房产
D. 企业股东及其直系亲属房产
E. 企业高管及其直系亲属房产
【多选题】
相对大型和特大型企业来说,中小企业的资金运行特点有___
A. 额度小
B. 周转快
C. 信誉好
D. 需求急
E. 风险小
【多选题】
下列有关银行经营的效益性、安全性和流动性的说法,正确的有___。
A. 安全性与流动性成正比
B. 效益性与安全性、流动性相矛盾
C. 贷款期限越短,安全性和流动性越好,但效益性越差
D. 贷款期限越长,安全性和效益性越好,但流动性较差
E. 经营中三者要整体综合衡量
【多选题】
影响贷款价格的主要因素有___
A. 贷款成本和贷款风险程度
B. 贷款费用和贷款供求状况
C. 借款人与银行的关系
D. 银行贷款的目标收益率和贷款的期限
E. 借款人从其他途径融资的融资成本
【多选题】
影响客户还贷能力的因素有___
A. 现金流量构成
B. 经济效益
C. 还款资金来源
D. 贷款用途
E. 担保人的经济实力
【多选题】
下列各项中,属于借款人的义务的有___
A. 如实提供银行要求的资料
B. 接受银行对其使用信贷资金情况和有关生产经营、财务核定的监督
C. 按借款合同约定用途使用贷款
D. 按借款合同的约定及时清偿贷款本息
E. 将债务全部或部分转让给第三方的,应当取得银行的同意
【多选题】
流动资金贷款中,银行既要借助其考察借款人财务状况,又要借助其分析贷款必要性的指标为___。
A. 股本权益
B. 流动资产
C. 流动负债
D. 存货
E. 应收账款
【多选题】
对于固定资产贷款,银行确立贷款意向后,借款人除提供一般资料,还应提供___
A. 国家相应投资批件
B. 资金到位情况证明文件
C. 资产到位证明文件
D. 项目可行性研究报告及有关部门对其批复
E. 其他配套条件落实的证明文件
【多选题】
贷前调查的主要对象是___。
A. 借款人
B. 保证人
C. 抵(质)押人
D. 抵(质)押物
E. 贷款安全性
【多选题】
借款需求分析对银行的意义在于___
A. 帮助银行有效地评估风险
B. 帮助银行确定合理的贷款结构与贷款利率
C. 为公司提供融资方面的合理建议
D. 确定贷款总供给量
E. 帮助银行增加盈利
【多选题】
借款人资产运用效率越高,___
A. 盈利能力越强
B. 短期偿债能力越强
C. 借款人获得收入越多
D. 资产周转速度越快
E. 长期偿债能力越强
【多选题】
针对商业银行等金融机构的骆驼评级分析系统包括___。
A. 流动性
B. 管理能力
C. 资产质量
D. 资本充足率
E. 盈利性
【多选题】
营运能力分析常用的比率主要有___。
A. 总资产周转率
B. 固定资产周转率
C. 应收账款周转率
D. 存货周转率
E. 资产收益率和所有者权益收益率
【多选题】
所有者权益主要由___组成。
A. 资本金
B. 公积金
C. 利润
D. 未分配利润
E. 盈余
【多选题】
公司客户品质基础分析的主要内容包括___
A. 客户历史分析
B. 法人治理结构分析
C. 股东背景
D. 高管人员的素质
E. 信誉状况
【多选题】
反映客户短期偿债能力的比率主要有___
A. 流动比率
B. 资产负债率
C. 净利润率
D. 速动比率
E. 现金比率
【多选题】
银行进行项目评估时,通常从___方面对项目建设的必要性进行评估。
A. 项目产品市场情况分析
B. 贷款项目是否符合国家整体布局和地区经济结构的需要
C. 贷款项目是否符合国家产业政策
D. 项目产品的竞争力分析
E. 贷款项目是否符合地区经济结构的需要
