How can you detect a false negative on an IPS？____答案

【单选题】

How can you detect a false negative on an IPS？___

A. View the alert on the ips

B. Review the ips log

C. Review the is console

D. Use a third- party system to perform penetration testing.

E. Use a third- party to audit the next generation firewall rules

查看试卷，进入试卷练习

微信扫一扫，开始刷题

答案

解析

暂无解析

相关试题

【单选题】

If a switch port goes directly into a blocked state only when a superior BPDU is received， what mechanism must be in use？___

A. STP BPDU guard

B. Loop guard

C. EtherChannel guard

D. STP Root guard

查看答案解析

【单选题】

what improvement does EAP-FASTv2 provide over EAP-FAST？ ___

A. It allows multiple credentials to be passed in a single EAP exchange.

B. It supports more secure encryption protocols

C. It allows faster authentication by using fewer packets.

D. It addresses security vulnerabilities found in the original protocol

查看答案解析

【单选题】

When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied？___

A. test

B. clientless

C. sales

D. DfitGrp Policy

E. Default RAGroup

F. Default WEB VPN

G. roup

查看答案解析

【单选题】

Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test？___

A. AAA with LOCAL database

B. AAA with RADIUS server

C. Certificate

D. :Both Certificate and aaa with LoCAL database

E. Both Certificate and AAA with RADIUS server

查看答案解析

【单选题】

What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network？___

A. Firewall

B. Sofware Antivirus

C. Network IPS

D. Host IPS

查看答案解析

【单选题】

Which statement about the communication between interfaces on the same security level is true？___

A. Interfaces on the same security level require additional configuration to permit interinterface communication

B. Configuring interfaces on the same security level can cause asymmetric routing

C. All traffic is allowed by default between interfaces on the same security level

D. You can configure only one interface on a n individual security level

查看答案解析

【单选题】

Which product can be used to provide application layer protection for tcp port 25 traffic？___

A. ESA

B. CWS

C. WSA

D. ASA

查看答案解析

【单选题】

which iPS mode is less secure than other options but allows optimal network through put ?___

A. inline mode

B. inline-bypass mode

C. transparent mode

D. Promiscuous mode

查看答案解析

【单选题】

Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack？___

A. reputation based filtering

B. signature based IPS

C. contextual analysis

D. graymail management and filtering

查看答案解析

【单选题】

Which type of social-engineering attack uses normal tele phone service as the attack vector？___

A. smishing

B. dialing

C. phishing

D. vishing

查看答案解析

【单选题】

Which quantifiable item should you consider when you organization adopts new technologies？___

A. exploits

B. vulnerability

C. threat

D. Risk

查看答案解析

【单选题】

Referencing the ClA model， in which scenario is a hash- only function most appropriate ？___

A. securing data at rest

B. securing real-time traffic

C. securing data in files

D. securing wireless transmissions

查看答案解析

【单选题】

Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications？___

A. 445 and 389

B. 888 and 3389

C. 636 and 4445

D. 363 and 983

查看答案解析

【单选题】

Refer to the exhibit for which reason is the tunnel unable to pass traffic___

A. the tunnel is failing to receive traffic from the remote peer

B. the local peer is unable to encrypt the traffic

C. the ip address of the remote peer is incorrect

D. UDP port 500 is blocked

查看答案解析

【单选题】

Which type of attack can exploit design flaws in the implementation of an application without___

A. DHCP starvation attacks

B. low-rate dos attacks

C. application DDos flood attacks

D. application DDoS flood attacks

E. volume-based DDoS attacks

查看答案解析

【单选题】

How can you protect CDP from reconnaissance attacks？___

A. Enable dynamic ARP inspection on all untrusted ports.

B. Enable dot1x on all ports that are connected to other switches.

D. isable CDP on ports connected to endpoints.

查看答案解析

【单选题】

Which type of attack can exploit design flaws in the implementation of an application without ？___

A. DHCP starvation attacks

B. low-rate dos attacks

C. application DDos flood attacks

D. application DDoS flood attacks

E. volume-based DDoS attacks

查看答案解析

【单选题】

Which option is a key security compone nt of and MDM deployment ？___

A. using network-specific installer packages

B. using an application tunnel by default

C. using self-signed certificates to validate the server

D. using MS-CHAPv2 as the primary

E. AP method

查看答案解析

【单选题】

Which Firepower Management Center feature detects and block exploits and hack attempts？___

