[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNySAMO9ZHk12UteVGioBRKCDwF3h0SpP9Iv8YyEGOa0":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":19,"related":20,"source":31,"type":32},[],"2024-10-12 11:18:27",161375160,[8,9,10,11],"不支持除TCP\u002FIP外的其它协议","支持动态的IP地址分配","适应于向IPv6迁移","提供在网络层上的数据加密保护",{"count":13,"courseId":14,"courseImg":15,"courseName":16,"workId":17,"workName":18},21,"5746d5bb90220023696d682aca271287","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F9c1e48361b00f3ee2086f4e259ed792b.jpg","Linux操作系统（2024-2025年第一学期）","work_36250040","项目9 VPN配置与管理","IPSec协议是开放的VPN协议.对它的描述有误的是:()",[21,33,42,51,60,68,77,86,95,104],{"answer":22,"createTime":23,"id":24,"options":25,"question":30,"source":31,"type":32},[],"2024-10-12 11:18:26",161375147,[26,27,28,29],"没有风险,但是按照配置规范还是要把acl中permit ip去掉","有风险,ipsec隧道会一直建立","没有风险","有风险,防火墙可能会遭受到来自internet的攻击","某工程师现网进行IPSEC测试时,为了调测方便在连接internet接口的untrust域和local域inbound方向包过滤acl中配置了rule permit ip.测试完成后该工程师没有删除该配置,请问这样做是否有风险,风险是什么?()","v1",0,{"answer":34,"createTime":23,"id":35,"options":36,"question":41,"source":31,"type":32},[],161375149,[37,38,39,40],"日志记录","访问控制","身份认证","隧道技术","VPN 它有两层含义:首先是&quot;虚拟的&quot;, 即用户实际上并不存在一个独立专用的网络, 既不需要建设或租用专线, 也不需要装备专用的设备, 而是将其建立在分布广泛的公共网络上, 就能组成一个属于自己专用的网络. 其次是&quot;专用的&quot;, 相对于&quot;公用的&quot;来说, 它强调私有性和安全可靠性. 不属于 VPN 的核心技术是()",{"answer":43,"createTime":23,"id":44,"options":45,"question":50,"source":31,"type":32},[],161375150,[46,47,48,49],"密钥","数字签名","用户身份","数字证书","PKI 所管理的基本元素是 ()",{"answer":52,"createTime":23,"id":53,"options":54,"question":59,"source":31,"type":32},[],161375151,[55,56,57,58],"应用层","网络层","物理层","传输层","IPSec属于()的安全解决方案",{"answer":61,"createTime":23,"id":62,"options":63,"question":67,"source":31,"type":32},[],161375152,[64,65,66,38],"机密性","数据源认证","数据包重放","IPSec 协议中的AH 协议不能提供下列哪一项服务? ()",{"answer":69,"createTime":23,"id":70,"options":71,"question":76,"source":31,"type":32},[],161375153,[72,73,74,75],"ESP","IKE","AH","DSS","组成IPSEC的主要安全协议不包括以下哪一项:()",{"answer":78,"createTime":23,"id":79,"options":80,"question":85,"source":31,"type":32},[],161375155,[81,82,83,84],"外部网VPN能保证包括TCP和UDP服务的安全","VPN服务器放在Internet上位于防火墙之外","其目的在于保证数据传输中不被修改","VPN可以建在应用层或网络层上","下面关于外部网VPN的描述错误的有: ()",{"answer":87,"createTime":23,"id":88,"options":89,"question":94,"source":31,"type":32},[],161375156,[90,91,92,93],"TCP 50","UDP 50","TCP 500","UDP 500","在IPSec中,使用IKE建立通道时,使用的端口号是()",{"answer":96,"createTime":23,"id":97,"options":98,"question":103,"source":31,"type":32},[],161375158,[99,100,101,102],"隧道协议、身份认证和数据加密","隧道协议、数据加密","身份认证、数据加密","隧道协议、身份认证","目前,VPN使用了()技术保证了通信的安全性",{"answer":105,"createTime":5,"id":6,"options":106,"question":19,"source":31,"type":32},[],[8,9,10,11]]