多項選擇題The CS-MARS appliance offers attackmitigatons using which twomethods?  ()

A. Automatically pushing ACLs to layer 3 devices to block the attacker’s traffic
B. Automatically pushing commands to layer 2 switches to shutdown the attacker’s ports
C. Automatically resetting the attacker’sTCP connections
D. RecommendingACLs tobe manuallypushed tolayer 3 devices such as routers/firewalls
E. Operating as an inline appliance, it automaticallyblocks malicious traffic inline
F. Working inconjuction with CSM to block the attacker’s traffic inline


您可能感興趣的試卷

你可能感興趣的試題

1.單項選擇題Which of the following are not steps in setting up aTLS session? ()

A. Client sends Hello to Server listing all of its supported cipher suites
B. Server sends Hello to Client listing all of its supported cipher suites
C. Client calculates and sends encryptedpre_master_secret
D. Client and Server calculate keys from pre_master_secret
E. Server sends Change Cipher Spec to indicate a shift to encrypted mode

2.單項選擇題PEAP provides authentication for theEAP exchange using: ()

A. RC4
B. TLS
C. SSH
D. AES
E. 3DES

3.單項選擇題To enable TCP Port Forwarding applications using IOS WebVPN, what needs tobe downloaded to the client?()

A. Cisco SecurityAgent (CSA)
B. CiscoTrustAgent (CTA)
C. Cisco Secure Desktop (CSD)
D. A small Java Applet
E. SSLVPN Client (SVC)
F. SSLVPN Client (SVC) and Cisco Secure Desktop (CSD)

4.單項選擇題Why is NTP an important component when implementing IPSec VPN in a PKI environment?()

A. To ensure the router has the correct time when generating its private/public key pairs.
B. To ensure the router has the correct time when checking certificate validity from the remote peers
C. To ensure the router time is sync with the remote peers for encryption keys generation
D. To ensure the router time is sync with the remote peers during theDH exchange
E. To ensure the router time is sync with the remote peers when generating the cookies during IKE phase 1

5.單項選擇題Using FTP passive mode, after the client opens thecommand channel (port 21) to the FTP server and requests passive mode, what will be the next step? ()

A. The FTP server sends back an acknowledgment (ACK) to the client
B. The FTP server allocates a port touse for the data channel and transmit that port number to the client
C. The FTP server opens the data channel to the client using the port number indicated by the client
D. The FTP client opens the data channel to the FTP server on Port 20
E. The FTP client opens the datachannel to the FTP server on Port 21

最新試題

When implementing internet standards you are required to follow RFC’s processes and procedures based onwhat RFC?()

題型:單項選擇題

Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

題型:單項選擇題

Which ones are the two type of ciphers?()

題型:單項選擇題

Which of these is the best way to provide sender non-repudiation?()

題型:單項選擇題

Which SSL protocol takes anapplication message tobe transmitted, fragments the datainto manageable blocks, optionally compresses the data, applies a MAC, encrypts, adds a header, and transmits the resulting unit ina TCPsegment?()

題型:單項選擇題

What is true about SYN cookies?()

題型:單項選擇題

What Cisco technology protects against Spanning-Tree Protocol manipulation?()

題型:單項選擇題

What Cisco Switch feature best protects against CAM table overflow attacks?()

題型:單項選擇題

Choose the most correct statements about SMTP/ESMTP. ()

題型:多項選擇題

In an L2TP voluntary tunneling scenario, the VPDN tunnel is terminated between:()

題型:單項選擇題