- 积分
- 132
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 注册时间
- 2019-1-29
- 最后登录
- 1970-1-1
- 阅读权限
- 20
- 听众
- 收听
助理工程师
|
Sorry it is in english:
, g7 w$ T, g6 C6 ?* m- r) j5 U( H5 [( J* G, s8 d2 u
I passed the exam, were exactly 14 new questions maybe 15 with wording in question changed but options were the same.
2 v# x& D) ?8 A0 R8 s/ o6 p2 g0 v3 n1 x0 f% W
Brief of what i can remember from questions:
- a8 d/ h3 E) M2 Q2 ?- V9 y9 t8 |5 c4 ?9 B! J+ n, u
Question about adding custom intrusion rule and a hex string if you wanted to search it by payload options were like:2 M& F/ K5 b. X' m
A) Metadata. A+ N/ g! ^$ L$ O8 ~9 |- A
B) Data
& u+ p; U1 [$ H" h' Z+ eC) Content
! `' k0 Q( P8 R" k1 o$ Q3 fD) forgot
; ~+ ^8 v* N3 s
( Y& ]9 B w: m" j# lAnother question about dhcp already running on end users and without impacting end users how should it be implemented:# t$ Z6 q% @$ M$ v# O c
Options were about routed or transparent modes, i chose option with transparent mode but access list allowing dhcp/ ^2 [4 |" V# o* X! u' n& o' d0 g* P8 A2 O
" `2 p5 Y9 H! l) IDrag and drop about multi-instances config, there were 5 steps which i got completely wrong but you can look it up7 ^- A! r& | W
6 ~. }" C- x* ?7 u+ cThe Badsite question we currently have except they want to make interactive block for it, how is it done choose 2
# A' b7 v P1 f3 L: i+ T, P' \! d' g6 G
Question about how capture was too much data in gui and how analyst cant see it all. What format can he export it as so he can analyze it further:
, I7 v- Y u% B! |4 e4 h1 \A) Netflow v9
9 \7 a/ p" }! B& j0 iB) Netflow v53 l2 ?5 ~0 {. x4 N# d
C) PCAP
7 V9 f) Y% B$ yD) IPFIX
* y1 ]. L7 y& N+ Q, S$ ^# v& B" _3 q/ r M5 x3 ~: M
There were a lot of rules of "how do i implement this without impacting the end user" (mostly means transparent is the answer)
% x2 i! E9 I( H( `/ {/ B
/ L( [5 L3 Y4 {1 o2 e Q4 D" |Implementing IRB with dynamic routing, which protocols are supported:6 E% y7 m4 z" C; G | I
A) Link State' ?( J I- x, Z
B) Distance Vector. [/ |: S; m! S0 F: I9 r
C) Bridge Protocols
& K! V) f1 C# ID) EtherChannel
; \/ Y8 x3 ~$ A! w9 e* t. o; |' y2 b3 R, n8 Y/ H
There were a couple more but were either stupid easy or stuff I didn't want to remember.3 ?% t1 g1 k9 ]) J: \' S1 }! _$ Q9 d
0 C) u- i6 H6 _! C% ?! p! Z
I'll be around for couple of days but i'll post the questions I used to study, ofc its questions we are already aware about but i corrected the answers to the questions as well. Don't take my word for it and please check yourself
3 [; l* E: W3 o
$ u1 N9 r4 n( } |
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-5-6 05:14:27
置顶卡
喧嚣卡
变色卡
千斤顶
