單項(xiàng)選擇題Since HTTP is one of the most common protocols used in the internet, what should be done at a firewall level to ensure thatthe protocol is being used correctly? ()

A. Ensure that a stateful firewall allows only HTTP traffic destined for valid web server IP addresses.
B. Ensure that a firewall has SYN flood and DDoS protection applied specifically for valid web servers.
C. Ensure that your firewall enforces HTTP protocol compliance to ensure that only valid flows are allowed inand outof your network.
D. Ensure that HTTP is always authenticated.
E. Ensure that your web server is in a different zone than your backend servers such as SQL and DNS.


您可能感興趣的試卷

你可能感興趣的試題

1.單項(xiàng)選擇題What Cisco technology protects against Spanning-Tree Protocol manipulation?()

A. Spanning tree protect
B. Root Guard and BPDU Guard
C. Unicast Reverse Path Forwarding
D. MAC spoof guard
E. Port Security

2.單項(xiàng)選擇題Which of the following is an example of a security technology that could be enabled by Netflow?()

A. Anomaly Detection
B. SYN Cookies
C. Application Inspection
D. Content filtering
E. Anti-X Protection
F. Anti Virus

3.單項(xiàng)選擇題What Cisco Switch feature best protects against CAM table overflow attacks?()

A. Storm Control
B. Port security
C. CAM table size definition
D. IP spoof prevention
E. Network Based Application Recognition

5.單項(xiàng)選擇題ASDM on the ASA platform is executed as:()

A. An active-x applicationor a java script application
B. A java script application and a PHP application.
C. A fully compiled .NET framework application
D. A fully operational Visual Basic application
E. A java applet running in the context of your browser or a stand alone application using the java run-timeenvironment

6.單項(xiàng)選擇題What is true about SYN cookies?()

A. All TCPoptions are supported, such as largewindows.
B. The server can have more than8 unique MSS values.
C. SYN cookies are not implemented as a method of defending against SYN floods.
D. SYN cookies are implemented as a method of defending against SYN floods.

7.單項(xiàng)選擇題Of the threats discussed below, what is the main advantage of using Cisco Secure Desktop which is part of the Cisco ASA VPN solution?()

A. Secure desktop will create a completely separate computing environment thatwill be deleted when you are done.This ensures that no confidential data has been left on the shared/public computer.
B. Secure desktop is used to protect access to your registry and systemfiles when browsing to SSL/VPN protectedpages.
C. Secure Desktop ensures that an SSLprotected password cannotbe exploitedby a man in the middle attackusing a spoofed certificate.
D. Secure desktop hardens the operating system of the machines you are using at the time secure desktop islaunched.

8.多項(xiàng)選擇題Which statements are true concerning NAT? ()

A. NAT provides 1 to manyaddress mapping.
B. NAT provides 1 to 1 address mapping.
C. NAT is only useful forTCP/UDP and ICMP traffic.
D. NAT can be used for all IP traffic.

9.多項(xiàng)選擇題What technologies are included inAnti-X? ()

A. Content and URL filtering
B. Intrusion Prevention
C. VPN
D. Virus and Phishing protection
E. Content Caching

10.單項(xiàng)選擇題CSA protects your host by: ()

A. Preventing browsers from opening network sockets inlistening state.
B. Preventingbuffer overflows.
C. Preventingusers from entering unencrypted passwords
D. Preventing browsers from acting as client to webservers.