[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fy90CXEgRcfdHSFDp6tzsTB4dvZzabWmxMIw13VNRNTA":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":16,"related":17,"source":21,"type":22},[],"2026-05-16 01:48:24",372088110,[8,9,10,11],"本地保存日志","本地保存日志并把日志保存到日志服务器上","保持时钟的同步","在日志服务器保存日志",{"courseId":13,"courseImg":14,"courseName":15},"a8b1b52ac0b5962e929544819feaa02b","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F639715073ae3e4ce774a8ac9fd934573.jpg","网络信息安全管理","防火墙的日志管理应遵循如下原则:( )",[18,23,32,41,50,59,68,77,86,91],{"answer":19,"createTime":5,"id":6,"options":20,"question":16,"source":21,"type":22},[],[8,9,10,11],"v1",1,{"answer":24,"createTime":5,"id":25,"options":26,"question":31,"source":21,"type":22},[],372088111,[27,28,29,30],"Rlogin","NNTP","Finger","NFS","防火墙配置时应确保( )服务不开放",{"answer":33,"createTime":5,"id":34,"options":35,"question":40,"source":21,"type":22},[],372088112,[36,37,38,39],"协议隧道攻击","利用FTP-pasv绕过防火墙认证的攻击","ip欺骗攻击","反弹木马攻击","下面可以攻击状态检测的防火墙方法有:( )",{"answer":42,"createTime":5,"id":43,"options":44,"question":49,"source":21,"type":22},[],372088113,[45,46,47,48],"内网可以访问外网","内网可以访问DMZ区","DMZ区可以访问内网","外网可以访问DMZ区","在防火墙的&quot;访问控制&quot;应用中,内网、外网、DMZ三者的访问关系为:( )",{"answer":51,"createTime":5,"id":52,"options":53,"question":58,"source":21,"type":22},[],372088114,[54,55,56,57],"准许","限制","日志记录","问候访问者","下列哪些是防火墙的重要行为?( )",{"answer":60,"createTime":5,"id":61,"options":62,"question":67,"source":21,"type":22},[],372088115,[63,64,65,66],"防止内部信息外泄","防止系统感染病毒与非法访问","防止黑客访问","建立内部信息和功能与外部信息和功能之间的屏障","网络防火墙能够起到的作用有()",{"answer":69,"createTime":5,"id":70,"options":71,"question":76,"source":21,"type":22},[],372088116,[72,73,74,75],"路由器本身具有安全漏洞","分组过滤规则的设置和配置存在安全隐患","无法防范&quot;假冒&quot;的地址","对访问行为实施静态、固定的控制与路由器的动态、灵活的路由矛盾","使用基于路由器的防火墙使用访问控制表实现过滤,它的缺点有",{"answer":78,"createTime":5,"id":79,"options":80,"question":85,"source":21,"type":22},[],372088118,[81,82,83,84],"减少NAT数量","用更高性能型号的防火墙来替换","实施防火墙负载均衡","修改配置,减少防火墙处理负载;除去任何非必要的执行行为","如果防火墙是正常负载且没有明显攻击,而CPU的的利用率一直处于80%以上,需考虑升级防火墙或减轻它的流量负载,可以考虑的措施有( )",{"answer":87,"createTime":5,"id":88,"options":89,"question":90,"source":21,"type":22},[],372088120,[45,46,47,48],"在防火墙的&quot;访问控制&quot;应用中,内网、外网、DMZ三者的访问关系为",{"answer":92,"createTime":5,"id":93,"options":94,"question":99,"source":21,"type":22},[],372088122,[95,96,97,98],"需要配置两个防火墙管理员","物理访问防火墙必须严密地控制","系统软件、配置数据文件在更改后必须进行备份","通过厂商指导发布的硬件和软件的bug和防火墙软件升级版","以下哪些是防火墙规范管理需要的?( )"]