网友您好, 请在下方输入框内输入要搜索的题目:
题目内容
(请给出正确答案)
Which statement best describes Cisco IOS Zone-Based Policy Firewall?()
- A、A router interface can belong to multiple zones.
- B、Policy maps are used to classify traffic into different traffic classes, and class maps are used to assignaction to the traffic classes.
- C、The pass action works in only one direction
- D、A zone-pair is bidirectional because it specifies traffic flowing among the interfaces within the zone-pair in both directions.
参考答案
更多 “Which statement best describes Cisco IOS Zone-Based Policy Firewall?()A、A router interface can belong to multiple zones.B、Policy maps are used to classify traffic into different traffic classes, and class maps are used to assignaction to the traffic classes.C、The pass action works in only one directionD、A zone-pair is bidirectional because it specifies traffic flowing among the interfaces within the zone-pair in both directions.” 相关考题
考题
Which utility is used to assign a flow of data to a traffic class?()
A. ip profileB. policy-listC. classifier-listD. rate-limit-profile
考题
How can Cisco NetFlow be used to aid in the operation and troubleshooting of QoS issues? ()
A. NetFlow can report on the number of traffic matches for each class map in a configured QoS policy configuration.B. NetFlow records can be used to understand traffic profiles per class of service for data, voice, and video traffic.C. NetFlow can discover the protocols in use and automatically adjust QoS traffic classes to meet policy-map requirements.D. NetFlow can be configured to identify voice and video traffic flows and place them into a lowlatency queue for expedited processing.
考题
When Cisco SDM is used to generate QoS policy, various QoS classes will be created and assigned a percentage of the interface bandwidth. Which three statements indicate the default bandwidth values that are assigned by SDM for outgoing traffic on a WAN interface? ()A、 Voice traffic will be assigned 47% of the interface bandwidth.B、 Voice call signaling will be assigned 33% of the interface bandwidth.C、 Telnet, SSH, and other traffic that is generated to manage the router is assigned 5% of the interface bandwidth.D、 Best-effort traffic will be assigned 38% of the interface bandwidth.E、 Routing protocol traffic will be assigned 5% of the interface bandwidth.F、 Transactional traffic will be assigned 5% of the interface bandwidth.
考题
The Cisco SDM will create a QoS policy that provides services to two types of traffic. Which two statements indicate the default QoS parameters that are created by SDM?()A、 Business-critical traffic will be sorted into two QoS classes.B、 Real-time traffic will be sorted into one QoS class.C、 Voice traffic will be considered real-time traffic while call signaling will be considered business-critical.D、 All traffic except real-time will be considered best-effort.E、 Routing, management, and transactional traffic will be considered business-critical.F、 Voice and call signaling traffic will be considered real-time.
考题
Which statement is true about the SDM QoS wizard and its ability to enable a QoS policy on router interfaces?()A、QoS can be enabled on interfaces used for Easy VPN clientsB、QoS can be enabled on IPsec VPN interfaces and tunnelsC、QoS can be enabled on interfaces with an existing QoS policyD、the QoS policy can be enabled for incoming and outgoing traffic on the interface
考题
ASA/PIXversion 7.0 introduced ModularPolicyFramework (MPF) as anextensible wayto classify traffic,and then apply policies (or actions) to that traffic. MPF at aminimum requires which three commands?()A、 http-map, tcp-map, class-mapB、 class-map, tcp-map, policy-mapC、 class-map, policy-map, service-mapD、 class-map, service-policy, policy-map
考题
Which two steps are executed in the deployment of Cisco AutoQoS for Enterprise?()A、The customer uses SNMP statistics to create the policy.B、QoS policy templates are generated and installed on the interface.C、RTP is used to generate the policy.D、LLQ,cRTP,and LFI are used to automatically discover the policy.E、The auto-generated policy is manually optimized before implementation.F、Auto-discovery is used to determine what traffic is on the interface.
