« 返回题库列表通过CCNA 200-301模拟测试来提升您的认证备考效果。这是思科颁发的网络工程师认证考试。
通过思博网络的模拟测试,更好地准备200-301 CCNA考试的认证考试。 我们的模拟考试提供了一个全面的学习平台,有助于巩固网络领域的理论知识与实践技能。 请深入探索我们丰富的考试资料库,其中包括各种模拟试题和练习题,从而更好地掌握各个关键知识点。 参加模拟考试,以模拟真实的考试情境,从而提升你的应试能力。 无论您是在寻找考试答案,还是想要免费测试样本,思博网络都提供了有助于您备考的重要资源。 通过我们的在线历年真题和考试模拟系统,你将获得宝贵的经验和信心,从而更容易取得成功。 请信任思博网络,它可以帮助您更好地准备相关考试,并引导您实现获得CCNA认证的目标。
问题 #1
What are common hash algorithms? (Choose two.)
A. DES
B. AES
C. MD5
D. SHA-1
问题 #2
UDPA port scan is when an attacker sends a zero byte lengthUDPmessage to a specific port of the target host, if the port is open, it will return aICMPPort reachable data packets.
A. Update virus database in real time
B. Shelling technology
C. format the disk
D. self protection
问题 #3
Firewall Gateway Anti-Virus Response includes alerting and blocking, the way in which the alarm device only generates a log, sent out without processing on HTTP protocol to transmit the document: blocking the way equipment is disconnected from the HTTP server and block files, push Web pages to the client and generates logs.
问题 #4
Huawei Firewall only supports the inter-domain persistent connection function for TCP packets.
问题 #5
Regarding the characteristics of the routing table, which of the following items is described correctly
A. APort When a packet matches multiple entries in the routing table, it is forwarded based on the route entry with the largest metric.
B. BPort In the global routing table, there is at most one next hop to the same destination CIDR block.
C. CThere may be multiple next hops in the global routing table to the same destination.
D. DPort When a packet matches multiple entries in the routing table, it is forwarded according to the longest mask.
问题 #6
Which of the following is the encryption technology used by digital envelopes?
A. Symmetric encryption algorithm
B. Asymmetric encryption algorithmcorrect
C. Hash algorithm
D. Stream encryption algorithm
问题 #7
Which types of encryption technology can be divided into? (Multiple Choice)
A. Symmetric encryptioncorrect
B. Asymmetric encryptioncorrect
C. Fingerprint encryption
D. Data encryption
问题 #8
A Web server is deployed in an enterprise intranet to provide Web access services to Internet users, and in order to protect the access security of the server, it should be divided into the _____ area of the firewall.
问题 #9
Which of the following types of encryption technology can be divided into? (multiple choice)
A. Symmetric encryption
B. Symmetric encryption
C. fingerprint encryption
D. data encryption
问题 #10
What protection levels are included in TCSEC standard? (Multiple Choice)
A. Verification Protectioncorrect
B. Forced Protectioncorrect
C. Self-protectioncorrect
D. Passive Protection
问题 #11
NAPT technology can implement a public IP address for multiple private network hosts.
问题 #12
About SSL VPN technology, which of the following statement is wrong?
A. SSL VPN technology is perfect for NAT traversal scenarios
B. Encryption of SSL VPN technology only takes effect on the application layer
C. SSL VPN requires dial clientcorrect
D. SSL VPN technology expands the network range of enterprises
问题 #13
Which of the following is non-symmetric encryption algorithm?
A. RC4correct
B. 3DES
C. AES
D. DHcorrect
问题 #14
Which of the Policy Center functional areas is wrong?
A. Pre-authentication domain refers to the client through the identity authentication before access to the area
B. Post-authentication domain refers to the client can access through the security certification area
C. Isolation domain refers to the client after authenticated must have access to the area
D. Isolation domain refers to the client security authentication failed the required access area
问题 #15
The following description of the intrusion fire protection system IPS, which is correct?
