【单选题】
If a switch port goes directly into a blocked state only when a superior BPDU is received, what mechanism must be in use?___
A. STP BPDU guard
B. Loop guard
C. EtherChannel guard
D. STP Root guard
查看试卷,进入试卷练习
微信扫一扫,开始刷题
答案
D
解析
暂无解析
相关试题
【单选题】
what improvement does EAP-FASTv2 provide over EAP-FAST? ___
A. It allows multiple credentials to be passed in a single EAP exchange.
B. It supports more secure encryption protocols
C. It allows faster authentication by using fewer packets.
D. It addresses security vulnerabilities found in the original protocol
【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
A. 0
B. 50
C. 10
D. 200
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
推荐试题
【多选题】
我们党面临的执政环境是复杂的,影响党的先进性、弱化党的纯洁性的因素也是复杂的,党内存在的___等突出问题尚未得到根本解决。
A. 思想不纯
B. 组织不纯
C. 道德不纯
D. 作风不纯
【多选题】
五年来,我们勇于面对党面临的重大风险考验和党内存在的突出问题,以顽强意志品质 正风肃纪、反腐惩恶,消除了党和国家内部存在的严重隐患,党内政治生活气象更新,党内 政治生态明显好转,党的 _______显著增强。___
A. 创造力
B. 创新力
C. 凝聚力
D. 战斗力
【多选题】
领导十三亿多人的社会主义大国,我们党既要政治过硬,也要本领高强。要___。
A. 增强学习本领,增强政治领导本领
B. 增强改革创新本领,增强科学发展本领
C. 增强依法执政本领,增强群众工作本领
D. 增强狠抓落实本领,增强驾驭风险本领
【多选题】
建设一支 ____、 ____、 ____的人民军队,是实现“两个一百年”奋斗目标、实现中华民族 伟大复兴的战略支撑。___
A. 听党指挥
B. 骁勇善战
C. 能打胜仗
D. 作风优良
【多选题】
党的十九大提出的巩固国防和强大军队的战略任务是___。
A. 保卫传统的领土领海领空安全
B. 保护海洋、太空、网络电磁空间等新型安全领域
C. 维护国家安全利益和国家发展利益
D. 维护国际和地区的安全和稳定
【多选题】
建设世界一流军队,就要___。
A. 牢固树立战斗力这个唯一的根本的标准
B. 坚持政治建军、改革强军、科技兴军、依法治军
C. 构建中国特色现代军事力量体系
D. 深入推进练兵备战
【多选题】
紧跟世界新军事革命加速发展的潮流,积极稳妥进行国防和军队改革,推动中国特色军事变革深入发展。就必须___。
A. 坚持以创新发展军事理论为先导
B. 着力提高国防科技工业自主创新能力
C. 深入推进军队组织形态传统化
D. 构建中国特色现代军事力量体系
【多选题】
必须全面贯彻党领导人民军队的一系列根本原则和制度,确立新时代党的强军思想在国防和军队建设中的指导地位,坚持___。
A. 政治建军
B. 改革强军
C. 科技兴军
D. 依法治军
【多选题】
坚持政治建军、改革强军、科技兴军、依法治军,建设一支___的人民军队,切实保证人民解放军有效履行新时代军队使命任务。
A. 听党指挥
B. 能打胜仗
C. 作风优良
D. 保障有力
【多选题】
坚持走中国特色强军之路,继续深化国防和军队改革,深化___等重大政策制度改革,推进军事管理革命,完善和发展中国特色社会主义军事制度。
A. 军队编制制度
B. 军官职业化制度
C. 文职人员制度
D. 兵役制度
【多选题】
军队是要准备打仗的,一切工作都必须坚持战斗力标准,向能打仗、打胜仗聚焦,要___。
A. 扎实做好各战略方向军事斗争准备
B. 统筹推进传统安全领域和新型安全领域军事斗争准备
C. 发展新型作战力量和保障力量
D. 开展实战化军事训练
【多选题】
世界面临的___,恐怖主义、网络安全、重大传染性疾病、气候变化等非传统安全威胁持续蔓延,人类面临许多共同挑战。
A. 不稳定性不确定性突出
B. 世界经济增长动能不足
C. 贫富分化日益严重
D. 地区热点问题此起彼伏
【多选题】
坚持走中国特色强军之路,全面推进国防和军队现代化,同国家建设化进程相一致,全面推进___
A. 军事理论现代化
B. 军队组织形态现代化
C. 军事人员现代化
D. 武器装备现代化
【多选题】
中国共产党在领导社会主义事业中,必须坚持以经济建设为中心,其他各项工作都服从和服务于这个中心。要实施科教兴国战略、人才强国战略、创新驱动发展战略、___,促进国民经济更高质量、更有效率、更加公平、更可持续发展。
A. 乡村振兴战略
B. 区域协调发展战略
C. 可持续发展战略
D. 军民融合发展战略
【多选题】
我们要坚持富国和强军相统一,强化___,深化国防科技工业改革,形成军民融合深度发展格局,构建一体化的国家战略体系和能力。
A. 统一领导
B. 顶层设计
C. 改革创新
D. 重大项目落实
【多选题】
20世纪70年代末80年代初,邓小平对国际形势做出的新判断是___
A. 世界大战是可以避免的
B. 和平与发展是当代时代的主题
C. 建立了国际政治经济新秩序
D. 霸权主义和强权政治是和平与发展的主要障碍
【多选题】
中国外交工作的根本任务和基本目标___
A. 维护中国发展的重要战略机遇期
B. 争取和平稳定的国际环境
C. 睦邻友好的周边环境
D. 平等互利的合作环境和客观友善的舆论环境
【多选题】
坚持独立自主的和平外交政策是指___。
A. 把国家主权和安全放在第一位
B. 从我国人民和世界人民的根本利益出发
C. 反对一切形式的霸权主义和强权政治
D. 主张和平解决国际争端和热点问题
