单选题的命令提示符运行以下命令,netsh advfirewall firewall add rule name="CustomRule" profile=domain protocol=TCP dir=in localport=80 action=allow ,做了哪些配置?()A创建了一个入站规则,只应用在域配置文件中封锁80端口通信B创建了一个出站规则,只应用在域配置文件中封锁80端口通信C创建了一个入站规则,只应用在域配置文件中允许80端口通信D创建了一个出站规则,只应用在域配置文件中允许80端口通信
单选题
的命令提示符运行以下命令,netsh advfirewall firewall add rule name="CustomRule" profile=domain protocol=TCP dir=in localport=80 action=allow ,做了哪些配置?()
A
创建了一个入站规则,只应用在域配置文件中封锁80端口通信
B
创建了一个出站规则,只应用在域配置文件中封锁80端口通信
C
创建了一个入站规则,只应用在域配置文件中允许80端口通信
D
创建了一个出站规则,只应用在域配置文件中允许80端口通信
参考解析
解析:
暂无解析
相关考题:
在WindowsServer服务器上的命令提示符窗口中,输入(),打开“高级安全Windows防火墙”窗口。 A.wf.cplB.firewall.mscC.firewall.cplD.wf.msc
Your network contains a server named Server1 that has Windows Server 2008 R2.An administrator runs the following command on Server1: netsh.exe advfirewall reset You discover that you can no longer access Server1 on port 3389.You need to ensure that you can access Server1 on port 3389.Which firewall rule should you enable?()A. File and Printer Sharing (Echo Request ICMPv4-In)B. File and Printer Sharing (SMB-In)C. Remote Desktop (TCP-In)D. Remote Service Management (RPC)
以下命令针对网络服务的端口配置,解释以下配置命令:firewall(config)fixup protocol http 8080(10)firewall(config)no fixup protocol ftp 21(11)
某全国连锁企业的总部和分布在全国各地的30家分公司之间经常需要传输各种内部数据,因此公司决定在总部和各分公司之间建立VPN技术。具体拓扑如下:配置部分只显示了与总部与分公司1的配置。根据拓扑完成问题1-问题3。[问题1](3分):在总部与分公司之间相连的VPN方式是(1),在IPsec工作模式中有传输模式和隧道模式,其中将源IP数据包整体封装后再进行传输的模式是(2).1备选答案:A.站点到站点 B.端到端C.端到站点[问题2](13分):请将相关配置补充完整。总部防火墙firewall1的部分配置如下。 (3)[FIREWALL1] interface(4)[FIREWALL1-GigabitEthernet1/0/2] ip address (5)[FIREWALL1-GigabitEthernet1/0/2] quit[FIREWALL1] interface GigabitEthernet 1/0/1[FIREWALL1-GigabitEthernet1/0/1] ip address 202.1.3.1 24[FIREWALL1-GigabitEthernet1/0/1] quit# 配置接口加入相应的安全区域。[FIREWALL1] firewall zone trust [FIREWALL1-zone-trust] add interface (6)[FIREWALL1-zone-trust] quit[FIREWALL1](7)[FIREWALL1-zone-untrust] add interface GigabitEthernet 1/0/1[FIREWALL1-zone-untrust] quit2. 配置安全策略,允许私网指定网段进行报文交互。# 配置Trust域与Untrust域的安全策略,允许封装前和解封后的报文能通过[FIREWALL1](8)[FIREWALL1-policy-security] rule name 1[FIREWALL1-policy-security-rule-1] source-zone (9)[FIREWALL1-policy-security-rule-1] destination-zone untrust[FIREWALL1-policy-security-rule-1] source-address (10)[FIREWALL1-policy-security-rule-1] destination-address 192.168.200.0 24[FIREWALL1-policy-security-rule-1] action (11)[FIREWALL1-policy-security-rule-1] quit…..# 配置Local域与Untrust域的安全策略,允许IKE协商报文能正常通过FIREWALL1。[FIREWALL1-policy-security] rule name 3[FIREWALL1-policy-security-rule-3] source-zone local[FIREWALL1-policy-security-rule-3] destination-zone untrust[FIREWALL1-policy-security-rule-3] source-address 202.1.3.1 32[FIREWALL1-policy-security-rule-3] destination-address 202.1.5.1 32[FIREWALL1-policy-security-rule-3] action permit[FIREWALL1-policy-security-rule-3] quit…3. 配置IPSec隧道。# 配置访问控制列表,定义需要保护的数据流。[FIREWALL1] (12)[FIREWALL1-acl-adv-3000] rule permit (13)[FIREWALL1-acl-adv-3000] quit# 配置名称为tran1的IPSec安全提议。[FIREWALL1] ipsec proposal tran1[FIREWALL1-ipsec-proposal-tran1] encapsulation-mode (14)[FIREWALL1-ipsec-proposal-tran1] transform esp[FIREWALL1-ipsec-proposal-tran1] esp authentication-algorithm sha2-256[FIREWALL1-ipsec-proposal-tran1] esp encryption-algorithm aes[FIREWALL1-ipsec-proposal-tran1] quit# 配置序号为10的IKE安全提议。[FIREWALL1] (15)[FIREWALL1-ike-proposal-10] authentication-method pre-share[FIREWALL1-ike-proposal-10] authentication-algorithm sha2-256[FIREWALL1-ike-proposal-10] quit# 配置IKE用户信息表。[FIREWALL1] ike user-table 1[FIREWALL1-ike-user-table-1] user id-type ip 202.1.5.1 pre-shared-key Admin@gkys[FIREWALL1-ike-user-table-1] quit# 配置IKE Peer。