多項選擇題Which two actions can be configured to allow traffic to traverse an interface when zone-based security isbeing employed?()

A.Pass
B.Flow
C.Allow
D.Inspect


您可能感興趣的試卷

你可能感興趣的試題

1.單項選擇題Which method is of gaining access to a system that bypasses normal security measures?()

A.Starting a Smurf attack
B.Conducting social engineering
C.Creating a back door
D.Launching a DoS attack

2.單項選擇題Which option ensures that data is not modified in transit?()

A.Authorization
B.Confidentiality
C.Authentication
D.Integrity

5.單項選擇題Which information is stored in the stateful session flow table while using a stateful firewall?()

A.the inside private IP address and the translated inside global IP address
B.the source and destination IP addresses, port numbers,TCP sequencing information, and additional flags for each TCP or UDP connection associated with a particular session
C.the outbound and inbound access rules (ACL entries)
D.all TCP and UDP header information only

7.單項選擇題What is the objective of Diffie-Hellman?()

A.used to verify the identity of the peer
B.used between the initiator and the responder to establish a basic security policy
C.used to establish a symmetric shared key via a public key exchange process
D.used for asymmetric public key encryption

8.單項選擇題Which type of MAC address is dynamically learned by a switch port and then added to the switch’s runningconfiguration?()

A.Static secure MAC address
B.Dynamic secure MAC address
C.Pervasive secure MAC address
D.Sticky secure MAC address

9.單項選擇題As a network engineer at Certpaper.com, you are responsible for Certpaper network. Which will benecessarily taken into consideration when implementing Syslogging in your network?()

A.Enable the highest level of Syslogging available to ensure you log all possible event messages
B.Use SSH to access your Syslog information
C.Log all messages to the system buffer so that they can be displayed when accessing the router
D.Syncronize clocks on the network with a protocol such as Network Time Protocol

10.單項選擇題

Refer to the exhibit. Based on the VPN connection shown, which statement is true?()

A.Traffic that matches access list 103 will be protected
B.This VPN configuration will not work because the tunnel IP and peer IP are the same
C.The tunnel is down because the transform set needs to include the Authentication Header parameter
D.The tunnel is down as result of being a static rule. It should be configured as a Dynamic IPsec policy

最新試題

How do you define the authentication method that will be used with AAA?()

題型:單項選擇題

What will be disabled as a result of the no service password-recovery command?()

題型:單項選擇題

Please choose the correct description about Cisco Self-Defending Network characteristics.()

題型:單項選擇題

For the following options, which feature is the foundation of Cisco Self-Defending Network technology?()

題型:單項選擇題

Which information is stored in the stateful session flow table while using a stateful firewall?()

題型:單項選擇題

Which three are distinctions between asymmetric and symmetric algorithms? ()

題型:多項選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項選擇題

Which option ensures that data is not modified in transit?()

題型:單項選擇題

If you click the Configure button along the top of Cisco SDM is graphical interface,which Tasks buttonpermits you to configure such features as SSH, NTP, SNMP, and syslog?()

題型:單項選擇題

When configuring SSH, which is the Cisco minimum recommended modulus value?()

題型:單項選擇題