單項(xiàng)選擇題

Refer to the exhibit. You are the network security administrator responsible for router security.Your networkuses internal IP addressing according to RFC 1918 specifications.From the default rules shown,whichaccess control list would prevent IP address spoofing of these internal networks?()

A.SDM_Default_197
B.SDM_Default_199
C.SDM_Default_196
D.SDM_Default_198


您可能感興趣的試卷

你可能感興趣的試題

1.單項(xiàng)選擇題How do you define the authentication method that will be used with AAA?()

A.With the method aaa command
B.With the method command
C.With a method list
D.With a method statement

3.單項(xiàng)選擇題

On the basis of the show policy-map type inspect zone-pair session command output provided in theexhibit.What can be determined about this Cisco IOS zone based firewall policy?()




A.Stateful packet inspection will be applied only to HTTP packets that also match ACL 110
B.This is an inbound policy(applied to traffic sourced from the less secured zone destined to the moresecured zone)
C.This is an outbound policy(applied to traffic sourced from the more secured zone destined to the lesssecured zone)
D.All packets will be dropped since the class-default traffic class is matching all traffic

4.多項(xiàng)選擇題When using the Cisco SDM Quick Setup Siteto-Site VPN wizard, which three parameters do you configure?()

A.Source interface where encrypted traffic originates
B.IP address for the remote peer
C.Transform set for the IPsec tunnel
D.Interface for the VPN connection

5.單項(xiàng)選擇題Which statement is true about a Smurf attack?()

A.It sends ping requests in segments of an invalid size
B.It intercepts the third step in a TCP three-way handshake to hijack a session
C.It sends ping requests to a subnet, requesting that devices on that subnet send ping replies to a targetsystem
D.It uses Trojan horse applications to create a distributed collection of "zombie" computers, which can beused to launch a coordinated DDoS attack

6.單項(xiàng)選擇題What will be disabled as a result of the no service password-recovery command?()

A.password encryption service
B.changes to the config-register setting
C.the xmodem privilege EXEC mode command to recover the Cisco IOS image
D.ROMMON

7.單項(xiàng)選擇題A standard access control list has been configured on a router and applied to interface Serial 0 in anoutbound direction. No ACL is applied to Interface Serial 1 on the same router. What will happen whentraffic being filtered by the access list does not match the configured ACL statements for Serial 0?()

A.The traffic is dropped
B.The resulting action is determined by the destination IP address
C.The source IP address is checked,and,if a match is not found, traffic is routed out interface Serial 1
D.The resulting action is determined by the destination IP address and port number

8.單項(xiàng)選擇題Regarding constructing a good encryption algorithm, what does creating an avalanche effect indicate?()

A.Altering the key length causes the ciphertext to be completely different
B.Changing only a few bits of a ciphertext message causes the plain text to be completely different
C.Altering the key length causes the plain text to be completely different
D.Changing only a few bits of a plain-text message causes the ciphertext to be completely different

9.單項(xiàng)選擇題Which item is correct regarding Cisco IOS IPS on Cisco IOS Release 12.4(11)T and later ?()

A.requires the Basic or Advanced Signature Definition File
B.uses the built-in signatures that come with the Cisco IOS image as backup
C.supports SDEE,SYSLOG,and SNMP for sending Cisco IPS alerts
D.uses Cisco IPS 5.x signature format

10.單項(xiàng)選擇題After enabling port security on a Cisco Catalyst switch, what is the default action when the configuredmaximum of allowed MAC addresses value is exceeded?()

A.The port’s violation mode is set to restrict
B.The port is shut down
C.The MAC address table is cleared and the new MAC address is entered into the table
D.The port remains enabled, but bandwidth is throttled until old MAC addresses are aged out

最新試題

Which method is of gaining access to a system that bypasses normal security measures?()

題型:單項(xiàng)選擇題

On the basis of the show policy-map type inspect zone-pair session command output provided in theexhibit.What can be determined about this Cisco IOS zone based firewall policy?()

題型:單項(xiàng)選擇題

Regarding constructing a good encryption algorithm, what does creating an avalanche effect indicate?()

題型:單項(xiàng)選擇題

Which two actions can be configured to allow traffic to traverse an interface when zone-based security isbeing employed?()

題型:多項(xiàng)選擇題

What will be disabled as a result of the no service password-recovery command?()

題型:單項(xiàng)選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項(xiàng)選擇題

Which one of the aaa accounting commands can be used to enable logging of both the start and stoprecords for user terminal sessions on the router?()

題型:單項(xiàng)選擇題

During role-based CLI configuration, what must be enabled before any user views can be created?()

題型:單項(xiàng)選擇題

Which type of MAC address is dynamically learned by a switch port and then added to the switch’s runningconfiguration?()

題型:單項(xiàng)選擇題

How do you define the authentication method that will be used with AAA?()

題型:單項(xiàng)選擇題