A. The port IPS can be concatenated at the network boundary.correct
B. The IPS cannot prevent intrusion from occurring in real time.
C. The port IPS can be attached to the switch and port mirrored through the switch.correct
D. Oral IPS has the ability to customize intrusion prevention rules.correct
问题 #16
Which options can be operated in the advanced settings of the Windows Firewall? (Multiple Choice)
A. Restore defaultcorrect
B. Change Notification Rules
C. Set connection safety rulescorrect
D. Set inbound and outbound rulescorrect
问题 #17
In USG series firewall, use non-well-known port provides well-known application service, can adopt the following techniques:
A. port mappingcorrect
B. the MAC and IP address binding
C. packet filter
D. long connection
问题 #18
When IPSec VPN uses tunnel mode to encapsulate packets, which of the following is not within the encryption scope of the ESP security protocol? ( )[Multiple choice]*
A. AESP Header
B. BTCP Header
C. CRaw IP Header
D. DESP Tail
问题 #19
Which of the following isP2DRThe core part of the model?
A. PolicyStrategy
B. Protectionprotection
C. Detectiondetect
D. Responseresponse
问题 #20
Which of the following is an action to be taken during the summary phase of the cybersecurity emergency response? (Multiple Choice)
A. Evaluation of members of the emergency response organization
B. Establish a defense system and specify control measures
C. Evaluate the implementation of the contingency plan and propose a follow-up improvement plan
D. Determine the effectiveness of the isolation measures
问题 #21
"Implementing security monitoring management for information and information systems, preventing illegal use of information and information systems", is to achieve which feature in information security?
A. Confidentiality
B. Controllabilitycorrect
C. Non-repudiation
D. Integrity
问题 #22
NAPT technology can implement a public network IP address for multiple private network hosts.
问题 #23
Which of the following are HRP(Huawei Redundancy Protocol) protocol can back up state information? (multiple choice)
A. session table
B. ServerMapentry
C. Dynamic blacklist
D. routing table
问题 #24
In some scenarios, it is necessary to convert the source IP address, but also convert the destination IP address, which technology of the following is used by these scenarios?
A. Two-way NATcorrect
B. Source Nat
C. NAT-Server
D. Nat Alg
问题 #25
Which of the following attacks does not belong to special packet attack?
A. ICMP redirect packet attack
B. ICMP unreachable packet attack
C. IP address scanning attackcorrect
D. Large ICMP packet attack
问题 #26
Which of the following attacks is not a malformed message attack?
A. Teardrop attack
B. Smurf attack
C. TCP fragment attack
D. ICMP unreachable packet attackcorrect
问题 #27
Execute the command on the Firewall and display the above information. Which of the following description is correct? (Choose two.)
A. This Firewall VGMP group status is Active
B. The virtual IP address of the firewall G1/0/1 interface is 202.30.10.2
C. The priority of the VRRP backup group of the firewall VRID 1 is 100
D. If the master device fails, it will not switch
问题 #28
Which of the following descriptions of single sign-on is correct?
A. The visitor recited the Portal authentication page and sent the username and password to FT to identify his/her identity, and the password was not stored on the FT, and the FI sent the username and password to the third-party authentication server, and the authentication process was carried out on the authentication server.
B. The visitor sends the username and password that identifies his identity to the third-party authentication server, and after the authentication is passed, the third-party authentication server sends the visitor's identity information to Fcorrect
C. F7 only records the identity information of the visitor and does not participate in the authentication process
D. Visitors obtain the SMS verification code through the Portal authentication page, and then enter the SMS verification code to pass the authentication.
E. The visitor sends the username and password that identifies them to the FW through the portal authentication page, on which the password is stored and the verification process takes place on the F
问题 #29
Regarding the AH and ESP security protocols, which of the following options is correct? (Multiple Choice)
A. AH can provide encryption and verification functions
B. ESP can provide encryption and verification functionscorrect
C. The agreement number of AH is 51.correct
D. The agreement number of ESP is 51.
问题 #30
Which protocols below can guarantee the confidentiality of data transmission? (Multiple Choice)
A. Telnetcorrect
B. SSHcorrect
C. FTP
D. HTTPScorrect
闽公网安备 35012102500533号
|
闽ICP备18010967号-7