多項(xiàng)選擇題Which two statements describe the functions and operations of IDS and IPS systems?()

A.A network administrator entering a wrong password would generate a true-negative alarm.
B.A false positive alarm is generated when an IDS/IPS signature is correctly identified.
C.An IDS is significantly more advanced over IPS because of its ability to prevent network attacks.
D.Cisco IDS works inline and stops attacks before they enter the network.
E.Cisco IPS taps the network traffic and responds after an attack.
F.Profile-based intrusion detection is also known as "anomaly detection".


您可能感興趣的試卷

你可能感興趣的試題

1.多項(xiàng)選擇題Which two statements about common network attacks are true?()

A.Access attacks can consist of password attacks,trust exploitation,port redirection,and man-in-the-middle attacks.
B.Access attacks can consist of password attacks,ping sweeps,port scans,and man-in-the-middle attacks.
C.Access attacks can consist of packet sniffers,ping sweeps,port scans,and man-in-the-middle attacks.
D.Reconnaissance attacks can consist of password attacks,trust exploitation,port redirection and Internet information queries.
E.Reconnaissance attacks can consist of packet sniffers,port scans,ping sweeps,and Internet information queries.
F.Reconnaissance attacks can consist of ping sweeps,port scans,man-in-middle attacks and Internet information queries.

2.多項(xiàng)選擇題Which three statements are true about Cisco IOS Firewall?()

A.It can be configured to block Java traffic.
B.It can be configured to detect and prevent SYN-flooding denial-of-service (DoS) network attacks.
C.It can only examine network layer and transport layer information.
D.It can only examine transport layer and application layer information.
E.The inspection rules can be used to set timeout values for specified protocols.
F.The ip inspect cbac-name command must be configured in global configuration mode.

3.多項(xiàng)選擇題Which three features are benefits of using GRE tunnels in conjunction with IPsec for building site-to-site VPNs?()

A.allows dynamic routing over the tunnel
B.supports multi-protocol (non-IP) traffic over the tunnel
C.reduces IPsec headers overhead since tunnel mode is used
D.simplifies the ACL used in the crypto map
E.uses Virtual Tunnel Interface (VTI) to simplify the IPsec VPN configuration

4.多項(xiàng)選擇題What are three objectives that the no ip inspect command achieves?()

A.removes the entire CBAC configuration
B.removes all associated static ACLs
C.turns off the automatic audit feature in SDM
D.denies HTTP and Java applets to the inside interface but permits this traffic to the DMZ
E.resets all global timeouts and thresholds to the defaults
F.deletes all existing sessions

5.多項(xiàng)選擇題

Refer to the exhibit. On the basis of the information that is provided, which two statements are true?()

A.An IPS policy can be edited by choosing the Edit button.
B.Right-clicking on an interface will display a shortcut menu with options to edit an action or to set severity levels.
C.The Edit IPS window is currently in Global Settings view.
D.The Edit IPS window is currently in IPS Policies view.
E.The Edit IPS window is currently in Signatures view.
F.To enable an IPS policy on an interface, click on the interface and deselect Disable.

最新試題

Refer to the exhibit.What does the "26" in the first two hop outputs indicate?()

題型:?jiǎn)雾?xiàng)選擇題

Refer to the exhibit. What type of security solution will be provided for the inside network?()

題型:?jiǎn)雾?xiàng)選擇題

Refer to the exhibit. MPLS has been configured on all routers in the domain. In order for R2 and R3 to forward frames between them with label headers, what additional configuration will be required on devices that are attached to the LAN segment?()

題型:?jiǎn)雾?xiàng)選擇題

Which three statements about the Cisco Easy VPN feature are true?()

題型:多項(xiàng)選擇題

Which statement is true about a worm attack?()

題型:?jiǎn)雾?xiàng)選擇題

What are three configurable parameters when editing signatures in Security Device Manager (SDM)?()

題型:多項(xiàng)選擇題

Which statement about an IPS is true?()

題型:?jiǎn)雾?xiàng)選擇題

Which statement describes the Authentication Proxy feature?()

題型:?jiǎn)雾?xiàng)選擇題

Which two statements about the Cisco AutoSecure feature are true?()

題型:多項(xiàng)選擇題

Which two mechanisms can be used to detect IPsec GRE tunnel failures?()

題型:多項(xiàng)選擇題