相关试题
【多选题】
下面哪些原因可能会导致业务出现误码?( ) ___
A. 色散补偿不合理,欠补或过补
B. 入线路纤的光功率过高或过低
C. 发端OTU单板的发送激光器性能劣化
D. 开局或维护中拔出光纤接头测试后未用擦纤盒清洁就插回去
E.
F.
【多选题】
下面那些设备可以隔离冲突域()___
A. 中继器
B. 网桥
C. 交换机
D. 路由器
E.
F.
【多选题】
下面属于传输网络上产生误码的常见原因的有( )。___
A. 光纤性能劣化、损耗过高
B. 光纤接头不清洁或连接器不正确
C. 设备接地不好
D. 设备附近有强烈干扰源
E.
F.
【多选题】
下面有关NAT叙述正确的是:( )___
A. 内部网络的主机攻击外部网络时,在外部网络分析调试变得更加困难,因为内部网络的主机IP地址被屏蔽了;
B. 地址转换又称地址翻译,用来实现私有地址与公用网络地址之间的转换;
C. 通过配置将地址列表与地址池或端口IP地址关联,把符合地址列表中的数据报文的源地址进行转换;
D. 地址转换的提出为解决IP 地址紧张的问题提供了了一个有效途径;
E.
F.
【多选题】
线槽布缆施工步骤正确包括( )___
A. 选择线槽布放路由。为了不影响美观,应尽量沿踢脚线、门框等布放线槽,并选择弯角较少,且墙壁平整、光滑的路由(能够使用双面胶固定线槽)。
B. 选择线槽安装方式(双面胶粘帖方式或螺钉固定方式)。
C. 在采用双面胶粘帖方式时,应用布擦拭线槽布放路由上的墙面,使墙面上没有灰尘和垃圾,然后将双面胶帖在线槽及其配件上,并粘帖固定在墙面上
D. 在采用螺钉固定方式时,应根据线槽及其配件上标注的螺钉固定位置,将线槽及其配件固定在墙面上,一般3米直线槽需用6个螺钉进行固定
E.
F.
【多选题】
线槽布缆施工选择线槽安装方式( )___
A. 用带子扎紧
B. 用强力胶水粘稳
C. 双面胶粘帖方式
D. 螺钉固定方式
E.
F.
【多选题】
线路检查主要包括以下几个方面( )___
A. 光纤是否插好
B. 光纤是否严重弯曲
C. 光纤是否有断纤
D. 光纤是否绕行距离过长
E.
F.
【多选题】
线路日常巡回应有固定的熟悉( )、( )路由的巡回人员.___
A. 光缆线路
B. 光缆线路周围环境
C. 传输资源
D. 仪表
E.
F.
【多选题】
小城市(镇)和乡村中继光纤通信系统既可选用( )和/或( )___
A. STM-1
B. STM-4
C. STM-16
D. STM-64
E.
F.
【多选题】
巡检报告、记录的内容至少应该包括以下哪些内容( )___
A. 现场环境和设备运行状况
B. 线缆走线和破损情况
C. 标识标签张贴情况
D. 资料与现场核查对比情况
E.
F.
【多选题】
巡线员应具备有的技术档案和资料( )___
A. 架空光缆与电力线交越、防护资料
B. 光缆线路杆路设备主要维护规格表
C. 安全操作规程
D. 巡线员考核表
E.
F.
【多选题】
验收规范中,ONU远端管理功能的测试流程( )___
A. 按测试配置图所示建立测试系统环境,设备连接工作正常
B. 在网管系统上增加/删除/修改/查看 ONT及其状态
C. 对ONT上的业务口做相应的业务配置
D. 查看ONU的业务配置情况
E.
F.
【多选题】
业务恢复时限指自客户提出故障申告时或出现监控告警时起,至客户确认业务恢复的时间。对于业务质量故障,处理时限为()小时,跨地市的广域网AAA专线业务中断故障的业务恢复时限()小时___
A. 3
B. 4
C. 6
D. 8
E.
F.
【多选题】
业务监控保障总结主要从( )三方面进行总结.___
A. 业务运行情况
B. 保障执行情况
C. 经验案例
D. 故障描述
E.
F.
