搜题
用户您好, 请在下方输入框内搜索其它题目:
搜题
题目内容 (请给出正确答案)
提问人:网友 发布时间:
【单选题】

A network administrator wants to permit Telnet traffic initiated from the address book entry the10net in a zone called UNTRUST to the address book entry Server in a zone called TRUST.<br /> However, the administrator does not want the server to be able to initiate any type of traffic from the TRUST zone to the UNTRUST zone.<br /> Which configuration statement would correctly accomplish this task?()

A、from-zone UNTRUST to-zone TRUST { policy DenyServer { match { source-address any; destination-address any; application any; } then { deny; } } } from-zone TRUST to-zone UNTRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }

B、from-zone TRUST to-zone UNTRUST { policy DenyServer { match { source-address Server; destination-address any; application any; } then {deny; } } } from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }

C、from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-ftp; } then { permit; } } }

D、from-zone TRUST to-zone UNTRUST { policy DenyServer { match { source-address Server; destination-address any; application any; } then { permit; } } } from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match {source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }

查看正确答案
更多“ A network administrator wants to permit Telnet traffic initiated from the address book entry the10net in a zone called UNTRUST to the address book entry Server in a zone called TRUST.<br /> However, the administrator does not want the server to be able to initiate any type of traffic from the TRUST zone to the UNTRUST zone.<br /> Which configuration statement would correctly accomplish this task?()”相关的问题
第1题
[单选题] Which network technology allows for the monitoring of active communication networks to diagnose problems and gather statistics for network administration?()

A、Content networking  B、Campus local-area networking  C、Network management  D、Network security  

点击查看答案
第2题
[单选题] Which network technology allows for the monitoring of active communication networks to diagnose problems and gather statistics for network administration?()

ANetwork security  B、Content networking  C、Network management  D、Campus local-area networking  

点击查看答案
第3题
[多选题] A network administrator needs to configure port security on a switch.which two statements are true?()

A、The network administrator can apply port security to dynamic access ports  B、The network administrator can configure static secure or sticky secure mac addresses in the voice vlan.  C、The sticky learning feature allows the addition of dynamically learned addresses to the running configuration.  D、The network administrator can apply port security to EtherChannels.  E、When dynamic mac address learning is enabled on an interface,the switch can learn new addresses,up to the maximum defined.  

点击查看答案
第4题
[多选题] A network administrator needs to configure port security on a switch.which two statements are true? ()

A、The network administrator can apply port security to dynamic access ports  B、The network administrator can configure static secure or sticky secure mac addresses in the voice vlan.  C、The sticky learning feature allows the addition of dynamically learned addresses to the running configuration.  D、The network administrator can apply port security to EtherChannels.  E、When dynamic mac address learning is enabled on an interface,the switch can learn new addresses,up to the maximum defined.  

点击查看答案
第5题
[多选题] A network administrator needs to configure port security on a switch.which two statements are true?()

A、The network administrator can apply port security to dynamic access ports  B、The network administrator can configure static secure or sticky secure mac addresses in the voice vlan.  C、The sticky learning feature allows the addition of dynamically learned addresses to the running configuration.  D、The network administrator can apply port security to EtherChannels.  E、When dynamic mac address learning is enabled on an interface,the switch can learn new addresses,up to the maximum defined.  

点击查看答案
第6题
[] You are the network administrator for The network consists of a single Active Directory domain. The domain contains 20 Windows Server 2003 computers and 400 Windows XP Professional computers. Software Update Services (SUS) is installed on a server named Testking2. The network security administrator wants you to ensure that the administrative password is not compromised when an administrator connects to Testking2's SUSAdmin Web site remotely by using HTTP. You want only SSL to be used to connect to the SUSAdmin Web site. The network security administrator creates a digital certificate and enables communication for SSL on port 443 of Testking2. However, administrators are still able to connect to the SUSAdmin Web site by using HTTP. You need to ensure that communication to the SUSAdmin Web site is always secure. What should you do?() You are the network administrator for The network consists of a single Active Directory domain. The domain contains 20

AA. Disable port 80 on the SUSAdmin Web site.  B、B. Require 128-Bit SSL on all directories related to the SUSAdmin Web site.  C、C. Change the default Web site to require 128-Bit SSL.  D、D. Enable IPSec on Testking2 with the Request Security IPsec template.  

点击查看答案
第7题
[单选题] Which of the following is a TRUE statement about static routing vs. dynamic routing?()

A、Dynamic routing is created adhoc and static routing cannot be changed once implemented.  B、Static routing is hard-coded and requires significant administrative overhead for large networks.  C、Static routing requires little administrative overhead and dynamic routing requires significant administrative overhead.  D、Dynamic routing is the best solution for small networks and static routing is the best solution for large scale networks.  

点击查看答案
第8题
[] You are the network administrator for The network consists of a single Active Directory domain named All network servers run Windows Server 2003. All client computers run Windows XP Professional, and all client computer objects are store din the Clients organizational unit (OU). Client computers receive critical security patches from servers at Microsoft. A server named Testking1 runs Software Update Services (SUS). You enable Testking1 to obtain and store security patches for distribution on the internal network. Now you need to ensure that all client computers receive future security patches from Testking1 only. You open the Group Policy object (GPO) for the Clients OU. Which setting should you configure?() You are the network administrator for The network consists of a single Active Directory domain named All network servers run Windows Server 2003. All client computers run Windows XP Professional, and all client computer objects are store din

AA. Computer Configuration\Software Settings\Software Installation  B、B. User Configuration\Software Settings\Software Installation  C、C. Computer Configuration\Administrative Templates\Windows Components\Windows Installer  D、D. User Configuration\Administrative Templates\Windows Components\Windows Installer  E、E. Computer Configuration\Administrative Templates\Windows Components\Windows Update  F、F. User Configuration\Administrative Templates\Windows Components\Windows Update  

点击查看答案
第9题
[单选题] You are an administrator of a switched network and your goal is to reduce some of the administrative overhead on your network. You plan on achieving this by configuring a new VLAN for each department in your network. However, you need to share the VLAN information across numerous switches throughout your network. Which of the following would allow you accomplish this?()

A、STP  B、GVRP  C、SNMP  D、VTP  E、DHCP  

点击查看答案
第10题
[] An administrator wants to be alerted when a network-based attack is underway, but the company policy prohibits blocking or dropping network connections. Which of the following MUST be deployed?() An administrator wants to be alerted when a network-based attack is underway, but the company policy prohibits blocking or dropping network connections. Which of the following MUST be deployed?()

AA.IDS  B、B.IPS  C、C.Firewall  D、D.Managed PKI  

点击查看答案
账号:
答题记录 我的收藏 我的题库
客服
TOP

请使用微信扫码支付

订单号:
遇到问题请联系在线客服