[FIREWALL1] ike peer b[FIREWALL1-ike-peer-b] ike-proposal 10[FIREWALL1-ike-peer-b] user-table 1[FIREWALL1-ike-peer-b] quit# 配置名称为map_temp序号为1的IPSec安全策略模板。[FIREWALL1] ipsec policy-template map_temp 1[FIREWALL1-ipsec-policy-template-map_temp-1] security acl 3000[FIREWALL1-ipsec-policy-template-map_temp-1] proposal tran1[FIREWALL1-ipsec-policy-template-map_temp-1] ike-peer b[FIREWALL1-ipsec-policy-template-map_temp-1] reverse-route enable[FIREWALL1-ipsec-policy-template-map_temp-1] quit# 在IPSec安全策略map1中引用安全策略模板map_temp。[FIREWALL1] ipsec policy map1 10 isakmp template map_temp# 在接口GigabitEthernet 1/0/1上应用安全策略map1。[FIREWALL1] interface GigabitEthernet 1/0/1[FIREWALL1-GigabitEthernet1/0/1] ipsec policy map1[FIREWALL1-GigabitEthernet1/0/1] quit [问题3]IPsec中,通过一些协议的处理,可以有效的保护分组安全传输。其中能够确保数据完整性,但是不能确保数据机密性的是(17),而技能报数数据传输的机密性又能保证数据完整性的是(18)
某公司在外地新开了一家分公司,现管理员希望在总部与分公司之间通过vpn建立连接。根据拓扑图,完成下列问题。[问题1](3分)该公司所选用的VPn技术为IPSec。它工作在TCP/IP协议栈的(1)层,能为TCP/IP通信提供访问控制机密性、数据源验证、抗重放、数据完整性等多种安全服务。其中能够确保数据完整性,但是不确保数据机密性的协议是(2),既能报数数据传输的机密性又能保证数据完整性的是协议是(3)。[问题2](4分):请将相关配置补充完整。总部防火墙firewall1的部分配置如下。…# 配置Trust域与Untrust域的安全策略,允许封装前和解封后的报文能通过[FIREWALL1] (5)[FIREWALL1-policy-security] rule name 1[FIREWALL1-policy-security-rule-1] source-zone trust[FIREWALL1-policy-security-rule-1] destination-zone untrust[FIREWALL1-policy-security-rule-1] source-address (6)[FIREWALL1-policy-security-rule-1] destination-address(7)[FIREWALL1-policy-security-rule-1] quit[FIREWALL1] acl 3000[FIREWALL1-acl-adv-3000] rule (8)ip source 192.168.1.0 0.0.0.255 destination 192.168.2.0 0.0.0.255[FIREWALL1-acl-adv-3000] quit…
您的网络有一个总部和一个分支办公室。分支办公室有五台运行 Windows 7 的客户端计算机。所有客户端计算机均配置为使用 BranchCache。在分支办公室中,一台名为 Computer1 的计算机遇到性能问题。您需要暂时阻止所有计算机从Computer1 中检索缓存的内容。在 Computer1 上,您应该怎么做?()A、在命令提示符处,运行 Netsh branchcache flushB、在命令提示符处,运行 Netsh branchcache dumpC、修改配置网络文件的 BranchCache“组策略”设置D、修改设置用于客户端计算机缓存的磁盘空间百分比“组策略”设置
你是公司网络管理员。网络是一个单活动目录域环境。所有的服务器运行Windows Server 2003。你需要为6台在网络中高度可见的服务器使用WSUS服务进行紧急升级。你批准通过所有的升级。你要确保升级操作在1小时内完成。你该如何操作?()A、在WSUS服务器上,打开命令提示符运行gpupdate/force命令B、在WSUS服务器上,打开命令提示符运行wuauclt/detectnow命令C、在这6台服务器上,打开命令提示符运行gpupdate/force命令D、在这6台服务器上,打开命令提示符运行wuauclt/detectnow命令
以下配置邮件主题过滤关键字错误的是()。A、firewall smtp-filter subject add*B、firewall smtp-filter subject add*hello*C、firewall smtp-filter subject addhel loD、firewall smtp-filter subject add"hel lo"
What is a virtual firewall?()A、another name for a firewall deployed in routed modeB、another name for a firewall deployed in transparent modeC、a separation of multiple firewall security contexts on a single firewallD、a firewall that, when deployed in routed mode, can support up to 1000 VLANs per contextE、a firewall that has multiple contexts, all of which share the same policies (such as NAT and ACLs)
A technician needs to check which ports are open in the Windows Firewall. Which of the following willallow the technician to view these settings?()A、netsh firewall show loggingB、ipconfig /allC、netsh firewall show stateD、arp -a
你在一个运行windows server 2008的服务器上安装windows部署服务(wds)角色。你上传一个通用镜像文件到WDS服务器上,你收到一个错误消息。你需要确保能够上传镜像文件,你该怎么做?()A、允许Authenticated Users组对/REMINST目录有完全控制权限。B、在WDS服务器命令提示符上运行命令wdsutil/ConvertC、在WDS服务器命令提示符上运行命令wdsutil/Export,输出*.swn文件到目标*.wimD、在WDS服务器命令提示符上为每一个组成文件独立运行命令wdsutil/add-image/imagefile.//server/share/sources/install.wim/image type.install
