- 积分
- 133
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 最后登录
- 1970-1-1
- 阅读权限
- 20
- 听众
- 收听
助理工程师
|
Sorry it is in english:
& |" e6 r! E5 [% W7 c7 S1 v
7 l3 M) w6 S' A$ e5 x8 u I passed the exam, were exactly 14 new questions maybe 15 with wording in question changed but options were the same.2 F# m2 a# V) l) e+ N2 H! a
/ ~3 N4 [+ a9 S9 @' PBrief of what i can remember from questions:
" r" H7 M0 c. d/ A. r$ H Z: x
! Q+ S! b# V& p8 fQuestion about adding custom intrusion rule and a hex string if you wanted to search it by payload options were like:# k5 g9 R1 |: Y# Z
A) Metadata
3 d2 O7 Q+ }" {" w6 P o) T8 s; h) Z/ }B) Data: V0 e* ?" z- e# _
C) Content8 N# R* p+ Y( n, T( ]+ H
D) forgot
/ d: u4 Q6 Z% n( W3 v, {
7 I- g1 |* z7 j. G) l7 f0 ]Another question about dhcp already running on end users and without impacting end users how should it be implemented:& p2 z( b+ ?3 j/ v
Options were about routed or transparent modes, i chose option with transparent mode but access list allowing dhcp
$ N$ r+ ~9 W$ M
* D( w/ r$ i, a8 z2 jDrag and drop about multi-instances config, there were 5 steps which i got completely wrong but you can look it up
- i6 g' i- r: Q7 |: n; e. c* x% ~; T: K& { K7 M ~( W- {
The Badsite question we currently have except they want to make interactive block for it, how is it done choose 23 h# O# P Z, R3 Y+ [- r; h
b, }3 U9 d& I T! BQuestion about how capture was too much data in gui and how analyst cant see it all. What format can he export it as so he can analyze it further:6 a: D; ]9 {+ S5 G
A) Netflow v9
( B! M2 V# G# ^* ^/ RB) Netflow v5
/ `% v2 a0 S* q! J% K( k) Q2 p; f- DC) PCAP( b9 U* u" q( R6 {7 n
D) IPFIX, [% D; m- x7 T# R- V" {
/ G' n9 i0 N4 h* T/ Z! ~There were a lot of rules of "how do i implement this without impacting the end user" (mostly means transparent is the answer)
% \. A ^/ r& a" O
w& X& P" c vImplementing IRB with dynamic routing, which protocols are supported:
' g2 s! s3 f3 v0 o; GA) Link State) m, U9 [6 z+ C; Y
B) Distance Vector% b* w7 f3 J5 A& [; k* P
C) Bridge Protocols
( f+ [$ _1 P% t, e+ g/ b( G( y' BD) EtherChannel4 B3 @8 a3 @9 r7 I- z* G3 b
' _8 O% [3 d( @. C
There were a couple more but were either stupid easy or stuff I didn't want to remember.
, S- {: [7 I; a- R5 n/ d
# A9 Z0 g6 L, o: G/ e) mI'll be around for couple of days but i'll post the questions I used to study, ofc its questions we are already aware about but i corrected the answers to the questions as well. Don't take my word for it and please check yourself+ Z4 z X* h2 z3 \# z d
5 c, N1 E. z6 i f0 n+ i6 r& ?$ h$ `
|
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-5-6 05:14:27
置顶卡
喧嚣卡
变色卡
千斤顶
