【单选题】
What is the maximum num ber of methods that a single method list can contain?___
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
【单选题】
When connecting to an external resource,you must change a source IP address to use one IP address from a range of 207.165.201.1 to 207.165.1.30. Which option do you implement ?___
A. dynamic source NAT that uses an IP ad dress as a mapped source
B. static destination NAT that uses a subnet as a real de stination
C. dynamic source NAT that uses a range as a mapped source
D. static destination NAT that uses a subnet as a real source
推荐试题
【单选题】
急救处理第一步骤应首选___
A. 静脉输液.输血
B. 使用抗生素
C. 使用升压药
D. 使用止血药
E. 吸氧
【单选题】
耐高温,耐高压物品使用高压蒸汽灭菌属于___
A. 物理消毒灭菌法
B. 化学消毒灭菌法
C. 干热消毒灭菌法
D. 浸泡消毒灭菌法
E. 电离辐射灭菌法
【单选题】
下列哪项不属于灭菌剂___
A. 甲醛
B. 戊二醛
C. 碘伏
D. 环氧乙烷
E. 过氧乙酸
【单选题】
新紫外线灯管输出功率不低于___
A. 110uw/cm
B. 100uw/cm
C. 90uw/cm
D. 80uw/cm
E. 60uw/cm
【单选题】
I级手术间适合于___
A. 关节置换术
B. 肾结核行肾切除术
C. 胃大部分切除术
D. 开放性损伤清创术
E. 食道癌根治术
【单选题】
手术全程总共应清点物品数量___
A. 1次
B. 2次
C. 3次
D. 4次
E. 5次
【单选题】
剖腹单两侧和足端均应至少垂于手术台边缘以下___
A. 15cm
B. 30cm
C. 45cm
D. 60cm
E. 垂至地面
【单选题】
患者男性,12岁,行包皮环切术,术前皮肤消毒时不可使用___
A. 聚维酮碘
B. 0.5%氯己定醇
C. 0.5%PVP碘
D. 1:1000苯扎澳铵酊
E. 2.5%碘酊
【单选题】
无菌持物钳打开后使用的时间为___
A. 4小时
B. 6小时
C. 8小时
D. 10小时
E. 12小时
【单选题】
铺无菌台无菌包布下垂长度为___
A. 10cm以上
B. 20cm以上
C. 30cm以上
D. 40cm以上
E. 50cm以上
【单选题】
碘伏属于___
A. 高效
B. 中效
C. 中低效
D. 低效
E. 其余选项都不是
【单选题】
手术者洗手穿手术衣后,手套可以接触的部位___
A. 肩以上
B. 腰以下
C. 腋下部
D. 胸前部
E. 背部
【单选题】
每日Ⅰ级手术间开始前,提前开启净化空调系统时间___
A. 10分钟
B. 15分钟
C. 20分钟
D. 30分钟
E. 40分钟
【单选题】
紫外线消毒的有效距离是___
A. 1m
B. 2m
C. 5m
D. 10m
E. 15m
【单选题】
若需提高煮沸温度,可在水中加入___
A. 亚硝酸钠
B. 氯化钠
C. 碳酸氢钠
D. 乙醇
E. 高锰酸钾
【单选题】
手术器械物品应用最普遍.效果最可靠的灭菌法是___
A. 高压蒸汽灭菌法
B. 火烧法
C. 紫外线照射
D. 煮沸灭菌法
E. 甲醛蒸汽熏蒸法
【单选题】
手术区皮肤消毒应包括手术切口周围至少___
A. 30cm
B. 20cm
C. 15cm
D. 10cm
E. 5cm
【单选题】
粘膜消毒可使用下列哪一种药液___
A. 碘酊
B. 聚维酮碘(碘伏)
C. 苯扎溴铵(新洁尔灭)
D. 氯己定
E. 乙醇
【单选题】
手术野铺巾的顺序是___
A. 先中单,再剖腹单,最后手术巾
