【单选题】
When users login to the Client less Ssl Vpn using https://209.165.201.2/test ,which group policy will be applied?___
A. test
B. clientless
C. sales
D. DfitGrp Policy
E. Default RAGroup
F. Default WEB VPN
G. roup
查看试卷,进入试卷练习
微信扫一扫,开始刷题
答案
C
解析
暂无解析
相关试题
【单选题】
Which user authentication method is used when users login to the Clientless SSLVPN portal using https://209.165.201.2/test?___
A. AAA with LOCAL database
B. AAA with RADIUS server
C. Certificate
D. :Both Certificate and aaa with LoCAL database
E. Both Certificate and AAA with RADIUS server
【单选题】
What' s the technology that you can use to prevent non malicious program to runin the computer that is disconnected from the network?___
A. Firewall
B. Sofware Antivirus
C. Network IPS
D. Host IPS
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
A. 0
B. 50
C. 10
D. 200
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
推荐试题
【单选题】
患者男性,主诉右上腹疼痛来院,医生查体不配合,病人疼痛严重,辗转反侧,坐卧不宁,该患者的体位属于___
A. 主动体位
B. 被动体位
C. 强迫体位
D. 俯卧体位
E. 仰卧位
【单选题】
患者,女性,30岁,剖宫产术后7小时,主诉下腹胀满,有尿意,但不能排出,检查伤口敷料未见血性渗出。查体:耻骨上触到充盈的膀胱,叩诊呈鼓音。患者现存护理诊断为___
A. 尿潴留
B. 有皮肤完整性受损的危险
C. 体液过多
D. 潜在并发症:切口感染
E. 潜在并发症:出血
【单选题】
患者女性,40岁。子宫全切术后4天,腹部胀痛难忍,腹部叩诊为鼓音,护士遵医嘱为其行肛管排气时见排气不畅,护士可___
A. 更换肛管重插
B. 帮助病员转换体位
C. 嘱病员屏气,增加腹压
D. 增加肛管插入深度至22cm
E. 嘱病员保留肛管1小时
【单选题】
以下关于等长运动的解释正确的是___
A. 肌肉的张力和长度均不改变
B. 不增加肌肉的张力而改变肌肉的长度
C. 增加肌肉的张力而不改变肌肉的长度
D. 肌肉的张力和长度均改变
E. 等长运动又称动力练习
【单选题】
关于维生素PP说法错误的是___
A. 有明显的氧化还原功能
B. 构成脱氢酶的辅酶
C. 维持皮肤与神经的健康
D. 来源于动物肝脏、豆类、花生等
E. 成年人供给量:男性12~17mg/d,女性11~16mg/d
【单选题】
患者,女性,46岁,右侧乳腺癌根治术后,护士协助其更换衣裤时应___
A. 先脱患侧,先穿健侧
B. 先脱患侧,先穿患侧
C. 先脱健侧,先穿患侧
D. 先脱左侧,先穿左侧
E. 先脱右侧,先穿左侧
【单选题】
患者,男性,73岁,静脉输液发生急性肺水肿,立即停止输液,其后给予的最简便措施是___
A. 呼吸机加压给氧
B. 通知医生
C. 四肢轮扎
D. 使病人取端坐位两腿下垂
E. 静脉缓慢推注强心药
【单选题】
患者男性,58岁。肠胀气,遵医嘱行肛管排气,不正确的操作是___
A. 肛管插入直肠15~18cm
B. 与肛管相连的橡胶管插入水瓶中
C. 在病人腹部做向心按摩
D. 病人取左侧卧位
E. 保留肛管1小时以上
【单选题】
患者,女性,55岁。糖尿病,自理能力良好。护士向其宣教饮食、活动等方面的健康知识,此种护理活动属于奥瑞姆补偿系统中的___
A. 全补偿系统
B. 部分补偿系统
C. 健康教育系统
D. 辅助系统
E. 支持教育系统
【单选题】
用冷可使血管收缩,但持续用冷后会血管扩张,出现血管扩张的用冷时间是___
A. 15~25分钟
B. 30~60分钟
C. 60~90分钟
D. 90~120分钟
E. 120分钟以上
【单选题】
各类环境空气、物体表面、医务人员手不得检出致病微生物,是指___
A. 肺炎链球菌
B. 葡萄球菌
C. 金黄色葡萄球菌、乙型溶血型性链球菌
D. 大肠埃希氏菌
E. 铜绿假单胞菌
【单选题】
护士收集健康资料的目的不包括___
A. 为了解病人的隐私,确立护理诊断提供依据
B. 为寻找病因,制定护理措施提供依据
C. 为了解病人的心理特征,选择心理护理方案提供依据
D. 为了解病情变化,制定治疗方案提供依据
E. 为了解治疗反应,评估护理措施提供依据
【单选题】
患者,女性,28岁,于1:00顺利分娩一男婴,至次晨6:00未排尿,主诉有尿意,处理措施不妥的是___
A. 立即施行导尿术
B. 用温水冲会阴
C. 让其听流水声
D. 摇高床头,让其坐起排尿
E. 用手轻轻按摩下腹部协助排尿
【单选题】
陈先生接管一家濒临倒闭的企业三个月,出现头痛、失眠、心跳加快、肌肉酸痛等症状,按塞利的压力理论,他所处的压力生理反应期别是___
A. 衰竭期
B. 适应期
C. 警告期
D. 抵抗期
E. 反应期
【单选题】
患儿,男,1岁,住院期间因输液时查对不严,错输了药物,造成重度残疾,此类事故属于___
A. 五级医疗事故
B. 四级医疗事故
C. 三级医疗事故
D. 二级医疗事故
E. 一级医疗事故
【单选题】
社区卫生服务的主要工作内容是___
A. 对健康人群的体检与筛查
B. 对社区居民生活方式的健康指导与教育
C. 预防、保健和促进健康
D. 安排有益健康的活动
E. 饮食营养指导与计划生育宣传
