更多"[单选题]Examine the IPS sensor and DoS"的相关试题:
[单选题]
Examine the IPS sensor configuration shown in the exhibit and then Answer the question
Below.An administrator has configured the WINDOWS_SERVERS IPS sensor in an attempt to determine
Whether the influx of HTTPS traffic is an attack attempt or not. After applying the IPS sensor FortiGate is still not generating any IPS logs for the HTTPS traffic.
What is a possible reason for this?
A. The IPS filter is missing the Protocol: HTTPS option.
B. The HTTPS signatures have not been added to the sensor.
C. A DoS policy should be used instead of an IPS sensor.
D. A DoS policy should be used instead of an IPS sensor.
E. The firewall policy is not using a full SSL inspection profile.
[单选题] sensor保存期限:从sensor生产日期起。( )
A.一年
B.二年
C.三年
D.四年
[判断题]IPS与IDS的职责都是保证网络安全,IPS注重接入控制,而IDS则进行网络监测。
A.正确
B.错误
[单选题]
BGP可使用的路由策略工具主要有Filter-policy和Route-policy, 其中Fiter-policy只能过滤路由, Route-policy只能修改路由
A.TRUE
B.FALSE
[单选题]CA002 显示 DOS 目录下扩展名为.com 的文件的 DOS 命令为( )。
A.D:dir C:*.com
B. D:dir *.com
C. D:dir *.*.com
D.D:dir *.?.com
[单选题]polling sensor默认运行间隔为?
A.15s
B.5s
C.30s
D.60s
[单选题]IPS和IDS都是主动防御系统。
A.A、正确
B.B、错误
[单选题]
Which statement regarding the firewall policy authentication timeout is true?
A. It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source IP.
B. It is a hard timeout. The FortiGate removes the temporary policy for a user's source IP address after this timer has expired.
C. It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source MAC.
D. It is a hard timeout. The FortiGate removes the temporary policy for a user's source MAC address after this timer has expired.
[单选题]"NEWS和IPS评分的区别是:( )
A.NEWS是单参数型评分系统;参数固定;IPS是总分型评分系统,参数自定义
B.NEWS是单参数型评分系统;IPS是总分型评分系统,两者参数相同,均为固定参数
C.NEWS是总分型评分系统,参数固定;IPS是单参数型评分系统,参数自定义
D.NEWS是总分数型评分系统;IPS是单参数型评分系统,两者参数相同,均为固定参数
[单选题]IPS设备旁路接入网络时仍然能够阻断网络攻击。
A.A、正确
B.B、错误
[单选题]IPS虽然能主动防御,但是不能监听网络流量。
A.A、正确
B.B、错误
[单选题]
NGFW mode allows policy-based configuration for most inspection rules. Which security profile's configuration does not change when you enable policy-based inspection?
A. Web filtering
B. Antivirus
C. Web proxy
D. Application control
[单选题]
Which statement about the policy ID number of a firewall policy is true?
A. It is required to modify a firewall policy using the CLI.
B. It represents the number of objects used in the firewall policy.
C. It changes when firewall policies are reordered.
D. It defines the order in which rules are processed.
[单选题]
When a firewall policy is created which attribute is added to the policy to support recording logs to a FortiAnalyzer or a FortiManager and improves functionality when a FortiGate is integrated with these devices?
A. Log ID
B. Universally Unique Identifier
C. Policy ID
D. Sequence ID
[单选题]以下哪项DOS命令正确?
A.A.ping146.1.1.11
B.B.ping 146.1.1.11-t
C.C.tracert 146.1.1.11 -t
D.D.tracert -d 146.1.1.11
[单选题]B737-700飞机的CLEAN/CHECK SENSOR信息表示____。
A.表示废水箱已满,马桶的冲水系统自动关闭.
B.表示废水箱已满,马桶的冲水系统不会自动关闭.
C.表示废水箱内的探测器有污损需要清理.
D.表示废水箱内的管道有污损需要清理.
[判断题]( )737 飞机当废水量指示器显示”CLEAN//CHECK SENSOR”指示灯亮时,表示系统需要维修,但是排污系统仍继续工作。
A.正确
B.错误
[判断题]( )B737 型飞机当废水量指示器显示”CLEAN//CHECK SENSOR”指示灯亮时, 表示系统需要维修,但是排污系统仍继续工作。
A.正确
B.错误
[判断题]( ) 737 飞机当废水量指示器显示”CLEAN//CHECK SENSOR”指示灯亮时, 表示 系
统需要维修, 但是排污系统仍继续工作。
A.正确
B.错误
