Which type of attacks can be monitored and mitigated by CS-MARS using NetFlow data？（）

单项选择题WhichbestrepresentsatypicalattackthattakesadvantageofRFC792，ICMPType3messages？（）

A. Blind connection-reset
B. Large packet echo request
C. Packet fragmentation offset
D. Broadcast-based echo request
E. Excessive bandwidth consumption

多项选择题CiscoIOSIPSsendsIPSalertmessagesusingwhichtwoprotocols？（）

A. SDEE
B. LDAP
C. SYSLOG
D. FTP
E. SNMP
F. SMTP

多项选择题WhenimplementingWLANsecurity，whatarethreebenefitsofusingtheTemporalKeyIntegrityProtocol（TKIP）insteadofWEP？（）

A. TKIP uses an advanced encryption scheme based on AES
B. TKIP provides authentication and integrity checking using Cipher Block Chaining Message Authentication Code （CBC-MAC）
C. TKIP provides per-packet keyingand a rekeying mechanism
D. TKIP provides message integrity check
E. TKIP reduces WEP’s vulnerabilities byusing different hardware encryption chipset
F. TKIP uses a 48 bit InitializationVector

多项选择题WhichthreestatementsregardingCiscoASAmulticastroutingsupportarecorrect？（）

A. ASA supports both stubmulticast routing and PIMmulticast routing. However， you cannot configure bothconcurrently on a single security appliance
B. When configured for stubmulticast routing， the ASA can act as the Rendezvous Point （RP）
C. If the ASAdetects IGMPversion1 routers， the ASAwill automatically switch to IGMP version 1 operations.
D. The ASA supports both PIM-SM and bi-directional PIM
E. Enabling multicast routing globally on the ASA automatically enables PIM and IGMP on all interfaces
F. The ASA can be configured for IGMP snooping toconstrain theflooding of multicast traffic by dynamically configuring themulticast traffic to be forwarded only those interfaces associated with hosts requesting themulticast group

单项选择题ThekeylengthsforDESand3DES，respectively，are：（）

A. 128 bits and 256 bits
B. 128 bits and 384 bits
C. 1024 bits and 3072bits
D. 64 bits and 192 bits
E. 56 bits and 168 bits
F. 128 bytes and 384 bytes