B. 先剖腹单,再手术巾,最后中单
C. 先手术巾,再中单,最后剖腹单
D. 先中单,再手术巾,最后剖腹单
E. 先手术巾,再剖腹单,最后中单
【单选题】
压力蒸汽灭菌时器械包的重量___
A. 5kg
B. 6kg
C. 7kg
D. 8kg
E. 10kg
【单选题】
腹部手术铺单原则___
A. 先上后下,先近后远
B. 先下后上,先近后远
C. 先下后上,先远后近
D. 先上后下,先远后近
E. 其余选项都不是
【单选题】
以下哪个手术属于1类手术___
A. 胰十二指肠切除术
B. 前列腺摘除术
C. 脑胶质瘤切除术
D. 肛瘘切除术
E. 肺叶切除术
【单选题】
做洁净手术间空气培养,培养皿暴露时间___
A. 10分钟
B. 15分钟
C. 20分钟
D. 30分钟
E. 40分钟
【单选题】
患者女性,45岁。Ⅲ度烧伤后行植皮术,大腿内侧供皮区消毒不可使用___
A. 70%乙醇
B. 1:1000苯扎溴铵酊
C. 3%碘酊
D. 1:1000氯己定酊
E. 0.5%PVP碘
【单选题】
手术间通常保持的温度___
A. 16~18℃
B. 18~20℃
C. 20~22℃
D. 22~25℃
E. 22~26℃
【单选题】
Ⅰ.Ⅱ级手术室空气采样的时间___
A. 手术开始前30分钟
B. 手术开始前1小时
C. 手术结束后30分钟
D. 彻底清扫后30分钟
E. 采样前提前开启空气消毒机30分钟后
【单选题】
手术间通常保持的湿度___
A. 30~40%
B. 30~50%
C. 40~50%
D. 40~60%
E. 50~60%
【单选题】
甲状腺手术时,患者的体位是___
A. 头低位
B. 侧卧位
C. 仰卧位
D. 颈仰卧位
E. 头高位
【单选题】
预真空压力蒸汽灭菌温度需达___
A. 106~110℃
B. 111~115℃
C. 116~120℃
D. 121~126℃
E. 132~134℃
【单选题】
使用中消毒液含菌量必须___
A. ≤100cfu/L
B. <100cfu/L
C. ≤100cfu/ml
D. <100cfu/ml
E. 其余选项都不对
【单选题】
下列关于煮沸消毒时锅中水位的描述正确的是___
A. 物品应放于蒸格上,避免与水接触
B. 物品放于水中即可,无需浸没
C. 物品应完全浸没于水中
D. 消毒玻璃器皿时,玻璃瓶中应无水而瓶外需浸没于水中
E. 消毒玻璃器皿时,玻璃瓶中应充满水而瓶外无需浸没水中
【单选题】
手术区皮肤消毒的正确方法是___
A. 用2.5~3%的碘酊消毒3遍
B. 会阴部用碘酊消毒
C. 消毒范围与备皮范围一致
D. 消毒范围超过手术切口15cm
E. 用95%乙醇脱碘
【单选题】
手术中切开空腔脏器前应___
A. 生理盐水冲洗
B. 消毒液浸泡
C. 无菌干纱布覆盖
D. 生理盐水纱布覆盖
E. 化疗药液浸泡
【单选题】
肛门会阴部手术皮肤消毒的方向是___
A. 以切口为中心从左向右消毒
B. 以切口为中心从上向下消毒
C. 以切口为中心向四周消毒
D. 从外周向肛门中心消毒
E. 消毒区反复来回消毒
【单选题】
最可靠的高压蒸汽灭菌效果的监测方法是___
A. 物理监测方法
B. 化学指示剂
C. 化学指示胶带
D. 生物监测方法
E. 其余选项都不对
【单选题】
患者男性,行坏死肠段切除加端一端吻合术,第一助手铺手术巾第一块应在___
A. 剑突以上
B. 左侧腹
C. 右侧腹
D. 耻骨联合以下
E. 器械台
【单选题】
气性坏疽患者应按哪种隔离处理___
A. 呼吸道隔离
B. 消化道隔离
C. 严密隔离
D. 接触隔离
E. 血液/体液隔离
【单选题】
关于浸泡消毒法使用中的注意事项,下列哪项是错误的___
A. 浸泡前需将器械洗净擦干
B. 物品需全部浸入消毒溶液中
C. 需将关节打开
D. 管腔类物品的内外均应浸泡在消毒液中
E. 使用时直接将物品从药液中取出使用
【单选题】
Ⅰ.Ⅱ类区域工作人员手培养监测标准细菌总数为___
A. ≤15cfu/cm
B. ≤10cfu/cm
C. ≤8cfu/cm
D. ≤5cfu/cm
E. 其余各项都不是
【单选题】
手术中切开空腔脏器前用纱垫保护的目的是___
A. 防止出血
B. 防止细菌污染
C. 防止内脏器官暴露过久
D. 防止损伤
E. 防止术后腹胀
