多项选择题The RiskRating for an IPS signatureis calculatedusing four primary components. Select the four components below.   ()

A. SignatureFidelity Rating
B. Alert Severity Rating
C. Exploit Probability Rating
D. Target Value Rating
E. Attack Relevancy Rating

点击查看答案

您可能感兴趣的试卷

你可能感兴趣的试题

1.多项选择题An IPS sensor with3 sniffing interfaces can be configuredas:  ()

A. 3 promiscuous sensors
B. 3 inline sensors
C. 1 inline sensor, 1 promiscuous sensor
D. 2 inline sensors, 1 promiscuous sensors

点击查看答案
2.多项选择题Given the topology of a server (with IP 209.165.202.150) protected behind the inside interface of an ASA/PIX,and the Internet on the outside interface. Users on the Internet need to access the server at any time, but the firewall administrator does not want to NAT the address of the server - since itis currentlya public address. Which of the following commands can be used to accomplish this? ()

A. nat (inside) 0 209.165.202.150 255.255.255.255
B. access-list no-nat permit ip host209.165.202.150 anynat(inside) 0 access-list no-nat
C. static(inside,outside) 209.165.202.150 209.165.202.150 netmask 255.255.255.255
D. no nat-control
E. nat (inside) 1 209.165.202.150 255.255.255.255

点击查看答案
3.单项选择题What command can be used toglobally disable the requirement that a translation rulemust exist beforepackets can pass through the firewall?() 

A. nat  0
B. nonat-control
C. access-list
D. none of the above

点击查看答案
4.单项选择题Select thebest answer to this qestion. ASA/PIX Active/Active failover can be used toload-balance:()

A. All traffic passing through theappliance
B. Traffic from internal networks on a per IP basis
C. Based on protocol only.
D. On a per-context basis only.

点击查看答案
5.单项选择题The number of packets (or flows) dropped because they do not conform to the ASA/PIX security policy can be viewed using what command? ()

A. show asp drop
B. show counters drop
C. show security-policy
D. show policy-map

点击查看答案
6.单项选择题ASA/PIXversion 7.0 introduced ModularPolicyFramework (MPF) as anextensible wayto classify traffic,and then apply policies (or actions) to that traffic. MPF at aminimum requires which three commands?()

A. http-map, tcp-map, class-map
B. class-map, tcp-map, policy-map
C. class-map, policy-map, service-map
D. class-map, service-policy, policy-map

点击查看答案
7.单项选择题In PIX versions prior to 7.x, multi-channel protocols were fixedup using the ’fixupprotocol’ command. Inversion 7.0 and higher the ’fixup protocol’commands were replaced by what commands?() 

A. audit 
B. secure 
C. inspect 
D.The fixup protocol commands did not change in

点击查看答案
8.多项选择题Which two are correct functions of the Cisco Anomaly Guard and Detector for preventing DDOS attacks? ()

A. uses Netflow data for anomaly detections
B. builds baseline profilesof normal operating conditions, enablingrapid identification of unusual activity that indicates an attack
C. accept events inputs from different network devicesvia syslog, SDEE and SNMP
D. dynamic diversion redirects and cleans only traffic destined for targeted devices, allowing unaffectedtraffic toflow freely and ensuring business continuity
E. pushes ACLs to network devices to only block the malicious traffic
F. using topology and configuration awareness, events from different devices are correlatedand attacks mitgitations are performed at the optimal location

点击查看答案
9.单项选择题Birthday attacks are used against which of the following?()

A. digital signatures
B. symmetric ciphering
C. hashalgoritms
D. asymmetric ciphering
E. digital certificates

点击查看答案
10.单项选择题Which of the following statements is correct regarding a hybridcrypto system?()

A. uses symmetric crypto for keys distribution
B. uses symmetric crypto for proof of origin
C. uses symmetric crypto for fast encrypted/decryption
D. uses asymmetric crypto for message confidentiality
E. uses symmetric crypto to transmit the asymmetric keys that is thenused to encrypt a session

点击查看答案

最新试题

Select the two correctstatements from the list below that describe DES and 3DES: ()

题型:多项选择题

Which ones are the two type of ciphers?()

题型:单项选择题

When implementing best practices for IP Source Address Spoofing and Defeating Denial of Service Attacks with IP SourceAddress Spoofing, what RFC is commonly usedto protect your network?()

题型:单项选择题

What group in Cisco IOS does 1536-bit Diffie-Hellman prime modulus equivalent too?()

题型:单项选择题

With PGP, which of the following entity signs a users’s public key?()

题型:单项选择题

ASDM on the ASA platform is executed as:()

题型:单项选择题

Which of these is the best way to provide sender non-repudiation?()

题型:单项选择题

Which of the following statements that describe Diffie Hellman Key exchange are correct? ()

题型:多项选择题

Which is a benefit of implementing RFC 2827?()

题型:单项选择题

What technologies are included inAnti-X? ()

题型:多项选择题