A. Content blocker

B. file control

C. intrusion prevention

D. advanced malware protection

查看答案解析

【单选题】

hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture？___

A. They are preconfigured prime integers.

B. They are large pseudorandom numbers.

C. They are very small numbers chosen from a table of known valuses

D. They are numeric values extracted from ha shed system hostnames

查看答案解析

【多选题】

Which two characteristics of an application layer firewall are true？___

A. provides stateful firewal functionality

B. has low processor usage

C. provides protection for multiple applications

D. provides rever se proxy services

E. is immune to URL manipulation

查看答案解析

【多选题】

Which two devices are components of the BYOD architectural framework？___

A. Nexus 7010 switch

B. Cisco 3945 Router

C. Identify Services Engine

D. Wireless Access oints

E. Prime Infrastructure

查看答案解析

【多选题】

Which two actions can a zone based firewall take when looking at traffic？ ___

A. forward

B. inspect

C. drop

D. broadcast

E. filter

查看答案解析

【多选题】

n which two situations should you use in-band management？___

A. when management applications need concurrent access to the device

B. when you require administrator access from multiple locations

C. when a network device fails to forward packets

D. when you require ROMMON access

E. when the control plane fails to respond

查看答案解析

【多选题】

What are two ways to prevent eavesdropping when you perform device management tasks？___

A. Use an SSH connection.

B. Use SNMPv3

C. Use out-of-band management

D. Use SNMP

E. Use in-band management

查看答案解析

【多选题】

Which two features are commonly used CoPP and CPPr to protect the control plane？ ___

A. QoS

B. traffic classification

C. access lists

D. policy maps

E. class maps

F. Cisco Express Forwarding

查看答案解析

【多选题】

Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ？___

A. Clientless SSL VPN

B. SSL VPN Client

C. PPTP

D. L2TP/IPsec

E. IPsec IKEv1

F. IPsec IKEv2

查看答案解析

【多选题】

Which two statements regarding the aSA VPN configurations are correct？___

A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1

B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method

C. The Inside-srvbook mark references the https://192.168.1.2url

D. Only Clientless SSL VPN access is allowed with the Sales group policy

E. Any Connect， IPSec IKEv1， and IPSec IKEv2 VPN access is enabled on the outside interface

F. The Inside -SRV bookmark has not been applied to the Sales group policy

查看答案解析

【多选题】

Which three ESP fields can be encrypted during transmission？___

A. Security Parameter Index

B. Sequence Number

C. MAC Address

D. Padding

E. Pad length

F. Next Header

查看答案解析

【多选题】

.Which three statements de scribe DHCP spoofing attacks？___

A. They can modify traffic in transit.

B. They are used to perform man- in-the-middle attacks

C. They use ARP poisoning

D. They can access most network devices

E. They protect the ide ntity of the attacker by masking the DHCP address.

F. They are can physically modify the network gateway.

查看答案解析

【多选题】

Which statement about the communication between interfaces on the same security level is true？___

A. Interfaces on the same security level require additional configuration to permit interinterface communication

B. Configuring interfaces on the same security level can cause asymmetric routing

C. All traffic is allowed by default between interfaces on the same security level

D. You can configure only one interface on a n individual security level

查看答案解析

【多选题】

In which two situations should you use in band management？ ___

A. when the control plane fails to respond

B. when you require administrator access from multiple locations

C. when you require ROMMON access.

D. where a network device fails to forward packets

E. when multiple ma nagement applications need concument access to the device.

查看答案解析

【多选题】

Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___

A. multicast

B. fair queuing

C. WCCP

E. IGRP

查看答案解析

【多选题】

.Which loS command do you enter to test authentication again a AAA server？___

A. dialer aaa suffix <suffix> password <password>

B. ppp authentication chap pap test

C. test aaa-server authentication dialer group user name <user> password <password>

D. aaa authentication enable default test group tacases

查看答案解析

【多选题】

Which two statements about the self zone on a cisco Xone based policy firewall are true？___

A. Multiple interfaces can be assigned to the self zone

B. it supports stateful inspections for multicast traffic

C. zone pairs that include the self zone apply to traffic transiting the device.

D. it can be either the source zone or the destination zone

E. traffic entering the self zone must match a rule

查看答案解析

【多选题】

Which type of attack can exploit design flaws in the implementation of an application without ？___

