【单选题】
Which IDS/IPS state misidentifies acceptable behavior as an attack ?___
A. false negative
B. true positive NEKA G
C. true negative
D. false positive
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
What is the maximum num ber of methods that a single method list can contain?___
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
推荐试题
【单选题】
伤员出现休克时,应反复检查呼吸和脉搏,迅速呼救并送医。___
【单选题】
出租汽车一旦发生道路交通事故,驾驶员要沉着冷静,稳妥处理,将道路交通事故造成的损失降到最低限度。___
【单选题】
发生道路交通事故后出租汽车驾驶员要保护现场,设立标记。优先保护好现场,然后再抢救伤员。___
【单选题】
出租车驾驶员不遵守交通规则、闯红灯、乱调头、乱鸣笛的,每项次扣3分。___
【单选题】
区域科目考试成绩在所在地行政区域内有效。___
【单选题】
出租车单车考核实行日常考核和年度考核相结合的办法进行。___
【单选题】
出租车驾驶员变更服务单位的,应当重新申请注册。___
【单选题】
出租汽车驾驶员从业资格证转借、出租、涂改、伪造或变造等行为,属于违法___
【单选题】
遇到前方修路或交通堵塞时,司机不做必要解释就可以改变行车路线。___
【单选题】
出租车必须在批准的经营范围和区域内经营,不得超出经营范围异地经营。___
【单选题】
当乘客提出的行驶要求,如果有和交通法规相违背的要及时,如实向乘客说明情况。___
【单选题】
租车过程中,需经收费公路、桥梁、轮渡等所发生的费用均由驾驶员负担。___
【单选题】
出车前应检查轮胎外观,轮胎花纹深度、气压符合规定,检查轮胎有无损伤,螺母是否紧固可靠。___
【单选题】
出租汽车上使用较多的是压缩天然气CNG——汽油两用燃料汽车,车上装有天然气和汽油两套燃料供给系统,这两套系统同时工作。___
【单选题】
CNG汽车充气时车辆一定要熄火并拉上手制动,关闭车上所以电气设备(包括音响车灯风扇空调等)。___
【单选题】
CNG汽车日常维护时应检查专用装置各部件。各系统工作状况及其连接和密封。气瓶及固定支架是否牢固,CNG管线不得与其它部件碰擦;检查CNG储气量,不足时加气,经常保持CNG系统及空气滤芯的清洁、完整。___
【单选题】
乘客要求去偏远、冷僻地区或者夜间要求驶出城区的,驾驶员可以要求乘客随同到就近的有关部门办理验证登记手续。___
【单选题】
运送长途旅客需要到就近的治安卡口登记不算故意绕道。 ___
【单选题】
对老年人说话时,要放慢速度,当他们反复询问时,可以装作没听见。___
【单选题】
出租车驾驶员应树立“被投诉就是有责事故”的理念。___
【单选题】
倒车入库后开门一定要仔细,避免擦到旁边车位的车身。___
【单选题】
现在很多小汽车都配备了驻车辅助系统,所以驾驶员技能中的倒车入库和侧方停车不用熟练掌握。 ___
【单选题】
出车前应检查车辆营运车辆转向机构各连接部位是否松旷,转向盘自由转动量不得超过规定。___
【单选题】
车辆行驶中应检查喇叭、灯光信号是否齐全有效,功能是否正常。___
【单选题】
车辆收车后应检查有无漏水、漏油、漏气、漏电等现象。___
【单选题】
天然气具有热值高、排放低的优点。___
【单选题】
天然气具有热值低、排放低的优点。___
【单选题】
天然气钢瓶的瓶口处安装有易熔塞和爆破片两种安全装置,当气瓶温度超过100度或压力超过26MPa时,安全装置会自动破裂卸压。___
【单选题】
使用CNG——汽油两用燃料汽车启动前缓慢开启各天然气气瓶阀,然后缓慢开启高压截止阀,观察压力表。检查压缩天然气供给系统管路、接头组件和减压阀是否泄漏以及系统中有无其它异常现象。___
【单选题】
因CNG——汽油两用燃料汽车使用天然气运行时,动力性稍有下降,因此刚起步时,应避免抵挡高速及急加速,尽量空档滑行。___
【单选题】
CNG汽车运行时注意观察各系统工作情况,当发现其装置有过热、过冷、异味等异常现象时,应立即关闭储气瓶截止阀,由专业人员进行维修。___
【单选题】
使用CNG——汽油两用燃料汽车长期使用燃油时应把储气瓶中的气用完。当使用CNG时,也应把油箱中的油用完,确保安全。___
【单选题】
CNG汽车充气后要确认加气枪已拔掉才能发动汽车,防止拉断气枪酿成事故。___
【单选题】
CNG汽车充气后应注意检查系统是否有漏气现象,如发现漏气和其他故障,一定要亲自动手排除后才能上路行驶。___
【单选题】
使用CNG——汽油两用燃料汽车在行驶中发生轻微的天然气泄漏,应立即停车,关闭电源和储气瓶出口手动阀,再转用汽油行驶到服务站维修。___
【单选题】
使用CNG——汽油两用燃料汽车,如果高压管路破裂或脱落导致大量气体泄漏而无法关闭储气瓶截止阀时,应立即将现场进行隔离,不允许现场人、车入内,隔离火源,待天然气散尽后再做处理。___
【单选题】
使用CNG——汽油两用燃料汽车,驾驶员在出车前、行车中、收车后对车辆进行日常维护,重点检查燃油管路有无泄漏和异常。___
【单选题】
出租车驾驶员的退休年龄是60周岁。___
【单选题】
为外国乘客服务时,热情友好,落落大方,不卑不亢,维护自身良好形象。___
【单选题】
播放影音制品时,注意格调健康,并主动征求乘客意见。___
