相关试题
【单选题】
各系统的跳开关安装在:___
A. 在驾驶舱顶板上
B. 在前仪表板上
C. 在驾驶员座椅的后面板上
D. 在电子设备舱里
【单选题】
飞机的大部分系统控制面板装于:___
A. 操纵台
B. 头顶板
C. 仪表板
D. 设备舱
【单选题】
驾驶舱有一个兰灯亮了,则___
A. 一个系统有故障
B. 一个主系统在工作
C. 进行一个系统的测试
D. 一个备用系统在工作
【单选题】
驾驶舱大多数按压灯电门有两个位置,如果一个白色OFF灯亮。___
A. 电门松出,且系统处于不工作状态
B. 电门按进,且系统处于故障状态
C. 电门按进,且系统处于工作状态
D. 电门松出,且系统处于测试状态
【单选题】
一个驾驶舱电门灯显示绿色代表___
A. 有一个系统故障
B. 正在做维护工作
C. 一个暂时使用的系统正常工作
D. 一个备份系统正常工作
【单选题】
一个驾驶舱电门灯显示蓝色代表___
A. 有一个系统故障
B. 正在做维护工作
C. 一个暂时使用的系统正常工作
D. 一个备份系统正常工作
【单选题】
不考虑轮轴在内,飞机有几个主要顶点?___
【单选题】
A330飞机采用那种方式顶升飞机?___
A. 前三点
B. 后三点
C. 托架
D. 单点顶升
【单选题】
外电源面板位于那里?___
A. 前轮舱前面
B. 前轮舱后面
C. 前轮舱左侧
D. 前轮舱右侧
【单选题】
飞机的区域100指的是什么?___
A. 上部机身
B. 下部机身
C. 右大翼
D. 门
【单选题】
飞机的区域200指的是什么?___
A. 上部机身
B. 左大翼
C. 右大翼
D. 门
【单选题】
飞机的区域500指的是什么?___
A. 上部机身
B. 左大翼
C. 右大翼
D. 门
【单选题】
飞机的区域600指的是什么?___
A. 上部机身
B. 左大翼
C. 右大翼
D. 门
【单选题】
飞机的区域700指的是什么?___
A. 尾部
B. 发动机
C. 右大翼
D. 起落架
【单选题】
飞机的区域800指的是什么?___
A. 上部机身
B. 左大翼
C. 右大翼
D. 门
【单选题】
水平安定面的“0”站位是那里?___
A. 在安定面与机身结合处
B. 在机头前252英寸处
C. 在飞机的纵轴线上
D. 在飞机的横轴线上
【单选题】
红色灯亮表示:___
A. 此故障需要机组立刻处理
B. 需要机组立刻知道
C. 机组不需要理会此故障
D. 不会影响到飞机安全
【单选题】
ATA-100规范由几位数字组成:___
【单选题】
依据下列哪种手册来放行飞机?___
A. 停机坪手册
B. 维护手册
C. 放行手册
D. 排故手册
【单选题】
左副翼的区域应为:___
A. 500
B. 600
C. 700
D. 100
【单选题】
绿色跳开关代表:___
A. 该跳开关被监控
B. 该跳开关的电流很小
C. 该跳开关不能被断开
D. 该跳开关电压很高
【单选题】
目视检查主要是确认:___
A. 控制舵面是否在合适位置,且结构有否损坏
B. 是否有渗油
C. 盖板和窗门是否关好
D. 以上所有
【单选题】
地面准确地目视检查刹车磨损状态时,需要:___
A. 先把起落架顶起
B. 先给轮子充好气
C. 先设置好停留刹车
D. 发动机停车30分钟后
【单选题】
飞机的静电敏感元件有什么标志?___
A. 红色标志
B. 黄色标志
C. 黑色标志
D. 黄底和黑色标志
【单选题】
如果想在ND上显示计时,按钮在什么位置?___
A. 中央操纵台
B. 遮光板
C. ECAM控制面板
D. 中央仪表板
【单选题】
哪一种复合材料用在飞机的主要结构上?___
A. CFRP
B. GFRP
C. AFRP
D. "Kevlar"复合材料
【单选题】
对于飞机主要结构使用的铝合金的保护方法是采用:___
A. 表面镀锌
B. 表面镀钛
C. 复盖一层纯铝
D. 不用处理
【单选题】
对编号为193CB的盖板说法正确的是?___
A. 193区域的第二块盖板,表面朝下
B. 193区域的第三块盖板,表面朝上
C. 193区域的第三块盖板,表面朝下
D. 193区域的第二块盖板,表面朝上
【单选题】
黑舱原理是指:___
A. 在正常情况下,驾驶舱没有灯被点亮
B. 驾驶舱没有安装指示灯
C. 当故障时,所有灯都灭
D. 没有安装照明灯
【单选题】
系统工作在正常状态,只点亮哪些灯:___
A. 白灯和红灯
B. 绿灯和兰灯
C. 红灯和琥珀灯
D. 所有灯都亮
【单选题】
AMM里页框401部分的主要内容是什么?___
【单选题】
排故手册里页框101的内容关于:___
A. 仅测试
B. 故障隔离步骤工作
C. 索引
D. 工作号
【单选题】
需要做某个系统的测试,应使用哪一种手册?___
A. 维护手册
B. 放行手册
C. 零部件手册
D. 排故手册
【单选题】
给飞机供电之前,首先要检查的是哪一项?___
A. 停留刹车已设好
B. 油门手柄在慢车位
C. 电瓶电压
D. 火警测试
【单选题】
正常情况下一个系统的操作电门按进而且电门上的灯不亮,则___
A. 系统有故障
B. 一个主系统在工作
C. 一个备用系统在工作
D. 系统没接通
【单选题】
正常情况下一个系统的操作电门按进,则___
A. 系统处于接通状态
B. 系统处于自动状态
C. 系统处于超控状态
D. 以上都对
推荐试题
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
【单选题】
When connecting to an external resource,you must change a source IP address to use one IP address from a range of 207.165.201.1 to 207.165.1.30. Which option do you implement ?___
A. dynamic source NAT that uses an IP ad dress as a mapped source
B. static destination NAT that uses a subnet as a real de stination
C. dynamic source NAT that uses a range as a mapped source
D. static destination NAT that uses a subnet as a real source
【单选题】
Refer to the exhibit. 【nat(ins,any)dynamic interface】Which ty pe of NaT is configured on a Cisco ASA?___
A. dynamic NAT
B. source identity NAT
C. dynamic PAT
D. identity twice NAT