考题
Which statement describes the behavior of a security policy?()A、The implicit default security policy permits all traffic.B、Traffic destined to the device itself always requires a security policy.C、Traffic destined to the device’s incoming interface does not require a security policy.D、The factory-default configuration permits all traffic from all interfaces.
考题
What is the default Quality of Service traffic class used by the ERX Edge Router?()A、bronze forwardingB、assured forwardingC、expedited forwardingD、best effort forwarding
考题
As an experienced network administrator, you are asked to troubleshoot a QoS problem. In which way might the Cisco NetFlow be helpful during the troubleshooting process?()A、NetFlow can discover the protocols in use and automatically adjust QoS traffic classes to meet policy-map requirements.B、NetFlow records can be used to understand traffic profiles per class of service for data, voice, and video traffic.C、NetFlow can be configured to identify voice and video traffic flows and place them into a low-latency queue for expedited processing.D、NetFlow can report on the number of traffic matches for each class map in a configured QoS policy configuration.
考题
Which Cisco IOS traffic-shaping mechanism statement is true? ()A、class-based policing is configured using the Modular QoS command-line (MQC)B、only the Frame Relay traffic-shaping (FRTS) mechanism can interact with a Frame Relay network, adapting to indications of Layer2 congestion in the WAN linksC、Distributed Traffic Shaping (DTS) is configured with the police command under the policy map configurationD、both Frame Relay traffic shaping (FRTS) and virtual IP (VIP)-based Distributed Traffic Shaping (DTS) have the ability to mark traffic
考题
Which statement describes the Authentication Proxy feature?()A、All traffic is permitted from the inbound to the outbound interface upon successful authentication of the user.B、A specific access profile is retrieved from a TACACS+ or RADIUS server and applied to an IOS Firewall based on user provided credentials.C、Prior to responding to a proxy ARP,the router will prompt the user for a login and password which are authenticated based on the configured AAA policy.D、The proxy server capabilities of the IOS Firewall are enabled upon successful authentication of the user.
考题
Which IOS QoS mechanism is used strictly to rate limit traffic destinedto the router itself?()A、 Class-Based PolicingB、 Control Plane PolicingC、 Dual-Rate PolicierD、 Single-Rate PolicierE、 Class-BasedTraffic Shaper
考题
Which statement about MPLS traffic engineering policy-based tunnel selection (PBTS) is not true?()A、The tunnel that is not configured with the policy-class command acts as the defaultB、EXP selection is between multiple tunnels to the same destinationC、There is no requirement for IGP extensionsD、Tunnels are configured using the policy-class command and carry multiple EXP valuesE、It supports VRF traffic, IP-to-MPLS switching, and MPLS-to-MPLS switching
考题
Which two statements are true about the Cisco Classic (CBAC) IOS Firewall set?()A、It can be used to block bulk encryption attacksB、It can be used to protect against denial of service attacksC、Traffic originating from the router is considered trusted, so it is not inspectedD、Based upon the custom firewall rules, an ACL entry is statically created and added to theexisting ACL permanentlyE、Temporary ACL entries that allow selected traffic to pass are created and persist for theduration of the communication session
考题
Which two statements about QoS options in a Cisco UCS environment are true?()A、 The QoS policy assigns a system class to the outgoing traffic for a vNIC or vHBA.B、 Flow-control policies determine whether the uplink Ethernet ports in a Cisco UCS environment send and receive IEEE 802.3x pause frames when the send buffer for a port fills.C、 If no system class is configured as CoS 0, the Fibre Channel system class is used.D、 The user can configure QoS for these system classes: platinum, gold, silver, best effort, Fibre Channel.E、 When configuring a system class, the type of adapter in a server may limit the maximum MTU supported.