【多选题】
业务开通服务的AA级服务中,对于级别的描述是()___
A. A.接入缆接入主干后可有双路由
B. B.主节点双路由
C. C.重要分支节点双路由,一般分支节点环带链
D. D.客户建筑红线范围外接入光缆同路由长度不超过150米
E.
F.
【多选题】
业务中断处理的步骤包括( )___
A. 检查各站登录是否正常。
B. 检查各站光路上是否有危急告警。
C. 检查业务中断站点支路板上业务通道。
D. 逐段环回
E.
F.
【多选题】
业主维系的具体工作至少包括( )___
A. 物业及业主资料管理
B. 特殊站点出入管理
C. 业主走访与关怀
D. 业主纠纷管理
E.
F.
【多选题】
一般的光分路器可以分出的光路有( )___
A. 1:3
B. 1:64
C. 1:8
D. 1:32
E.
F.
【多选题】
一般来说,如果拨测能够Ping通客户端专线IP地址,基本可排除( )与( ).___
A. 我方网络
B. 客户端服务器
C. 专线问题
D. 业务系统
E.
F.
【多选题】
移动IMS能够实现以下哪几种终端接入( )___
A. 软终端
B. IP-PBX
C. 手机
D. SIP固话终端
E.
F.
【多选题】
以太网使用的物理介质主要有( )___
A. 同轴电缆
B. 双绞线
C. 光缆
D. V.24电缆
E.
F.
【多选题】
以下对VLAN的描述,正确的是( ) ___
A. 利用VLAN,可有效隔离广播域
B. 要实现VLAN间的通信,必须使用外部的路由器为其指定路由
C. 可以将交换机的端口静态地或动态地指派给某一个VLAN
D. VLAN中的成员可相互通信,只有访问其它VLAN中的主机时,才需要网关
E.
F.
【多选题】
以下关于 IP地址的说法正确的是_________
A. IP 地址可以固化在硬件中,是独一无二的
B. IP 地址分为 A、C、D、E 五类
C. IP 地址通常用点分十六进制来表示,例如:10.110.192.111
D. IP 地址是由 32 个二进制位组成的
E.
F.
【多选题】
以下关于DNS的描述,正确的是( )___
A. 域名结构有若干分量组成,分量间以“.”隔开;
B. DNS采用的是server-client模型;
C. 域名可以反映出计算机的物理位置;
D. DNS是联机分布式数据操作系统
E.
F.
【多选题】
以下关于电路交换和分组交换的描述正确的是______。___
A. 分组交换网络资源利用率低
B. 分组交换延迟大,传输实时性差
C. 电路交换网络资源利用率高
D. 电路交换延迟小,传输实时性强
E.
F.
【多选题】
以下几种情况哪些是非反射事件( )___
A. 光纤折断(无间隙)
B. 熔接点问题
C. 光纤中大的弯曲及微弯
D. 机械熔接造成的
E.
F.
【多选题】
以下描述中,正确的是( )。___
A. 一个STM-N最多可承载N个140Mbit/s
B. 一个STM-1可容纳3个34Mbit/s的信号
C. 一个STM-1可容纳3×7×3=63个2Mbit/s信号
D. 从140Mbit/s复用进SDH的STM-N中,信号利用率较低
E.
F.
【多选题】
以下哪几个网段是因特网地址分配组织规定保留用做私有地址的.( )___
A. 10.0.0.0-10.255.255.255
B. 129.0.0.0-129.255.255.255
C. 172.16.0.0-172.31.255.255
D. 192.168.0.0-192.168.255.255
E.
F.
【多选题】
以下哪几项属于电话服务注意事项.( )___
A. 与服务对象通话的声音不要过大
B. 代听电话,一定要主动地询问服务对象是否需要留言
C. 拔打预约电话时,应详细记录服务对象情况并与其确认预约时间、地点及相关的上门服务事项
D. 服务对象若多次不接听电话,也要保持心态平衡,改时再次拔打
E.
F.
【多选题】
以下哪些参数为GPRS数据专线服务器端路由器必须配置参数.( )___
A. NAT
B. 访问控制列表
C. 接口IP地址、封装模式
D. Tunnel路由
E.
F.