You have a server that runs Windows Server 2008. You need to prevent the server from establishing communication sessions to other computers by using TCP port 25. What should you do()A、 From Windows Firewall, add an exceptionB、 From windows Firewall enable the block all incoming connections optionC、 From the Windows Firewall with Advanced Security snap-in, create an inbound ruleD、 From the Windows Firewall with Advanced Security snap-in, create an outbound rule.
You have a server that runs windows server 2008. You need to prevent the server from establishing communication sessions to other computers by using TCP port 25. What should you do?()A、From windows firewall, add an exception.B、From windows firewall enable the block all incoming connections option.C、From the windows firewall with advanced security snap-in, create an inbound rule.D、From the windows firewall with advanced security snap-in, create an outbound rule.
您在运行 Windows Server 2008的服务器上安装了Web服务器(IIS)角色。公司人力资源部有一个网站,名为 www.contoso.com/hr。 需要在公司网站上为人力资源部创建一个虚拟目录。应该在Web服务器上运行什么命令?()A、appcmd add app /app.name:contoso /path:/hr /physicalPath:c:/websites/hrB、appcmd add site /name:hr /physicalPath:c:/websites/hrC、appcmd add vdir /app.name:contoso /path:/hr /physicalPath:c:/websites/hrD、appcmd set vdir /vdir.name:hr /path:/hr /physicalPath:c:/websites/hr
Your network contains an Active Directory domain named contoso.com. The domain contains an application server named Server1. Server1 runs Windows Server 2012 R2. You have a client application named App1 that communicates to Server1 by using dynamic TCP ports. On Server1, a technician runs the following command: New-NetFirewallRule -DisplayName AllowDynamic -Direction Outbound -LocalPort 1024- 65535 -Protocol TCP Users report that they can no longer connect to Server1 by using Appl. You need to ensure that App1 can connect to Server1. What should you run on Server1?()A、Set-NetFirewallRule -DisplayName AllowDynamic -Action AllowB、netsh advfirewall firewall set rule name=allowdynamic new action = allowC、Set-NetFirewallRule -DisplayName AllowDynamic -Direction InboundD、netsh advfirewall firewall add rule name=allowdynamic action=allow
你的网络中有一个主办公室和一个分支办公室。分支办公室有5台运行Windows 7的客户端计算机。所有客户端计算机都配置了使用BranchCache。在分支办公室,一台名为Computer1的计算机体验到性能问题。你需要临时避免所有计算机从Computer1上获取缓存内容,你应该在Computer1上做什么?()A、在命令提示符中,运行Netsh branchcache flushB、在命令提示符中,运行Netsh branchcache dumpC、在网络文件组策略设置修改BranchCache配置D、在客户计算机缓存组策略设置中修改使用磁盘空间百分比设置
Your network contains a server named Server1 that has Windows Server 2008 R2.An administrator runs the following command on Server1: netsh.exe advfirewall reset You discover that you can no longer access Server1 on port 3389.You need to ensure that you can access Server1 on port 3389.Which firewall rule should you enable?()A、File and Printer Sharing (Echo Request ICMPv4-In)B、File and Printer Sharing (SMB-In)C、Remote Desktop (TCP-In)D、Remote Service Management (RPC)
单选题的命令提示符运行以下命令,netsh advfirewall firewall add rule name="CustomRule" profile=domain protocol=TCP dir=in localport=80 action=allow,做了哪些配置?()A创建了一个入站规则,只应用在域配置文件中封锁80端口通信B创建了一个出站规则,只应用在域配置文件中封锁80端口通信C创建了一个入站规则,只应用在域配置文件中允许80端口通信D创建了一个出站规则,只应用在域配置文件中允许80端口通信
单选题You install Windows Server 2008 R2 (Server Core Installation) on a server. You need to be able to remotely manage storage on the server by using Disk Manager. What should you do?()AInstall the Microsoft Remote Server Administration Tools (RSAT).BUse the DISKPART utility to run the attributes volume clear readonly command for each volume.CRun the netsh advfirewall Firewall set rule group=Remote Administration new enable=yes command.DRun the netsh advfirewall Firewall set rule group=Remote Volume Management new enable=yes command.
