从决定参加安全笔试到考试一共4天时间,感觉基本够用了,现在的提比较稳定:141Q+6额外题全涵盖了我这次的所有考题。感谢之前的考友提供的各种信息,我在这里做个总结造福之后的考友:8 f9 R# m, i- _ }' T( E
/ y( K9 Q2 n$ T% T, M( @
6额外题:& Q: P$ ^- n& |0 v% p
* n1 T: W! ~/ K* {' k) {( u5 j. x& {1, CoA | Under Cisco IOS Software, which three features are supported in RADIUS Change of Authorization requests? (Choose three.) | | | B. session reauthentication | |
SessionIdentification 2,Which two statements about Cisco ASAauthentication using LDAP are true? (Choose two.)
& j8 I" }' V/ |4 s0 V" H& _# L6 R$ ]& l0 q/ d- c( Z: H7 V, Y5 A7 t& k
A. It uses attribute maps to map the AD memberOf attribute to the cisco ASA Group-Poilcy attribute- O, M0 F*i" s1 j e; ~8 T$ T& `: A1 `; k# S
B. It uses AD attribute maps to assign users togroup policies configured under the WebVPN context4 Z( t5 W6u% b) e- s/ W0 x* }' j
T7 N5 L5 O+ G! ^: b0 BC. The Cisco ASA can use more than one AD memberOf attribute to match a user to multiple group policies( l* q4 H) |, U' y" v$ l
D. It can assign a group policy to a user basedon access credentials" D' Y4 p9 k8 ^# G1 `$ E- J. o1 w; M8 |* y; z
E. It can combine AD attributes and LDPattributes to configure group policies on the Cisco ASA2 K. n. z:H6 T- n0 w9 p4 C* r/ v% C4 D* a. O T: Q, E
F. It is a closed standard that managesdirectory-information services over distributed networks& W!K! t, {7 Z/ K
O, o# c& x. |+ e; N
# J- P7 Z9 W& w& {0 l( VAnswer: A, B5 }/ r) q1 R0 ], o: {- N4 o% ?
7 y7 y- f9 R& Q3 U2 T* u
( z, z% G7 [+ v, U! N0 o K+ m* T7 ]# ^2 T1 V9 T
3,Whichthree statements about the keying methods used by MAC Sec are true? (Choosethree.)
- n' K2 D. I: f) ] i# o( ~% C
7 L* r1 u( C1 r. L1 LA. MKA is implemented as an EAPoL packetexchange.4 e" y' ]7 T4 |7 `4 J! z
B. SAP is enabled by default for Cisco TrustSecin manual configuration mode.* W E1 p4 L7y ?* s0 R; K% Y( x! E2 H6 D8 P
C. SAP is supported on SPAN destination ports.( q2 g* G; U6 R4 k
D. Key management for host-to-switch andswitch-to-switch MACSec sessions is provided by MKA.' J6 k]w p, X] p9 F6 D
8 `6 z6 ~; D2 G1 s q& P/ YE. SAP is not supported on switch SVIs.- K; _]u Z7 ?, N
, U* g. S0 R3 ^5 V6 ?9 GF. A valid mode for SAP is NULL.
6 V9 I3 h. L4 C. `% X9 d* r, w# b% Z7 g; L" T! X, P+ a( m& R, {8 o% w) y. A
Answer: A, E, F 4,其中问哪个是stream cipher的直接选RC4. 5,BGP的题目是BGP for TTL Security Check是干什么用的—单选 选含有for CPU utilization-based attacks的选项. 6, file:////Users/lexin/Library/Group%20Containers/UBF8T346G9.Office/msoclip1/01/clip_image002.png
- d4 J4 G( K9 q- M至于141题库的准确性:
, X- l4 y8 L5 v& t
有争议的题目我有3个:
$ d$ V; G/ A5 D5 M%R, l j! K+ r2 X3 ^3 s# h- D6 w" b2 U8 Z
101, AEF, 5 Ghz, WPA加密,wep加密都是错的,选剩下的。2 g% C3 t' S$ T, F( ~
+ c/ H! v5 r n4 B. i" T105,有人提到过,MSE和wIPSMonitor Mode是反的。 p#g8 h# ^$ q& x5 w
5 A- U) E; M, S4 v# a0 K% U! u1 X9 n135, 选B和Da view is created.)Z1
) H8 \0 c( Y L, x3 K" h
其他的我个人觉得应该没什么问题,目前题目稳定,考位也很多,有需要的考友尽快吧
9 A" w( d* z; y4 n3 B% ~# i | 
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2017-6-30 14:50:05
置顶卡
喧嚣卡
变色卡
千斤顶
楼主
