[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fj99uD77Gg-S-hyIXTgGk2FrQdUYYwvyFFAc00g4dY_U":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":19,"related":20,"source":30,"type":31},[],"2024-10-12 11:18:26",161375150,[8,9,10,11],"密钥","数字签名","用户身份","数字证书",{"count":13,"courseId":14,"courseImg":15,"courseName":16,"workId":17,"workName":18},21,"5746d5bb90220023696d682aca271287","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F9c1e48361b00f3ee2086f4e259ed792b.jpg","Linux操作系统（2024-2025年第一学期）","work_36250040","项目9 VPN配置与管理","PKI 所管理的基本元素是 ()",[21,32,41,44,53,61,70,79,88,97],{"answer":22,"createTime":5,"id":23,"options":24,"question":29,"source":30,"type":31},[],161375147,[25,26,27,28],"没有风险,但是按照配置规范还是要把acl中permit ip去掉","有风险,ipsec隧道会一直建立","没有风险","有风险,防火墙可能会遭受到来自internet的攻击","某工程师现网进行IPSEC测试时,为了调测方便在连接internet接口的untrust域和local域inbound方向包过滤acl中配置了rule permit ip.测试完成后该工程师没有删除该配置,请问这样做是否有风险,风险是什么?()","v1",0,{"answer":33,"createTime":5,"id":34,"options":35,"question":40,"source":30,"type":31},[],161375149,[36,37,38,39],"日志记录","访问控制","身份认证","隧道技术","VPN 它有两层含义:首先是&quot;虚拟的&quot;, 即用户实际上并不存在一个独立专用的网络, 既不需要建设或租用专线, 也不需要装备专用的设备, 而是将其建立在分布广泛的公共网络上, 就能组成一个属于自己专用的网络. 其次是&quot;专用的&quot;, 相对于&quot;公用的&quot;来说, 它强调私有性和安全可靠性. 不属于 VPN 的核心技术是()",{"answer":42,"createTime":5,"id":6,"options":43,"question":19,"source":30,"type":31},[],[8,9,10,11],{"answer":45,"createTime":5,"id":46,"options":47,"question":52,"source":30,"type":31},[],161375151,[48,49,50,51],"应用层","网络层","物理层","传输层","IPSec属于()的安全解决方案",{"answer":54,"createTime":5,"id":55,"options":56,"question":60,"source":30,"type":31},[],161375152,[57,58,59,37],"机密性","数据源认证","数据包重放","IPSec 协议中的AH 协议不能提供下列哪一项服务? ()",{"answer":62,"createTime":5,"id":63,"options":64,"question":69,"source":30,"type":31},[],161375153,[65,66,67,68],"ESP","IKE","AH","DSS","组成IPSEC的主要安全协议不包括以下哪一项:()",{"answer":71,"createTime":5,"id":72,"options":73,"question":78,"source":30,"type":31},[],161375155,[74,75,76,77],"外部网VPN能保证包括TCP和UDP服务的安全","VPN服务器放在Internet上位于防火墙之外","其目的在于保证数据传输中不被修改","VPN可以建在应用层或网络层上","下面关于外部网VPN的描述错误的有: ()",{"answer":80,"createTime":5,"id":81,"options":82,"question":87,"source":30,"type":31},[],161375156,[83,84,85,86],"TCP 50","UDP 50","TCP 500","UDP 500","在IPSec中,使用IKE建立通道时,使用的端口号是()",{"answer":89,"createTime":5,"id":90,"options":91,"question":96,"source":30,"type":31},[],161375158,[92,93,94,95],"隧道协议、身份认证和数据加密","隧道协议、数据加密","身份认证、数据加密","隧道协议、身份认证","目前,VPN使用了()技术保证了通信的安全性",{"answer":98,"createTime":99,"id":100,"options":101,"question":106,"source":30,"type":31},[],"2024-10-12 11:18:27",161375160,[102,103,104,105],"不支持除TCP\u002FIP外的其它协议","支持动态的IP地址分配","适应于向IPv6迁移","提供在网络层上的数据加密保护","IPSec协议是开放的VPN协议.对它的描述有误的是:()"]