Which three statements are true about Cisco IOS Firewall？（）

第1题：

Which Cisco product is a software component that blocks unwanted connections and provides other gateway security functions for small business?（）

• A、Cisco Firewall Services Module (FWSM)
• B、Cisco Secure Access Control Server (ACS)
• C、Cisco Private Internet Exchange (PIX) Firewall
• D、Cisco Internetwork Operating System (IOS) Firewall

第2题：

Which three statements about Syslog utilization are true?（）

• A、Utilizing Syslog improves network performance.
• B、The Syslog server automatically notifies the network administrator of network problems.
• C、A Syslog server provides the storage space necessary to store log files without using router disk space.
• D、There are more Syslog messages available within Cisco IOS than there are comparable SNMP trap messages.
• E、Enabling Syslog on a router automatically enables NTP for accurate time stamping。
• F、A Syslog server helps in aggregation of logs and alerts.

第3题：

第4题：

Which three statements about IOS Firewall configurations are true？（）

• A、The IP inspection rule can be applied in the inbound direction on the secured interface.
• B、The IP inspection rule can be applied in the outbound direction on the unsecured interface.
• C、The ACL applied in the outbound direction on the unsecured interface should be an extended ACL.
• D、The ACL applied in the inbound direction on the unsecured interface should be an extended ACL.
• E、For temporary openings to be created dynamically by Cisco IOS Firewall，the access-list for thereturning traffic must be a standard ACL.
• F、For temporary openings to be created dynamically by Cisco IOS Firewall，the IP inspection rule must be applied to the secured interface.

第5题：

Which of these statements is true about ssids configured in cisco adu？（）

• A、ssids are not case-sensitive.
• B、ssids must be listed in the same order in the adu as they are in the access point.
• C、a maximum of three ssids may be configured.
• D、ssids may have a maximum of 16 characters.

第6题：

Which three products reside on the UC500 platform?（）

• A、Cisco Unified Communications ManagerExpress
• B、Cisco IOS Firewall
• C、Cisco UnifiedContact Center
• D、Cisco IOS
• E、Cisco Unity Express
• F、Cisco UnifiedCallConnector

第7题：

Which three statements about firewall modes are correct？ （）

• A、 A firewall in routed mode has one IP address
• B、 A firewall in transparent mode has one IP address
• C、 In routed mode， the firewall is considered to be a Layer 2 dew
• D、 In routed mode， the firewall is considered to be a Layer 3 device
• E、 In transparent mode， the firewall is considered to be a Layer 2 device
• F、 In transparent mode， the firewall is considered to be a Layer 3 device

第8题：

Which of the following is true about the Cisco IOS-IPS functionality？ （）

• A、 The signatures available are built into the IOS code.
• B、 Toupdate signatures youneed to install a new IOS image
• C、 To activate new signatures you download a new Signature DefiitionFile （SDF） from Cisco’s web site
• D、 Loading and enabling selected IPS signatures is user configurable
• E、 Cisco IOS onlyprovides Intrusion Detection functionality
• F、 Cisco IOS-IPS requires a network module installed in your router running sensor software

第9题：

Cisco ISP Routers offer which three of these security benefits？ （Choose three.） （）

• A、 onboard VPN accelerator
• B、 events correlation and proactive response
• C、 high-performance AIM VPN modules
• D、 virtual firewall
• E、 Cisco lOS Firewall and lOS IPS
• F、 transparent firewall

第10题：

Which two statements about the Cisco Nexus 1000V VSM are true?（）

• A、It performs switching decisions and forwarding for the VEM
• B、It can be run on a virtual machine
• C、It can be used for remote VEM switching Iine cards