找考题网-背景图
多项选择题

Which two statements are true about the Cisco Classic (CBAC) IOS Firewall set?()

A.It can be used to block bulk encryption attacks
B.It can be used to protect against denial of service attacks
C.Traffic originating from the router is considered trusted, so it is not inspected
D.Based upon the custom firewall rules, an ACL entry is statically created and added to theexisting ACL permanently
E.Temporary ACL entries that allow selected traffic to pass are created and persist for theduration of the communication session

<上一题 目录 下一题>
热门试题

单项选择题Refer to the exhibit. Host A has sent an ARP message to the default gateway IP address10.10.10.1. Which statement is true?()

A.DSw1 will reply with the MAC address of the next AVF
B.DSw2 will reply with the MAC address of the next AVF
C.Because of the invalid timers that are configured, DSw1 will not reply
D.Because of the invalid timers that are configured, DSw2 will not reply
E.DSw1 will reply with the IP address of the next AVF
F.DSw2 will reply with the IP address of the next AVF

多项选择题This item contains several questions that you must answer. You can view these questions byclicking on the Questions button to the left. Changing questions can be accomplished by clickingthe numbers to the left of each question. In order to complete the questions, you will need to referto the SDM and the topology, neither of which is currently visible. To gain access to either thetopology or the SDM, click on the button to left side of the screen that corresponds to the sectionyou wish to access. When you have finished viewing the topology the SDM, you can return to yourquestions by clicking on the Questions button to the left. Off Shore Industries is a large worldwide sailing charter. The company has recently upgraded itsInternet connectivity. As a recent addition to the network engineering team, you have been taskedwith documenting the active Firewall configurations on the Annapolis router using the Cisco Routerand Security Device Manager (SDM) utility. Using the SDM output from Firewall and ACL Tasks under the Configure tab, answer the followingquestions: Which two statements would specify a permissible incoming TCP packet on a trusted interface inthis configuration?()

A.The packet has a source address of 10.79.233.107
B.The packet has a source address of 172.16.81.108
C.The packet has a source address of 198.133.219.40
D.The destination address is not specified within the inspection rule SDM_LOW

单项选择题This item contains several questions that you must answer. You can view these questions byclicking on the Questions button to the left. Changing questions can be accomplished by clickingthe numbers to the left of each question. In order to complete the questions, you will need to referto the SDM and the topology, neither of which is currently visible. To gain access to either thetopology or the SDM, click on the button to left side of the screen that corresponds to the sectionyou wish to access. When you have finished viewing the topology the SDM, you can return to yourquestions by clicking on the Questions button to the left. Off Shore Industries is a large worldwide sailing charter. The company has recently upgraded itsInternet connectivity. As a recent addition to the network engineering team, you have been taskedwith documenting the active Firewall configurations on the Annapolis router using the Cisco Routerand Security Device Manager (SDM) utility. Using the SDM output from Firewall and ACL Tasksunder the Configure tab, answer the following questions: Which statement is true?()

A.Both FastEthernet 0/0 and Serial 0/0/0 are trusted interface
B.Both FastEthernet 0/0 and Serial 0/0/0 are untrusted interfaces
C.FastEthernet 0/0 is a trusted interface and Serial 0/0/0 is an untrusted interface
D.FastEthernet 0/0 is an untrusted interface and Serial 0/0/0 is a trusted interface

多项选择题Whichthreeofthefollowingnetworkfeaturesaremethodsusedtoachievehighavailability?()

A.Spanning Tree Protocol (STP)
B.Delay reduction
C.Hot Standby Routing Protocol (HSRP)
D.Dynamic routing protocols
E.Quality of Service (QoS)
F.Jitter management

单项选择题What can be determined about the HSRP relationship from the displayed debug output?()

A.Router 172.16.11.111 will be the active router because its HSRP priority is preferred over router172.16.11.112
B.The IP address 172.16.11.112 is the virtual HSRP router IP address
C.The nonpreempt feature is enabled on the 172.16.11.112 router
D.The IP address 172.16.11.111 is the virtual HSRP router IP address
E.Router 172.16.11.112 will be the active router because its HSRP priority is preferred over router172.16.11.111
F.The preempt feature is not enabled on the 172.16.11.111 router