單項選擇題In PIX versions prior to 7.x, multi-channel protocols were fixedup using the ’fixupprotocol’ command. Inversion 7.0 and higher the ’fixup protocol’commands were replaced by what commands?() 

A. audit 
B. secure 
C. inspect 
D.The fixup protocol commands did not change in


您可能感興趣的試卷

你可能感興趣的試題

1.多項選擇題Which two are correct functions of the Cisco Anomaly Guard and Detector for preventing DDOS attacks? ()

A. uses Netflow data for anomaly detections
B. builds baseline profilesof normal operating conditions, enablingrapid identification of unusual activity that indicates an attack
C. accept events inputs from different network devicesvia syslog, SDEE and SNMP
D. dynamic diversion redirects and cleans only traffic destined for targeted devices, allowing unaffectedtraffic toflow freely and ensuring business continuity
E. pushes ACLs to network devices to only block the malicious traffic
F. using topology and configuration awareness, events from different devices are correlatedand attacks mitgitations are performed at the optimal location

2.單項選擇題Birthday attacks are used against which of the following?()

A. digital signatures
B. symmetric ciphering
C. hashalgoritms
D. asymmetric ciphering
E. digital certificates

3.單項選擇題Which of the following statements is correct regarding a hybridcrypto system?()

A. uses symmetric crypto for keys distribution
B. uses symmetric crypto for proof of origin
C. uses symmetric crypto for fast encrypted/decryption
D. uses asymmetric crypto for message confidentiality
E. uses symmetric crypto to transmit the asymmetric keys that is thenused to encrypt a session

4.多項選擇題When configuring IOS firewall (CBAC) operations on Cisco routers, the "inspection rule" could be applied at which two locations? ()

A. at the untrusted interfacein the inbound direction
B. atthe untrusted interface in theoutbounddirection
C. at thetrusted interface inthe inbound direction
D. at the trusted interface in the outbound direction
E. at the trusted and untrusted interfaces in the inbound direction
F. at the trusted and untrusted interfaces in the outbounddirection

5.多項選擇題The CS-MARS appliance offers attackmitigatons using which twomethods?  ()

A. Automatically pushing ACLs to layer 3 devices to block the attacker’s traffic
B. Automatically pushing commands to layer 2 switches to shutdown the attacker’s ports
C. Automatically resetting the attacker’sTCP connections
D. RecommendingACLs tobe manuallypushed tolayer 3 devices such as routers/firewalls
E. Operating as an inline appliance, it automaticallyblocks malicious traffic inline
F. Working inconjuction with CSM to block the attacker’s traffic inline

最新試題

When configuring a multipoint GRE (mGRE) tunnel interface, which one of the following is NOT a valid configuration option:()

題型:單項選擇題

What are the header sizes for point-to-point and multi-point GRE(also known asmGRE) with tunnel key?()

題型:單項選擇題

Which one of the following is NOT a valid RADIUS packet type?()

題型:單項選擇題

Of the threats discussed below, what is the main advantage of using Cisco Secure Desktop which is part of the Cisco ASA VPN solution?()

題型:單項選擇題

Which SSL protocol takes anapplication message tobe transmitted, fragments the datainto manageable blocks, optionally compresses the data, applies a MAC, encrypts, adds a header, and transmits the resulting unit ina TCPsegment?()

題型:單項選擇題

Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

題型:單項選擇題

Which IOS QoS mechanism is used strictly to rate limit traffic destinedto the router itself?()

題型:單項選擇題

Which two statements are correct about the aaa authentication login default grouptacacs+ localglobal configuration command? ()

題型:多項選擇題

Cisco Clean Access ensures that computers connecting to your network have which of the following?()

題型:單項選擇題

Choose the most correct statements about SMTP/ESMTP. ()

題型:多項選擇題