A. DHCP starvation attacks

B. low-rate dos attacks

C. application DDos flood attacks

D. application DDoS flood attacks

E. volume-based DDoS attacks

查看答案解析

【单选题】

Which type of firewall can server as the interme diary between a client and a server ?___

A. Stateless firewall

B. application firewall

C. proxy firewall

D. personal firewall

查看答案解析

【单选题】

What is the highest security level that can be configured for an interface on an ASA？___

A. 0

B. 50

C. 10

D. 200

查看答案解析

【单选题】

Which term refers to the electromagnetic interference that can radiate from network cables？___

A. Gaussian distributions

B. Doppler waves

C. emanations

D. multimode distortion

查看答案解析

【单选题】

How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___

A. It inspects all traffic.

B. It drops all traffic.

C. It permits all traffic wihtout logging

D. It permits and logs all traffic

查看答案解析

推荐试题

【判断题】

CW-200K型转向架的差压阀试验差值为120±10kPa。

A. 对

B. 错

查看答案解析

【判断题】

CW-200K型转向架轴箱弹簧根据车辆自重试验高度选配，同一转向架高度差不大于5mm，同一轮对及转向架同一侧其高度差不大于3mm。

A. 对

B. 错

查看答案解析

【判断题】

SW-220K型转向架轴箱弹簧在A3修时须按图纸规定的最大试验载荷压缩不少于3次，每次压缩时不得有永久变形。

A. 对

B. 错

查看答案解析

【判断题】

SW-220K型转向架构架的横梁采用 203×12 mm无缝钢管（材质为Q345C或ST52-3），表面经酸洗磷化处理，其内腔作为空气弹簧的附加空气室。

A. 对

B. 错

查看答案解析

【判断题】

SW-220K型转向架为钢板焊接结构，平面呈H形。

A. 对

B. 错

查看答案解析

【判断题】

CW-200K型转向架构架的侧梁内有密封隔板，使内腔成为空气弹簧的附加气室。

A. 对

B. 错

查看答案解析

【判断题】

CW-220k型转向架的车轮为KKD型、LM磨耗型踏面，轮对组装后动平衡值不大于75 g•m。

A. 对

B. 错

查看答案解析

【判断题】

CW-200K型转向架在轴箱转臂和构架间还设有横向油压减振器。

A. 对

B. 错

查看答案解析

【判断题】

CW-200K型转向架的中央悬挂装置包括空气弹簧及其附属的高度阀、差压阀，以及横向挡、横向减振器、抗蛇行减振器、抗侧滚扭杆、牵引装置等主要部件。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架的制动盘安装箍上设有注油孔及注油孔螺堵。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架二系悬挂系统有垂向减振器、轴箱弹簧组、轴箱定位转臂、轴箱定位弹性节点等。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架轴箱弹簧装置的安全止挡（在弹簧开裂时落下）由构架挡块和轴箱挡块组成，分别位于构架和轴箱导框上，在一般状况下，两个挡块之间的距离为40mm。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架在空气弹簧出现故障（因气动系统故障或胶囊破裂而造成的气囊瘪下）的情况下，上盖板落到橡胶板上；这时，垂向缓冲由橡胶缓冲块提供，保证乘坐舒适度以及维修或更换气囊的时间。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架在车体和构架之间还装有两个抗蛇行运动减振器，以限制车辆的蛇行运动。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架在轴箱弹簧上导向套和构架之间有一个绝缘座，用来隔离轴箱。

A. 对

B. 错

查看答案解析

【判断题】

AM-96型转向架牵引装置的均衡杠杆，纵向拉杆接头均采用橡胶衬套，因此，在载荷的传递过程可以很好地吸收并衰减冲击。

A. 对

B. 错

查看答案解析

【判断题】

SFK1油压减振器，主要由活塞部、进油阀部、缸端密封部、上下连接部等四个主要部分和其他配件组成。

A. 对

B. 错

查看答案解析

【判断题】

油压减振器的示功图图象平滑,没有畸形和突变；图象的拉伸和压缩的不对称率不大于10%，则该油压减振器良好。

A. 对

B. 错

查看答案解析

【判断题】

油压减振器的同心度试验：慢速启动试验台（必要时可使用手动）减振器移动时不得发生碰撞。

A. 对

B. 错

查看答案解析

【判断题】

运行途中车辆制动软管损坏，造成压力空气大量漏泄，软管处能听到漏泄风音响，车辆乘务员应关闭两端的折角塞门，并用备用软管进行更换；如无备用软管，可卸下尾部或机车前部的软管，更换损坏的软管；更换后，经制动机作简略试验，作用良好后要求车长签字，取得证明，方可开车。

