In the Policy Center strategy configuration, how many violations rating of definition are there?
A. 4
B. 5
C. 3
D. 2
正解:D
質問 2:
Use BGP protocol to achieve diversion, the configuration command is as follows
[sysname] route-policy 1 permit node 1
[sysname-route-policy] apply community no-advertise
[sysname-route-policy] quit
[sysname]bgp10029
[sysname-bgp] peer
[sysname-bgp] import-route unr
[sysname- bgpl ipv4-family unicast
[sysname-bgp-af-ipv4] peer 7.7.1.2 route-policy 1 export
[sysname-bgp-af-ipv4] peer 7.7. 1.2 advertise community
[sysname-bgp-af-ipv4] quit
[sysname-bgp]quit
Which of the following options is correct for the description of BGP diversion configuration? (multiple choice)
A. You also need to configure the firewall ddos bgp-next-hop fib-filter command to implement back-injection.
B. The management center does not need to configure protection objects. When an attack is discovered, it automatically issues a traffic diversion task.
C. After receiving the UNR route, the peer neighbor will not send it to any BGP neighbor.
D. Use BGP to publish UNR routes to achieve dynamic diversion.
正解:C,D
質問 3:
Which of the following protocols can be used to construct attack messages for special control message attacks? (multiple choice)
A. CIP protocol
B. ICMP protocol
C. FTP protocol
D. UDP protocol
正解:A,B,D
質問 4:
The whitelist rule of the firewall anti-virus module is configured as ("*example*, which of the following matching methods is used in this configuration?
A. Exact match
B. Suffix matching
C. Keyword matching
D. Prefix matching
正解:C
質問 5:
The processing flow of IPS has the following steps;
1. Reorganize application data
2. Match the signature
3. Message processing
4. Protocol identification
Which of the following is the correct order of the processing flow?
A. 2-4-1-3
B. 4-1-2-3
C. 1-3-2-4
D. 1-4-2-3
正解:D
質問 6:
When the device recognizes a keyword during content filtering detection, which response actions can the device perform? (multiple choice)
A. Block
B. Operate by weight
C. Warning
D. Declare
正解:A,B,C
質問 7:
Regarding the anti-spam local black and white list, which of the following statements is wrong?
A. The black and white list is matched by extracting the source IP address of the SMTP connection
B. If the source IP address of the SMTP connection matches the blacklist, the connection will be blocked
C. The black and white list is matched by the sender's dns suffix
D. The black and white list is matched by extracting the destination IP address of the SMTP connection
正解:C
質問 8:
SACG query right-manager information as follows, which options are correct? (Select 2 answers)
A. SACG linkage success with controller.
B. master controller IP address is 2.1.1.1.
C. master controller IP address is 1.1.1.2.
D. SACG and IP address 2.1.1.1 server linkage is not successful
正解:A,D
Washizu -
とても読みやすくて5日で読み終わることができました。そして早速試験に受けで、ほんとに合格できましたよ!嬉しいすぎます。