单选题What is a virtual firewall?()Aanother name for a firewall deployed in routed modeBanother name for a firewall deployed in transparent modeCa separation of multiple firewall security contexts on a single firewallDa firewall that, when deployed in routed mode, can support up to 1000 VLANs per contextEa firewall that has multiple contexts, all of which share the same policies (such as NAT and ACLs)
单选题Your network contains an Active Directory domain named contoso.com. The domain contains an application server named Server1. Server1 runs Windows Server 2012 R2. You have a client application named App1 that communicates to Server1 by using dynamic TCP ports. On Server1, a technician runs the following command: New-NetFirewallRule -DisplayName AllowDynamic -Direction Outbound -LocalPort 1024- 65535 -Protocol TCP Users report that they can no longer connect to Server1 by using Appl. You need to ensure that App1 can connect to Server1. What should you run on Server1?()ASet-NetFirewallRule -DisplayName AllowDynamic -Action AllowBnetsh advfirewall firewall set rule name=allowdynamic new action = allowCSet-NetFirewallRule -DisplayName AllowDynamic -Direction InboundDnetsh advfirewall firewall add rule name=allowdynamic action=allow
单选题你在一个运行windows server 2008的服务器上安装windows部署服务(wds)角色。你上传一个通用镜像文件到WDS服务器上,你收到一个错误消息。你需要确保能够上传镜像文件,你该怎么做?()A允许Authenticated Users组对/REMINST目录有完全控制权限。B在WDS服务器命令提示符上运行命令wdsutil/ConvertC在WDS服务器命令提示符上运行命令wdsutil/Export,输出*.swn文件到目标*.wimD在WDS服务器命令提示符上为每一个组成文件独立运行命令wdsutil/add-image/imagefile.//server/share/sources/install.wim/image type.install
单选题You need to prevent a custom application from connecting to the Internet. What should you do?()AFrom Windows Firewall, add a program.BFrom Windows Defender, modify the Allowed items list.CFrom Windows Firewall with Advanced Security, create an inbound rule.DFrom Windows Firewall with Advanced Security, create an outbound rule.
单选题You have a server that runs Windows Server 2008. You need to prevent the server from establishing communication sessions to other computers by using TCP port 25. What should you do()A From Windows Firewall, add an exceptionB From windows Firewall enable the block all incoming connections optionC From the Windows Firewall with Advanced Security snap-in, create an inbound ruleD From the Windows Firewall with Advanced Security snap-in, create an outbound rule.
单选题您在运行Windows Server 2008的服务器上安装了Web服务器(IIS)角色。您创建了名为contoso.com的网站。您将名为WebContent的应用程序复制到该服务器。您需要启用网站上的WebContent应用程序。该怎么做?()A在服务器上的命令提示符下,运行 appcmd add site 命令。B在服务器上的命令提示符下,运行 appcmd add vdir 命令。C从“Internet 信息服务(IIS)管理”控制台中选择该网站。选择“添加应用程序”。D从“Internet 信息服务(IIS)管理”控制台中选择该网站。选择“添加虚拟目录”。
单选题你是公司网络管理员。网络是一个单活动目录域环境。所有的服务器运行Windows Server 2003。你需要为6台在网络中高度可见的服务器使用WSUS服务进行紧急升级。你批准通过所有的升级。你要确保升级操作在1小时内完成。你该如何操作?()A在WSUS服务器上,打开命令提示符运行gpupdate/force命令B在WSUS服务器上,打开命令提示符运行wuauclt/detectnow命令C在这6台服务器上,打开命令提示符运行gpupdate/force命令D在这6台服务器上,打开命令提示符运行wuauclt/detectnow命令