單項選擇題Since HTTP is one of the most common protocols used in the internet, what should be done at a firewall level to ensure thatthe protocol is being used correctly? ()

A. Ensure that a stateful firewall allows only HTTP traffic destined for valid web server IP addresses.
B. Ensure that a firewall has SYN flood and DDoS protection applied specifically for valid web servers.
C. Ensure that your firewall enforces HTTP protocol compliance to ensure that only valid flows are allowed inand outof your network.
D. Ensure that HTTP is always authenticated.
E. Ensure that your web server is in a different zone than your backend servers such as SQL and DNS.


您可能感興趣的試卷

你可能感興趣的試題

1.單項選擇題What Cisco technology protects against Spanning-Tree Protocol manipulation?()

A. Spanning tree protect
B. Root Guard and BPDU Guard
C. Unicast Reverse Path Forwarding
D. MAC spoof guard
E. Port Security

2.單項選擇題Which of the following is an example of a security technology that could be enabled by Netflow?()

A. Anomaly Detection
B. SYN Cookies
C. Application Inspection
D. Content filtering
E. Anti-X Protection
F. Anti Virus

3.單項選擇題What Cisco Switch feature best protects against CAM table overflow attacks?()

A. Storm Control
B. Port security
C. CAM table size definition
D. IP spoof prevention
E. Network Based Application Recognition

5.單項選擇題ASDM on the ASA platform is executed as:()

A. An active-x applicationor a java script application
B. A java script application and a PHP application.
C. A fully compiled .NET framework application
D. A fully operational Visual Basic application
E. A java applet running in the context of your browser or a stand alone application using the java run-timeenvironment

最新試題

Choose the most correct statements about SMTP/ESMTP. ()

題型:多項選擇題

Which two statements are correct about the aaa authentication login default grouptacacs+ localglobal configuration command? ()

題型:多項選擇題

For a router to obtain a certificate from a CA, what is the first stepof the certificate enrollment process?()

題型:單項選擇題

Which access methods can CS-MARS use toget configuration information from an Adaptive SecurityAppliance (ASA)? ()

題型:多項選擇題

What group in Cisco IOS does 1536-bit Diffie-Hellman prime modulus equivalent too?()

題型:單項選擇題

Which SSL protocol takes anapplication message tobe transmitted, fragments the datainto manageable blocks, optionally compresses the data, applies a MAC, encrypts, adds a header, and transmits the resulting unit ina TCPsegment?()

題型:單項選擇題

Which of these is the best way to provide sender non-repudiation?()

題型:單項選擇題

Since HTTP is one of the most common protocols used in the internet, what should be done at a firewall level to ensure thatthe protocol is being used correctly? ()

題型:單項選擇題

Which statements are true concerning NAT? ()

題型:多項選擇題

When implementing best practices for IP Source Address Spoofing and Defeating Denial of Service Attacks with IP SourceAddress Spoofing, what RFC is commonly usedto protect your network?()

題型:單項選擇題