單項選擇題Which location will be recommended for extended or extended named ACLs?()

A.when using the established keyword,a location close to the destination point to ensure that return trafficis allowed
B.an intermediate location to filter as much traffic as possible ActualTests.com
C.a location as close to the source traffic as possible
D.a location as close to the destination traffic as possible


您可能感興趣的試卷

你可能感興趣的試題

2.單項選擇題What Cisco Security Agent Interceptor is in charge of intercepting all read/write requests to the rc files in UNIX?()

A.Configuration interceptor
B.Network interceptor
C.File system interceptor
D.Execution space interceptor

3.多項選擇題Which three items are Cisco best-practice recommendations for securing a network?()

A.Routinely apply patches to operating systems and applications
B.Disable unneeded services and ports on hosts
C.Deploy HIPS software on all end-user workstations
D.Require strong passwords and enable password expiration

4.單項選擇題Examine the following items, which one offers a variety of security solutions, including firewall, IPS, VPN,antispyware, antivirus, and antiphishing features?()

A.Cisco IOS router
B.Cisco PIX 500 series security appliance
C.Cisco 4200 series IPS appliance
D.Cisco ASA 5500 series security appliance

5.單項選擇題Before a Diffie-Hellman exchange may begin, the two parties involved must agree on what?()

A.Two secret keys
B.Two nonsecret keys
C.Two secret numbers
D.Two nonsecret numbers

6.單項選擇題

Based on the username global configuration mode command displayed in the exhibit. What does the optionsecret 5 indicate about the enable secret password?()

A.It is hashed using MD5
B.It is encrypted using a proprietary Cisco encryption algorithm
C.It is hashed using SHA
D.It is encrypted using DH group 5

8.單項選擇題The enable secret password appears as an MD5 hash in a router’s configuration file, whereas the enablepassword is not hashed (or encrypted, if the password-encryption service is not enabled). What is thereason that Cisco still support the use of both enable secret and enable passwords in a router’sconfiguration?()

A.The enable password is present for backward compatibility.
B.Because the enable secret password is a hash, it cannot be decrypted. Therefore, the enable password is used to match the password that was entered, and the enable secret is used to verify that the enablepassword has not been modified since the hash was generated.
C.The enable password is considered to be a router’s public key, whereas the enable secret password is considered to be a router’s private key.
D.The enable password is used for IKE Phase I, whereas the enable secret password is used for IKE Phase II.

9.單項選擇題

Which statement best describes the relationships between AAA function and TACACS+, RADIUS based onthe exhibit shown?()

A.TACACS+ - P4S1 and P4S4RADIUS - P4S2 and P4S3
B.TACACS+ - P4S2 and P4S4RADIUS - P4S1 and P4S3
C.TACACS+ - P4S1 and P4S3Actual RADIUS - P4S2 and P4S4
D.TACACS+ - P4S2 and P4S3RADIUS - P4S1 and P4S4

10.單項選擇題What will be enabled by the scanning technology-The Dynamic Vector Streaming (DVS)?()

A.Firmware-level virus detection
B.Signature-based virus filtering
C.Layer 4 virus detection
D.Signature-based spyware filtering

最新試題

In an IEEE 802.1x deployment,between which two devices EAPOL messages typically are sent?()

題型:單項選擇題

As a network engineer at Certpaper.com, you are responsible for Certpaper network. Which will benecessarily taken into consideration when implementing Syslogging in your network?()

題型:單項選擇題

Regarding constructing a good encryption algorithm, what does creating an avalanche effect indicate?()

題型:單項選擇題

For the following items, which one acts as a VPN termination device and is located at a primary networklocation?()

題型:單項選擇題

How do you define the authentication method that will be used with AAA?()

題型:單項選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項選擇題

Which one of the aaa accounting commands can be used to enable logging of both the start and stoprecords for user terminal sessions on the router?()

題型:單項選擇題

A standard access control list has been configured on a router and applied to interface Serial 0 in anoutbound direction. No ACL is applied to Interface Serial 1 on the same router. What will happen whentraffic being filtered by the access list does not match the configured ACL statements for Serial 0?()

題型:單項選擇題

Which one of the Cisco IOS commands can be used to verify that either the Cisco IOS image, theconfiguration files,or both have been properly backed up and secured?()

題型:單項選擇題

What is the objective of Diffie-Hellman?()

題型:單項選擇題