【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
【单选题】
When connecting to an external resource,you must change a source IP address to use one IP address from a range of 207.165.201.1 to 207.165.1.30. Which option do you implement ?___
A. dynamic source NAT that uses an IP ad dress as a mapped source
B. static destination NAT that uses a subnet as a real de stination
C. dynamic source NAT that uses a range as a mapped source
D. static destination NAT that uses a subnet as a real source
【单选题】
Refer to the exhibit. 【nat(ins,any)dynamic interface】Which ty pe of NaT is configured on a Cisco ASA?___
A. dynamic NAT
B. source identity NAT
C. dynamic PAT
D. identity twice NAT
【单选题】
Which mitigation technology for web-based threats prevents the removal of confidential data from the network?___
A. CTA
B. DCA
C. AMP
D. DLP
推荐试题
【单选题】
压缩气体和液化气体从管口破损处高速喷出时,由于强烈的摩擦作用,会产生___。
【单选题】
按照《建筑设计防火规范》对储存物品(易燃易爆性商品)的火灾危险性分类标准,难燃烧的物品属___类危险物。
【单选题】
安全色红色的含义为___。
A. 必须遵守规定的指令性信息
B. 禁止.停止.危险的信息
C. 注意.警告的信息
【单选题】
按照《化学品安全技术说明书编写规定》的要求,化学品主要成分为___,要填写有害组分的品名和浓度范围。
【单选题】
演练总指挥宣布演练结束后,参演人员按___集中进行现场讲评或者有序疏散。
【单选题】
___演练是针对应急预案中多项或全部应急响应功能开展的演练活动。
【单选题】
应急救援预案要有实用性.要根据___单位的实际条件制订,使预案便于操作。
【单选题】
《安全生产法》规定,生产经营单位对___未登记建档,或者未进行评估.监控,或者未制定应急预案的,责令限期改正,可以处十万元以下的罚款;逾期未改正的,责令停产停业整顿,并处十万元以上二十万元以下的罚款,对其直接负责人的主管人员和其他直接责任人员处二万元以上五万元以下的罚款;构成犯罪的,依照刑法有关规定追究刑事责任。
A. 危险化学品
B. 储存设备
C. 重大危险源
【单选题】
《危险化学品安全管理条例》规定,危险化学品单位应当制定本单位危险化学品事故应急预案,配备应急救援人员和必要的应急救援器材.设备,并定期组织应急救援___。
【单选题】
任何电气设备在未验明无电之前,一律按 ___处理。
【单选题】
《气瓶安全监察规程》规定,车用压缩天然气钢瓶,每___年检验一次。
【单选题】
按照爆炸产生的原因和性质,爆炸可分为___。
A. 物理爆炸.化学爆炸和分解爆炸
B. 物理爆炸.化学爆炸和核爆炸
C. 炸药爆炸.化学爆炸和分解爆炸
【单选题】
下列___是表示易燃液体燃爆危险性的一个重要指标。
【单选题】
危险化学品的___的单位,应当在危险化学品的包装内附有与危险化学品完全一致的化学品安全技术说明书,并在包装(包括外包装件)上加贴或者拴挂与包装内危险化学品完全一致的化学品安全标签。
【单选题】
申请剧毒化学品和其他危险化学品经营许可证的企业和单位,___具有资质的安全评价机构对本单位的经营条件进行安全评价。
A. 由安全监督部门指定的
B. 自主选择
C. 由公安部门定点的
【单选题】
危险化学品仓库的墙体不能使用___墙。
【单选题】
危险.危害因素是指能使人造成伤亡,对物造成___,或影响人的身体健康导致疾病,对物造成慢性损坏的因素。
【单选题】
《中华人民共和国职业病防治法》规定___必须依法参加工伤社会保险。
【单选题】
年度检查是指压力容器运行中的在线检验,每年至少___次。
【单选题】
盛装液化气体的容器属压力容器的,___超装。
【单选题】
隔开储存需要在同一建筑或同一区域内,用___,将其与禁忌物料(即化学性质相抵触或灭火方法不同的化学物料)分离开的储存方式。
【单选题】
安全色绿色的含义为___。
A. 注意.警告的信息
B. 必须遵守规定的指令性信息
C. 安全的指示性信息
【单选题】
要充分利用好国家在安全生产和应急救援方面的投入政策,管好用好资金,坚持___原则,充分发挥投资效益。
A. 节约办事
B. 建设与节约并重
C. 利旧与新建并重
【单选题】
企业应对工厂的___负责,在对重大危险源进行辨识和评价后,应对每一个重大危险源制定出一套严格的管理制度,采取技术措施和组织措施对重大危险源进行严格的控制和管理。
【单选题】
应急救援指挥领导小组负责本单位预案的制订.修订,组建___,组织预案的实施和演练,检查督促做好重大危险源事故的预防措施和应急救援的各项准备工作。
A. 应急救援队伍
B. 基干民兵队伍
C. 生产骨干队伍
【单选题】
《中华人民共和国消防法》规定,国务院___部门对全国的消防工作实施监督管理。
【单选题】
《中国人民共和国消防法》规定,进行电焊.气焊等具有火灾危险的作业人员和自动消防系统的操作人员,必须___,并严格遵守消防安全操作规程。
【单选题】
压力容器内的压力由于容器内部或外部受热而显著增加,且容器与其它设备的连接管道又装有截止阀,应单独装设___。
【单选题】
《使用有毒物品作业场所劳动保护条例》规定,使用有毒物品作业的用人单位有关___应当熟悉有关职业病防治的法律、法规以及确保劳动者安全使用有毒物品作业的知识。
【单选题】
两种可燃性液体的混合物的闪点,一般在这两种液体闪点之间,并___这两种物质的平均值。
【单选题】
运输爆炸、剧毒和放射性物品,应指派___押运。
【单选题】
易燃气体___与助燃气体、剧毒气体同储。
【单选题】
对于现场液体泄漏应及时进行___、稀释、收容、处理。
【单选题】
《常用危险化学品分类及标志》中根据压缩气体和液化气体的理化性质,将压缩气体和液化气体分为三项即易燃气体、不燃气体、___气体。
【单选题】
危险化学品经营单位在经营许可证有效期满前___个月向原发证机关提出经营许可证的延期申请,并提交延期申请书和相关文件、资料。
【单选题】
特别重大事故,负责事故调查的人民政府应当自收到事故调查报告之日起___日内做出批复。
【单选题】
安全设备的设计、制造、安装、使用、检测、维修、改造和报废,应当符合国家标准或者___标准。
【单选题】
生产经营单位的主要负责人是本单位安全生产的第一负责人,对安全生产工作___负责。
