單項選擇題Which is the main difference between host-based and network-based intrusion prevention?()

A.Host-based IPS can work in promiscuous mode or inline mode.
B.Network-based IPS can provide protection to desktops and servers without the need of installing specialized software on the end hosts and servers.
C.Network-based IPS is better suited for inspection of SSL and TLS encrypted data flows.
D.Host-based IPS deployment requires less planning than network-based IPS.


您可能感興趣的試卷

你可能感興趣的試題

4.單項選擇題Which item is the great majority of software vulnerabilities that have been discovered?()

A.Stack vulnerabilities
B.Heap overflows
C.Software overflows
D.Buffer overflows

5.單項選擇題Which statement is true about vishing?()

A.Influencing users to forward a call to a toll number (for example, a long distance or international number)
B.Influencing users to provide personal information over a web page
C.Using an inside facilitator to intentionally forward a call to a toll number (for example, a long distance orinternational number)
D.Influencing users to provide personal information over the phone

6.單項選擇題Refer to Cisco IOS Zone-Based Policy Firewall, where will the inspection policy be applied?()

A.to the zone-pair
B.to the zone
C.to the interface
D.to the global service policy

7.單項選擇題Which location will be recommended for extended or extended named ACLs?()

A.when using the established keyword,a location close to the destination point to ensure that return trafficis allowed
B.an intermediate location to filter as much traffic as possible ActualTests.com
C.a location as close to the source traffic as possible
D.a location as close to the destination traffic as possible

9.單項選擇題What Cisco Security Agent Interceptor is in charge of intercepting all read/write requests to the rc files in UNIX?()

A.Configuration interceptor
B.Network interceptor
C.File system interceptor
D.Execution space interceptor

10.多項選擇題Which three items are Cisco best-practice recommendations for securing a network?()

A.Routinely apply patches to operating systems and applications
B.Disable unneeded services and ports on hosts
C.Deploy HIPS software on all end-user workstations
D.Require strong passwords and enable password expiration

最新試題

Which VoIP components can permit or deny a call attempt on the basis of a network’s available bandwidth?()

題型:單項選擇題

Which two actions can be configured to allow traffic to traverse an interface when zone-based security isbeing employed?()

題型:多項選擇題

What is a static packet-filtering firewall used for ?()

題型:單項選擇題

For the following options, which feature is the foundation of Cisco Self-Defending Network technology?()

題型:單項選擇題

What will be disabled as a result of the no service password-recovery command?()

題型:單項選擇題

Refer to the exhibit. You are the network security administrator responsible for router security.Your networkuses internal IP addressing according to RFC 1918 specifications.From the default rules shown,whichaccess control list would prevent IP address spoofing of these internal networks?()

題型:單項選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項選擇題

In an IEEE 802.1x deployment,between which two devices EAPOL messages typically are sent?()

題型:單項選擇題

Which one of the aaa accounting commands can be used to enable logging of both the start and stoprecords for user terminal sessions on the router?()

題型:單項選擇題

Which key method is used to detect and prevent attacks by use of IDS and/or IPS technologies?()

題型:單項選擇題