“网络设备安全”自我水平测试评估
窗体顶端
Please answer question 1 before continuing.
1. Which option is true about the HTTP server on the Cisco IOS Software?
The HTTP server is on by default.
The HTTP server uses MD5 for authentication by default.
The HTTP server supports port 80 and 443 by default.
HTTP server requires authentication to provide access to the router.
关于运行Cisco IOS软件的HTTP服务器,哪一个选项正确?
The HTTP server is on by default.
The HTTP server uses MD5 for authentication by default.
The HTTP server supports port 80 and 443 by default.
HTTP server requires authentication to provide access to the router.
关于运行Cisco IOS软件的HTTP服务器,哪一个选项正确?
HTTP服务器在默认状态下被启用。
HTTP服务器默认状态下使用MD5进行身份认证。
HTTP服务器默认支持端口80和443。
HTTP服务器要求身份认证以支持接入路由器。
HTTP服务器默认状态下使用MD5进行身份认证。
HTTP服务器默认支持端口80和443。
HTTP服务器要求身份认证以支持接入路由器。
2. Which two places would be the most appropriate place to install your zone-based firewall? (Choose two.)
between data center subnets清朝建立者
小小时代歌曲>张碧晨下载between the internal network and an external network such as the Internet
between intranet sites
数学知识between remote VPN users and the central site VPN server
哪两个地方是最适合安装基于区域的防火墙的位置? (选择两项。)
小小时代歌曲>张碧晨下载between the internal network and an external network such as the Internet
between intranet sites
数学知识between remote VPN users and the central site VPN server
哪两个地方是最适合安装基于区域的防火墙的位置? (选择两项。)
数据中心子网之间内部网络和外部网络(如互联网)之间内联网站点之间远程 VPN用户和中央站点VPN服务器之间
3. What command tells you the state of your connection to your IKE SA peer?
show crypto sa
show sa peer ipsec
12315网上投诉十大男装品牌show ipsec peer sa
show crypto isakmp sa
show crypto ipsec sa
哪一命令能够显示出与IKE SA对等体的连接状态?
show crypto sa
show sa peer ipsec
12315网上投诉十大男装品牌show ipsec peer sa
show crypto isakmp sa
show crypto ipsec sa
哪一命令能够显示出与IKE SA对等体的连接状态?
show crypto sa
show sa peer ipsec
show ipsec peer sa
show crypto isakmp sa
show crypto ipsec sa
show sa peer ipsec
show ipsec peer sa
show crypto isakmp sa
show crypto ipsec sa
4. What is a potential security weakness of the traditional stateful firewall?
cannot support non-TCP flows
retains the state of the user data packet and dynamically assigned ports in the state table
cannot track the state of each connection setup to ensure that each connection follows a legitimate TCP three-way handshake
cannot detect application-layer attacks
传统的状态防火墙存在哪些潜在的安全漏洞?
cannot support non-TCP flows
retains the state of the user data packet and dynamically assigned ports in the state table
cannot track the state of each connection setup to ensure that each connection follows a legitimate TCP three-way handshake
cannot detect application-layer attacks
传统的状态防火墙存在哪些潜在的安全漏洞?
不能支持非TCP数据流保留用户数据包状态和在状态表中动态分配端口不能跟踪每一个连接设置的状态,以确保每一个连接都遵循合法的TCP三次握手协议。不能检测到应用层攻击
5. Which option uses IP directed broadcasts to attack a router?
smurf attack
TCP SYN flood attack
buffer overflow attack
MAC flood attack
smurf attack
TCP SYN flood attack
buffer overflow attack
MAC flood attack
版权声明:本站内容均来自互联网,仅供演示用,请勿用于商业和其他非法用途。如果侵犯了您的权益请与我们联系QQ:729038198,我们将在24小时内删除。
发表评论