單項(xiàng)選擇題Select thebest answer to this qestion. ASA/PIX Active/Active failover can be used toload-balance:()

A. All traffic passing through theappliance
B. Traffic from internal networks on a per IP basis
C. Based on protocol only.
D. On a per-context basis only.


您可能感興趣的試卷

你可能感興趣的試題

2.單項(xiàng)選擇題ASA/PIXversion 7.0 introduced ModularPolicyFramework (MPF) as anextensible wayto classify traffic,and then apply policies (or actions) to that traffic. MPF at aminimum requires which three commands?()

A. http-map, tcp-map, class-map
B. class-map, tcp-map, policy-map
C. class-map, policy-map, service-map
D. class-map, service-policy, policy-map

4.多項(xiàng)選擇題Which two are correct functions of the Cisco Anomaly Guard and Detector for preventing DDOS attacks? ()

A. uses Netflow data for anomaly detections
B. builds baseline profilesof normal operating conditions, enablingrapid identification of unusual activity that indicates an attack
C. accept events inputs from different network devicesvia syslog, SDEE and SNMP
D. dynamic diversion redirects and cleans only traffic destined for targeted devices, allowing unaffectedtraffic toflow freely and ensuring business continuity
E. pushes ACLs to network devices to only block the malicious traffic
F. using topology and configuration awareness, events from different devices are correlatedand attacks mitgitations are performed at the optimal location

5.單項(xiàng)選擇題Birthday attacks are used against which of the following?()

A. digital signatures
B. symmetric ciphering
C. hashalgoritms
D. asymmetric ciphering
E. digital certificates

6.單項(xiàng)選擇題Which of the following statements is correct regarding a hybridcrypto system?()

A. uses symmetric crypto for keys distribution
B. uses symmetric crypto for proof of origin
C. uses symmetric crypto for fast encrypted/decryption
D. uses asymmetric crypto for message confidentiality
E. uses symmetric crypto to transmit the asymmetric keys that is thenused to encrypt a session

7.多項(xiàng)選擇題When configuring IOS firewall (CBAC) operations on Cisco routers, the "inspection rule" could be applied at which two locations? ()

A. at the untrusted interfacein the inbound direction
B. atthe untrusted interface in theoutbounddirection
C. at thetrusted interface inthe inbound direction
D. at the trusted interface in the outbound direction
E. at the trusted and untrusted interfaces in the inbound direction
F. at the trusted and untrusted interfaces in the outbounddirection

8.多項(xiàng)選擇題The CS-MARS appliance offers attackmitigatons using which twomethods?  ()

A. Automatically pushing ACLs to layer 3 devices to block the attacker’s traffic
B. Automatically pushing commands to layer 2 switches to shutdown the attacker’s ports
C. Automatically resetting the attacker’sTCP connections
D. RecommendingACLs tobe manuallypushed tolayer 3 devices such as routers/firewalls
E. Operating as an inline appliance, it automaticallyblocks malicious traffic inline
F. Working inconjuction with CSM to block the attacker’s traffic inline

9.單項(xiàng)選擇題Which of the following are not steps in setting up aTLS session? ()

A. Client sends Hello to Server listing all of its supported cipher suites
B. Server sends Hello to Client listing all of its supported cipher suites
C. Client calculates and sends encryptedpre_master_secret
D. Client and Server calculate keys from pre_master_secret
E. Server sends Change Cipher Spec to indicate a shift to encrypted mode

10.單項(xiàng)選擇題PEAP provides authentication for theEAP exchange using: ()

A. RC4
B. TLS
C. SSH
D. AES
E. 3DES

最新試題

What are the header sizes for point-to-point and multi-point GRE(also known asmGRE) with tunnel key?()

題型:?jiǎn)雾?xiàng)選擇題

TACACS+ authentication uses whichthree packet types? ()

題型:多項(xiàng)選擇題

Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

題型:?jiǎn)雾?xiàng)選擇題

Since HTTP is one of the most common protocols used in the internet, what should be done at a firewall level to ensure thatthe protocol is being used correctly? ()

題型:?jiǎn)雾?xiàng)選擇題

Which of the following is true about RADIUSV end or Specific Attribute? ()

題型:多項(xiàng)選擇題

For a router to obtain a certificate from a CA, what is the first stepof the certificate enrollment process?()

題型:?jiǎn)雾?xiàng)選擇題

What group in Cisco IOS does 1536-bit Diffie-Hellman prime modulus equivalent too?()

題型:?jiǎn)雾?xiàng)選擇題

With PGP, which of the following entity signs a users’s public key?()

題型:?jiǎn)雾?xiàng)選擇題

Which of the following is an example of a security technology that could be enabled by Netflow?()

題型:?jiǎn)雾?xiàng)選擇題

What technologies are included inAnti-X? ()

題型:多項(xiàng)選擇題