- 积分
- 133
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 注册时间
- 2019-1-29
- 最后登录
- 1970-1-1
- 阅读权限
- 20
- 听众
- 收听
助理工程师
|
Sorry it is in english:
5 U/ y- v- W1 x" F
- j. R" `/ p, v$ V% `! z I passed the exam, were exactly 14 new questions maybe 15 with wording in question changed but options were the same.( K- P1 h0 e5 E) H2 b
z9 t6 [1 |2 K: ~, I
Brief of what i can remember from questions:
# u8 b7 q+ V7 m3 f
) t3 ?9 e5 D/ GQuestion about adding custom intrusion rule and a hex string if you wanted to search it by payload options were like:
5 m% O& n' o, }4 L* ` bA) Metadata
7 O4 x% V0 Z% F' q$ O; CB) Data3 I' b, z F: q9 ^! k
C) Content4 h# ^0 T' X4 \8 _& m
D) forgot
/ ^8 W- y( q( p# ?( L9 t- H
+ n1 m6 z) l* C9 Q+ ?8 g. h) [Another question about dhcp already running on end users and without impacting end users how should it be implemented:+ q8 X: u# ~: }3 L
Options were about routed or transparent modes, i chose option with transparent mode but access list allowing dhcp$ Z* Y. [9 `! R% E2 {
8 P ~6 q6 e9 i' GDrag and drop about multi-instances config, there were 5 steps which i got completely wrong but you can look it up
O) c. m& D% n6 a0 ^9 Q$ O* B$ I8 U. [/ C! B3 Y: a2 Y& o
The Badsite question we currently have except they want to make interactive block for it, how is it done choose 2
/ g- ^ D8 T8 N) ~( I4 h! p# v* @% f# L: F% f8 ]- X' c
Question about how capture was too much data in gui and how analyst cant see it all. What format can he export it as so he can analyze it further:4 z' O, m! \+ Z J+ C
A) Netflow v9
4 d. c' l- n! k0 @B) Netflow v5# u! P- @: O E- y5 Q: x2 q8 g
C) PCAP- @" r D& ?" v: M3 L; Q
D) IPFIX/ v; o# L% V& T9 q$ F5 X2 X; B8 d# L
" g3 G6 I5 N( H$ }, \6 {
There were a lot of rules of "how do i implement this without impacting the end user" (mostly means transparent is the answer)
1 l3 s1 e8 H) o m/ l
0 g) }8 ~2 Q& W/ b8 Q6 {$ G6 |4 OImplementing IRB with dynamic routing, which protocols are supported:1 Y0 g% S* d' j
A) Link State; i& I5 U) K( _! @( N/ z" ^! \ u
B) Distance Vector
4 l- U2 ] O, XC) Bridge Protocols2 ~" p# K8 G; R7 u t" z; k9 c
D) EtherChannel. P# B$ I1 `" i& @( F
; D! U' h+ f" K: [# Z3 SThere were a couple more but were either stupid easy or stuff I didn't want to remember.0 ~4 m: a4 N* @. T+ O* b( C# p% ^
6 n* S' i0 F1 n8 k8 W6 n* VI'll be around for couple of days but i'll post the questions I used to study, ofc its questions we are already aware about but i corrected the answers to the questions as well. Don't take my word for it and please check yourself
8 J) Z; Y+ f N; f' H& U; @# Z7 x' L- P9 s
|
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-5-6 05:14:27
置顶卡
喧嚣卡
变色卡
千斤顶
