單項(xiàng)選擇題The number of packets (or flows) dropped because they do not conform to the ASA/PIX security policy can be viewed using what command? ()

A. show asp drop
B. show counters drop
C. show security-policy
D. show policy-map


您可能感興趣的試卷

你可能感興趣的試題

1.單項(xiàng)選擇題ASA/PIXversion 7.0 introduced ModularPolicyFramework (MPF) as anextensible wayto classify traffic,and then apply policies (or actions) to that traffic. MPF at aminimum requires which three commands?()

A. http-map, tcp-map, class-map
B. class-map, tcp-map, policy-map
C. class-map, policy-map, service-map
D. class-map, service-policy, policy-map

3.多項(xiàng)選擇題Which two are correct functions of the Cisco Anomaly Guard and Detector for preventing DDOS attacks? ()

A. uses Netflow data for anomaly detections
B. builds baseline profilesof normal operating conditions, enablingrapid identification of unusual activity that indicates an attack
C. accept events inputs from different network devicesvia syslog, SDEE and SNMP
D. dynamic diversion redirects and cleans only traffic destined for targeted devices, allowing unaffectedtraffic toflow freely and ensuring business continuity
E. pushes ACLs to network devices to only block the malicious traffic
F. using topology and configuration awareness, events from different devices are correlatedand attacks mitgitations are performed at the optimal location

4.單項(xiàng)選擇題Birthday attacks are used against which of the following?()

A. digital signatures
B. symmetric ciphering
C. hashalgoritms
D. asymmetric ciphering
E. digital certificates

5.單項(xiàng)選擇題Which of the following statements is correct regarding a hybridcrypto system?()

A. uses symmetric crypto for keys distribution
B. uses symmetric crypto for proof of origin
C. uses symmetric crypto for fast encrypted/decryption
D. uses asymmetric crypto for message confidentiality
E. uses symmetric crypto to transmit the asymmetric keys that is thenused to encrypt a session

最新試題

When configuring a multipoint GRE (mGRE) tunnel interface, which one of the following is NOT a valid configuration option:()

題型:單項(xiàng)選擇題

Choose the most correct statements about SMTP/ESMTP. ()

題型:多項(xiàng)選擇題

Which IOS QoS mechanism is used strictly to rate limit traffic destinedto the router itself?()

題型:單項(xiàng)選擇題

What group in Cisco IOS does 1536-bit Diffie-Hellman prime modulus equivalent too?()

題型:單項(xiàng)選擇題

Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

題型:單項(xiàng)選擇題

What technologies are included inAnti-X? ()

題型:多項(xiàng)選擇題

With PGP, which of the following entity signs a users’s public key?()

題型:單項(xiàng)選擇題

TACACS+ authentication uses whichthree packet types? ()

題型:多項(xiàng)選擇題

When implementing best practices for IP Source Address Spoofing and Defeating Denial of Service Attacks with IP SourceAddress Spoofing, what RFC is commonly usedto protect your network?()

題型:單項(xiàng)選擇題

Which of these is the best way to provide sender non-repudiation?()

題型:單項(xiàng)選擇題