- 积分
- 133
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 最后登录
- 1970-1-1
- 阅读权限
- 20
- 听众
- 收听
助理工程师
|
Sorry it is in english:
$ S) x' J" z0 F8 F
, ]* ?6 ^1 |$ Y I passed the exam, were exactly 14 new questions maybe 15 with wording in question changed but options were the same.
4 w: {% a, P- w% P& O# A5 P% `( h/ R# ]; D1 g/ \. A# f- G, }
Brief of what i can remember from questions:
& E- r+ n/ b1 X* y4 K5 B _3 i/ @. w6 v7 m9 f
Question about adding custom intrusion rule and a hex string if you wanted to search it by payload options were like:! H; E2 L7 y" P" Z% G0 t
A) Metadata
) ?( n: N! \& S$ P# e1 RB) Data
7 v; Q* _2 O2 R" h6 r. y' nC) Content& C/ q. n/ w S# v
D) forgot
+ A8 d$ f5 t7 D3 V; T6 p: u6 \ H3 o; h
Another question about dhcp already running on end users and without impacting end users how should it be implemented:
. B1 P& t" i7 d/ t e% J7 LOptions were about routed or transparent modes, i chose option with transparent mode but access list allowing dhcp7 T$ }0 J- |7 L$ |* Y
( {% f/ }1 P V) N
Drag and drop about multi-instances config, there were 5 steps which i got completely wrong but you can look it up+ M! P- A/ l- s, w8 q) i
# M/ b0 c" l. D5 S% i+ ]The Badsite question we currently have except they want to make interactive block for it, how is it done choose 25 F/ a6 G4 J4 V" j k$ R
% p( S. | O" Z! T# f
Question about how capture was too much data in gui and how analyst cant see it all. What format can he export it as so he can analyze it further:2 r) m+ @* Q7 k4 D- l# ]& E. V
A) Netflow v9
0 ?9 }/ |! ?! k7 ~4 pB) Netflow v5
2 a) l. D" ^5 W/ F1 Z0 CC) PCAP% z2 R7 p i% {
D) IPFIX% f c z- U$ ~. H) S7 ~. i
) p1 `! p& S( ]5 b: P
There were a lot of rules of "how do i implement this without impacting the end user" (mostly means transparent is the answer)
/ E2 M% e7 r: ]4 |0 d8 b1 P( T5 U2 a* o* z+ z
Implementing IRB with dynamic routing, which protocols are supported:
9 F+ |7 @5 G7 k P) \A) Link State
" \* Z' g$ z# g3 c0 |B) Distance Vector3 L5 J$ u7 J _$ R9 i2 C @
C) Bridge Protocols0 a) u4 A7 r2 X% Q2 F4 i6 m* x
D) EtherChannel
' I8 e* c8 R, x( N) o! D# a. \ }1 t1 I; Y
There were a couple more but were either stupid easy or stuff I didn't want to remember.
) F8 [$ F2 C* @) c9 r: Z+ S. i8 C$ `1 |: g$ V; {
I'll be around for couple of days but i'll post the questions I used to study, ofc its questions we are already aware about but i corrected the answers to the questions as well. Don't take my word for it and please check yourself
& J% U7 d$ a$ ]4 ]
# \. E- a" K1 | B4 t1 k1 b |
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-5-6 05:14:27
置顶卡
喧嚣卡
变色卡
千斤顶