【多选题】
以下哪些是防火墙的作用:( )___
A. 过滤进出网络的数据包
B. 封堵进出网络的访问行为
C. 记录通过防火墙的信息内容和活动
D. 对网络攻击进行告警
E.
F.
【多选题】
以下哪些是光缆线路设备的组成部分( )___
A. 光缆线路:各种敷设方式的通信光缆
B. 管道设备:管道,入孔和手孔等
C. 杆路设备:电杆,电杆的支撑加固装置和保护装置,吊线和挂钩等
D. 光中继设备
E.
F.
【多选题】
以下哪些属于常见的集团专线业务( )___
A. GPRS专线
B. 短信专线
C. 语音专线
D. 互联网专线
E.
F.
【多选题】
以下哪些属于光缆检验要求( )___
A. 工程使用的光缆的型式、规格应符合设计的规定和合同要求。
B. 光缆所附标识、标签内容应齐全、清晰。
C. 光缆外护套需完整无损,且应附有出厂质量检验合格证或厂方出具的相关证明文件
D. 在必要时,应测试光缆衰减和光缆长度(OTDR法)
E.
F.
【多选题】
以下哪些属于互联网专线高话务应急方案启动条件( )___
A. 当发生重要突发事件,引起局端路由器、交换机业务量增加,对系统承载能力造成压力
B. 当数据业务流量达到系统承载能力80%时,须按照应急方案,进行应急的准备步骤
C. 当数据业务流量达到系统承载能力90%时,须按照应急方案,进行应急的准备步骤
D. 当系统当前处理能力达到90%时,启动该应急方案
E.
F.
【多选题】
以下哪些属于互联网专线容灾应急方案启动的条件( )___
A. 当发生自然灾害、事故灾难等突发事件,或者因内部通信事故造成破坏,致使系统无法正常运行
B. 10分钟内收到批量集团客户(5家以上)投诉业务无法使用,当故障影响估计在30分钟内无法解决时
C. 20分钟内同时收到部分集团客户(3家以上)投诉业务无法使用,当故障影响估计在30分钟内无法解决时
D. 钻石客户投诉无法使用业务,故障影响估计在30分钟内无法解决时
E.
F.
【多选题】
以下哪些项不会触发线性保护倒换( )___
A. 两端设备连线连接不正常
B. 两端设备时间同步相关配置不正确
C. 两端设备的mac地址相同
D. 两端设备时钟源配置不正确
E.
F.
【多选题】
以下哪些项有可能会触发线性保护倒换( )___
A. 人工倒换
B. 强制倒换
C. 清除
D. 练习倒换
E.
F.
【多选题】
以下哪些因素可以引起光路LOS告警的产生?( )___
A. 输入无光功率
B. 光功率过低
C. 光功率过高
D. OOF持续3ms以上
E.
F.
【多选题】
以下那些设备可以隔离广播域 ( )___
A. 中继器
B. 路由器
C. 光电转换器
D. 三层交换机
E.
F.
推荐试题
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
【单选题】
What term can be defined as the securing, control, and identification of digital data?___
A. cryptography
B. crypto key
C. cryptoanalysis
D. cryptology
【单选题】
Which feature in the dNS security module provide on and off network DNS protection?___
A. Data Loss Prevention
B. Umbrella
C. Real-time sandboxing
D. Layer-4 monitoring
【单选题】
Which a dverse consequence can occur on a network without BPDu guard ?___
A. The olde st switch can be elected as the root bridge
B. Unauthorized switches that are connected to the network can cause spanning-tree loops
C.
D. ouble tagging can cause the switches to experience CAM table overload.
【单选题】
What configuration is required for multitenancy ?___
A. shared infrastructure
B. multiple carriers
C. co-located resources
D. multiple separate zones
【单选题】
Why does ISE require its own certificate issued by a trusted CA?___
A. ISEs certificate allows guest devices to validate it as a trusted network device
B. It generates certificates for guest devices ba sed on its own certificate
C. It requests certificates for guest devices from the Ca server based on its own certificate.
D. ISE's certificate allows it to join the network security framework
【单选题】
which attack involves large numbers of ICMP packets with a spoofed source IP address?___
A. smurf attack
B. Teardrop attack
C. Nuke attack
D. SYN Flood attack
