- 积分
- 133
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 最后登录
- 1970-1-1
- 阅读权限
- 20
- 听众
- 收听
助理工程师
|
Sorry it is in english:. X) s _2 `. Y: B
2 D3 j/ o) A+ c8 ] I passed the exam, were exactly 14 new questions maybe 15 with wording in question changed but options were the same.
7 ]. P# @, N0 k6 K; E$ Q' q/ l3 a: h h/ |6 [5 E4 q- C
Brief of what i can remember from questions:
8 h! R, u, t+ J* J* i
1 E, Y. g) e. I2 iQuestion about adding custom intrusion rule and a hex string if you wanted to search it by payload options were like:
( S/ E: d: S9 E( f( P" gA) Metadata6 k& w2 W$ o# l6 f1 ?! Q4 ?3 N+ ]
B) Data
U3 o( }- S; ~9 v( YC) Content
! l: Z7 U3 ]/ V2 JD) forgot5 Q" K* \( T( I' s- K! E: U
- a: M' W% H% C1 }6 W7 _# I
Another question about dhcp already running on end users and without impacting end users how should it be implemented:
5 {' ?9 `4 z8 {! M" LOptions were about routed or transparent modes, i chose option with transparent mode but access list allowing dhcp
/ X, W& _, C$ w* m A6 w" E1 e. G
/ W8 s; X9 }4 o' z6 N# U# g1 YDrag and drop about multi-instances config, there were 5 steps which i got completely wrong but you can look it up
% a4 V! ?' s( \3 u' E H
: T3 m, j0 f# J3 Z! h2 pThe Badsite question we currently have except they want to make interactive block for it, how is it done choose 2
, N; ~8 Y) A4 Y2 k7 g
/ Z9 L& j: m1 ~Question about how capture was too much data in gui and how analyst cant see it all. What format can he export it as so he can analyze it further:
. I. L+ N2 P+ q3 q- o. F: DA) Netflow v9
5 l. L- J9 O+ ]* v7 A% pB) Netflow v5
8 U1 {0 v: z+ ]C) PCAP
) ?) d" M9 v8 l0 _3 H/ v, G( DD) IPFIX) |8 Q! r3 V1 r7 G
7 z( s0 q- D r0 O
There were a lot of rules of "how do i implement this without impacting the end user" (mostly means transparent is the answer)$ j0 r! _5 y9 a( m
% Y& ~) m4 b$ H+ q0 `' gImplementing IRB with dynamic routing, which protocols are supported:
, P# C% D+ Y0 nA) Link State
# b0 j7 z/ Z. ?; e4 ?1 jB) Distance Vector
7 |4 ]7 ?* U6 ?" H: h+ D4 I( lC) Bridge Protocols
2 [ ^5 b. y2 I) @7 g) l& L/ ^7 FD) EtherChannel) e- I- b6 P$ j
$ V2 F0 c& `3 y5 C- \# MThere were a couple more but were either stupid easy or stuff I didn't want to remember., y0 b9 Y$ n! _- w; c! Z* y
4 X0 m# @0 ]" T
I'll be around for couple of days but i'll post the questions I used to study, ofc its questions we are already aware about but i corrected the answers to the questions as well. Don't take my word for it and please check yourself
" Q& q' W$ W' M# _: l
% |. `" C9 c6 y1 b1 K |
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-5-6 05:14:27
置顶卡
喧嚣卡
变色卡
千斤顶
