【单选题】
Which security term refers to the like lihood that a weakness will be exploited to cause damage to an asset?___
A. threat
B. risk
C. countermeasure
D. vulnerability
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which IPS detection method examines network traffic for preconfigured patterns?___
A. signature-based detection
B. honey-pot detection
C. anomaly-based detection
D. policy-based detection
【单选题】
What is an advantage of split tunneling ?___
A. It allows users with a VpN connection to a corporate network to access the internet with sending traffic across the cor porate network.
B. It allows users with a vpn connection to a corporate network to access the internet by using the vPN for security.
C. It protects traffic on the private network from users on the public network
D. It enables the VPN server to filter traffic more efficiently
【单选题】
Which IDS/IPS state misidentifies acceptable behavior as an attack ?___
A. false negative
B. true positive NEKA G
C. true negative
D. false positive
【单选题】
What is the maximum num ber of methods that a single method list can contain?___
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
推荐试题
【判断题】
行政机关违反法定的行政处罚程序的,由上级行政机关或者有关部门责令改正,可以对直接负责的主管人员和其他直接责任人员依法给予行政处分。
【判断题】
行政机关在调查或者进行检查时,执法人员不得少于两人。
【判断题】
行政机关收集证据时,在证据可能灭失或者以后难以取得的情况下,经行政机关负责人批准,可以先行登记保存,并应当在7日内作出处理决定。
【判断题】
没有法定依据或者不遵守法定程序的,行政处罚无效。
【判断题】
监察局给某公务员行政记过处分属于行政处罚。
【判断题】
根据《行政处罚法》的规定,主动消除或者减轻违法行为危害后果的,应当依法从轻或者减轻行政处罚。
【判断题】
行政机关及其执法人员当场收缴罚款的,必须向当事人出具省、自治区、直辖市财政部门统一制发的罚款收据,不出具财政部门统一制发的罚款收据的,当事人有权拒绝缴纳罚款。
【判断题】
在行政处罚听证会上,应当当场做出处罚决定。
【判断题】
不满十四周岁的人有行政违法行为的,不予行政处罚,责令监护人加以管教。
【判断题】
听取当事人的陈述、申辩,是处理每个行政处罚案件的必经程序。
【判断题】
当事人对当场做出的行政处罚决定不服,不能申请行政复议或者提起行政诉讼。
【判断题】
当事人不履行行政处罚决定的,行政机关都可以自己强制执行。
【判断题】
没有法定依据或不遵守法定程序的行政处罚无效。
【判断题】
根据《行政处罚法》的规定,对于尚未制定法律、法规的,省级人民政府制定的规章对违反行政管理秩序的行为,可以设定警告或者一定数量罚款的行政处罚。
【判断题】
当事人确有经济困难,需要延期或者分期缴纳罚款的,经当事人申请和行政机关批准,可以暂缓或者分期缴纳。
【判断题】
执法人员当场做出的行政处罚决定,必须报所属行政机关备案。
【判断题】
根据《行政处罚法》的规定,违法行为轻微并及时纠正,没有造成危害后果的,不予行政处罚。
【判断题】
行政机关作出暂扣许可证的决定,这一行为属于行政强制措施。
【判断题】
行政复议期间被申请人改变原具体行政行为的,行政复议机关停止对原具体行政行为的审查,改为对改变后的具体行政行为进行审查。
【判断题】
行政机关作出具体行政行为时未告知公民、法人或者其他组织,事后补充告知的,行政复议申请期限自该具体行政决定作出之日起计算。
【判断题】
行政机关设立的派出机构、内设机构或者其他组织,未经法律、法规授权,对外以自己名义作出具体行政行为的,该行政机关为被申请人。
【判断题】
下级行政机关依照法律、法规、规章规定,经上级行政机关批准作出具体行政行为的,该下级行政机关为被申请人。
【判断题】
根据国务院或者省、自治区、直辖市人民政府对行政区划的勘定、调整或者征收土地的决定,省、自治区、直辖市人民政府确认土地、矿藏、水流、森林、山岭、草原、荒地、滩涂、海域等自然资源的所有权或者使用权的行政复议决定为最终裁决。
【判断题】
行政复议机关责令被申请人重新作出具体行政行为的,被申请人不得以同一的事实和理由作出与原具体行政行为相同或者基本相同的具体行政行为。
【判断题】
行政复议机关决定撤销或者确认具体行政行为违法的,无权责令被申请人在一定期限内重新作出具体行政行为。
【判断题】
在行政复议过程中,被申请人不得自行向申请人和其他有关组织或者个人收集证据。
【判断题】
行政复议期间具体行政行为停止执行是原则,不停止执行是例外。
【判断题】
公民、法人或者其他组织对行政机关的具体行政行为不服申请行政复议的,作出具体行政行为的行政机关是被申请人。
【判断题】
行政复议以依职权行政行为为主要审查对象,并附带审查依申请行政行为。
【判断题】
公民、法人或者其他组织认为具体行政行为侵犯其合法权益的,可以自知道该具体行政行为之日起六十日内提出行政复议申请;但是法律规定的申请期限超过六十日的除外。
【判断题】
维持具体行政行为的行政复议决定,由作出具体行政行为的行政机关依法强制执行,或者申请人民法院强制执行。
【判断题】
新《行政诉讼法》的立法目的是保证人民法院公正、及时审理行政案件,解决行政争议,保护公民、法人和其他组织的合法权益,监督行政机关依法行使职权。
【判断题】
公民、法人或者其他组织拒绝履行人民法院发生法律效力的判决、裁定、调解书的,行政机关或者第三人可以向第一审人民法院申请强制执行,或者由行政机关依法强制执行。
【判断题】
被诉行政机关负责人应当出庭应诉。不能出庭的,应当委托行政机关相应的工作人员出庭。
【判断题】
行政机关认为已发生法律效力的判决、裁定确有错误的,可以向上一级人民法院申请再审,但判决、裁定不停止执行。
【判断题】
行政行为,既包括国家行政机关作出的行政行为,也包括法律、法规、规章授权的组织作出的行政行为。
【判断题】
行政机关及其工作人员不得干预、阻碍人民法院受理行政案件。
【判断题】
同提起诉讼的行政行为有利害关系的其他公民、法人或其他组织,可以作为第三人申请参加诉讼。