【答题赢鸿鹄币】 Cisco TrustSec
QUESTION 18Which feature does Cisco TrustSec use to provide scalable, secure communication throughout a network?
A. security group tag ACL assigned to each port on a switch
B. security group tag number assigned to each user on a switch
C. security group tag number assigned to each port on a network
D. security group tag ACL assigned to each router on a network
正确答案B
思科原文:The ultimate goal of Cisco TrustSec technology is to assign a tag (known as a Security Group Tag, or SGT) to the
user’s or device’s traffic at ingress (inbound into the network), and then enforce the access policy based on the tag
elsewhere in the infrastructure (in the data center, for example). This SGT is used by switches, routers, and
firewalls to make forwarding decisions.
根据为每个user分配一个tag,即SGT,并且基于SGT做转发,这样做比基于目的地址转发灵活的多,也更好做安全管控。
页:
[1]