A. 对

B. 错

查看答案解析

【判断题】

如果在运行途中或客列检作业时发现单元制动大量漏风，要将连接单元缸的制动软管卸下，将管路堵住，使该单元制动缸停止使用即可；或者将该辆车关门排风。

A. 对

B. 错

查看答案解析

【判断题】

底体架破损程度较大和火灾事故后严重变形，经鉴定无修复价值可申请报废。

A. 对

B. 错

查看答案解析

【判断题】

计算车辆破损程度时，应将原有裂纹的破损旧痕尺寸一并计算在内。

A. 对

B. 错

查看答案解析

【判断题】

运行途中发现制动盘闸片抱死，直接作关门车处理。

A. 对

B. 错

查看答案解析

【判断题】

旅客列车制动盘毂松驰，造成制动盘空转应在站停时检查制动盘的连接螺栓有无松动、折损或丢失，如果是，及时修复，现车无法修复的，按规定做关门车处理，并预报前方列检所、请求处理。

A. 对

B. 错

查看答案解析

【判断题】

25T型客车运行途中因故更换15号过渡车钩与机车连接时，应通知机车司机限速运行，速度不得超过120km/h。

A. 对

B. 错

查看答案解析

【判断题】

新型车辆发生火苗时，应尽早疏散旅客，避免烟毒伤人.

A. 对

B. 错

查看答案解析

【判断题】

运行途中密接式车钩缓冲装置断裂造成风档、车端电气连接器破坏时，检查须相邻车辆的状态，将零部件损坏的车辆用中间体过渡车钩甩车，将其它车辆重新编组继续运行。

A. 对

B. 错

查看答案解析

【判断题】

发生一般B类以上、重大以下事故（不含相撞的事故），涉及其他安全监管办辖区时，事故发生地安全监管办应当在事故发生后24小时内发出电报通知相关安全监管办。

A. 对

B. 错

查看答案解析

【判断题】

事故应急救援实行越级报告制度。

A. 对

B. 错

查看答案解析

【判断题】

铁路客车车辆须有完整和正确反映其技术状态的文件及《客车技术履历簿》等有关资料。上述资料由有关部门或单位妥善保管，并根据情况变化及时修订。

A. 对

B. 错

查看答案解析

【判断题】

积极推进客车车辆修制改革，在预防修基础上，开展状态修、换件修和主要零部件的专业化集中修。

A. 对

B. 错

查看答案解析

【判断题】

列车运行图是铁路行车组织工作的基础。所有与列车运行有关的铁路各部门，必须按列车运行图的要求，组织本部门的工作，以保证列车按运行图运行。

A. 对

B. 错

查看答案解析

【判断题】

全国铁路的行车时刻，均以北京时间为标准，从零时起计算，实行 24小时制。

A. 对

B. 错

查看答案解析

【判断题】

列车运行途中在失电状态下，制动电磁阀排风不止，可关门排风后将该电磁阀反装，以堵住气路，让该电磁阀不起作用，然后开门通风，恢复运行；

A. 对

B. 错

查看答案解析

【判断题】

列车运行途中电空制动无电时，列车能自动转为空气制动机状态，无需做任何处理。

A. 对

B. 错

查看答案解析

【判断题】

客车转向架构架在段修时须煮洗除锈，要求露出金属本色。

A. 对

B. 错

查看答案解析

【判断题】

列车运行途中车辆钩舌断裂造成停车，如果断裂面是新痕，则定机务部门责任。

A. 对

B. 错

查看答案解析

【判断题】

安全运行管理系统是高速列车运行的神经中枢。

A. 对

B. 错

查看答案解析

【判断题】

目前铁路客车内装结构类材料的甲醛释放量的指标值没有明确规定。

A. 对

B. 错

查看答案解析