考题
What is true about access control on bridged and routed VLAN traffic? ()A、 Router ACLs can be applied to the input and output directions of a VLAN interface.B、 Bridged ACLs can be applied to the input and output directions of a VLAN interface.C、 Only router ACLs can be applied to a VLAN interface.D、 VLAN maps and router ACLs can be used in combination.E、 VLAN maps can be applied to a VLAN interface
考题
What is true about access control on bridged and routed VLAN traffic?()A、Router ACLs can be applied to the input and output directions of a VLAN interfaceB、Bridged ACLs can be applied to the input and output directions of a VLAN interfaceC、Only router ACLs can be applied to a VLAN interfaceD、VLAN maps and router ACLs can be used in combinationE、VLAN maps can be applied to a VLAN interfac
考题
What accurately describes the usage of a Cisco AutoQoS command?()A、on Catalyst switches, the show auto discovery qos command is used to display the data collected during the Auto-Discovery phaseB、on Catalyst switches, the show auto qos command is used to display packet statistics of all classes that are configured for all service policiesC、on Cisco routers, the show mls qos maps command is used to verify the CoS-to-DSCP maps for egress packet queuingD、on Cisco routers, the show auto qos command is used to display the AutoQoS interface templates, policy maps, class maps, and ACLs
考题
Which utility is used to assign a flow of data to a traffic class?()A、ip profileB、policy-listC、classifier-listD、rate-limit-profile
考题
Users can define policy to control traffic flow between which two components? ()(Choose two.)A、from a zone to the router itselfB、from a zone to the same zoneC、from a zone to a different zoneD、from one interface to another interface
考题
多选题When Cisco SDM is used to generate QoS policy, various QoS classes will be created and assigned a percentage of the interface bandwidth. Which three statements indicate the default bandwidth values that are assigned by SDM for outgoing traffic on a WAN interface? ()AVoice traffic will be assigned 47% of the interface bandwidth.BVoice call signaling will be assigned 33% of the interface bandwidth.CTelnet, SSH, and other traffic that is generated to manage the router is assigned 5% of the interface bandwidth.DBest-effort traffic will be assigned 38% of the interface bandwidth.ERouting protocol traffic will be assigned 5% of the interface bandwidth.FTransactional traffic will be assigned 5% of the interface bandwidth.
考题
单选题ASA/PIXversion 7.0 introduced ModularPolicyFramework (MPF) as anextensible wayto classify traffic,and then apply policies (or actions) to that traffic. MPF at aminimum requires which three commands?()A
http-map, tcp-map, class-mapB
class-map, tcp-map, policy-mapC
class-map, policy-map, service-mapD
class-map, service-policy, policy-map
考题
单选题Which statement best describes Cisco IOS Zone-Based Policy Firewall?()A
A router interface can belong to multiple zones.B
Policy maps are used to classify traffic into different traffic classes, and class maps are used to assignaction to the traffic classes.C
The pass action works in only one directionD
A zone-pair is bidirectional because it specifies traffic flowing among the interfaces within the zone-pair in both directions.
考题
单选题Which statement about MPLS traffic engineering policy-based tunnel selection (PBTS) is not true?()A
The tunnel that is not configured with the policy-class command acts as the defaultB
EXP selection is between multiple tunnels to the same destinationC
There is no requirement for IGP extensionsD
Tunnels are configured using the policy-class command and carry multiple EXP valuesE
It supports VRF traffic, IP-to-MPLS switching, and MPLS-to-MPLS switching
考题
单选题What accurately describes the usage of a Cisco AutoQoS command?()A
on Catalyst switches, the show auto discovery qos command is used to display the data collected during the Auto-Discovery phaseB
on Catalyst switches, the show auto qos command is used to display packet statistics of all classes that are configured for all service policiesC
on Cisco routers, the show mls qos maps command is used to verify the CoS-to-DSCP maps for egress packet queuingD
on Cisco routers, the show auto qos command is used to display the AutoQoS interface templates, policy maps, class maps, and ACLs
考题
多选题What is true about access control on bridged and routed VLAN traffic? ()ARouter ACLs can be applied to the input and output directions of a VLAN interface.BBridged ACLs can be applied to the input and output directions of a VLAN interface.COnly router ACLs can be applied to a VLAN interface.DVLAN maps and router ACLs can be used in combination.EVLAN maps can be applied to a VLAN interface
热门标签
最新试卷
