ExamGecko
Search Search Login
Home Home / Huawei / H12-711

Huawei H12-711 Practice Test - Questions Answers, Page 19

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following VPNs cannot be used in a Site to-Site scenario? ( )[Multiple choice]*
Which of the following options is correct for the description of the rating of the level protection system in the 2.0 class protection system?
The digital certificate fairs the public key through a third-party organization, thereby ensuring the non-repudiation of data transmission. Therefore, to confirm the correctness of the public key, only the certificate of the communicating party is required.
Which of the following options is correct regarding the description of firewall hot standby? (multiple choice)
Which of the following options are correct regarding the description of Windows log event types? (multiple choice)
Company network administrator allocation. After the dual-system hot backup is set, run the command to check VRRP and other information, and get the following information HRP_M<FWA> Gigabi tEtherneto/0/3 Virtual Router 1 State: Master Virtual IP: 10.3.0.3 Master IP: 10.3.0.1 PriorityRun: 120 PriorityConfig:100 MasterPriority: 120 Preempt: YESDelay Time: 0 s TimerRun: 60s TimerConfig: 60s Auth type: NONE Virtual MAC: 0000-5e00-0101 Check TIL: YES Config type:vgmp Vrrp Backup-torward: disabled Create time:2020-03-17 17:35:54 UTC+08:02 Last change time: 2020-03-22 16:01:56 UTC+08:02 Ask him to type the view command in the blank space is ____ [fill in the blank]*
The information security level protection is to improve the overall security level of the country, and at the same time reasonably optimize the allocation of security resources, so that it can send back the greatest security and economic benefits.
IPSec VPNAn asymmetric encryption algorithm is used to encrypt the transmitted data
Evidence identification needs to address the verification of the integrity of the evidence and determine whether it meets the applicable standards. Which of the following statements is correct about the criteria for identification of evidence?
When the company network administrator configures dual-system hot backup, (fill in the blank) configure the status of VRRP backup group l as Active, and configure the virtual IP address as 10.1.1.1/24 <sysname>system-view [sysname] interface GigabitEthernet 0/0/1 [sysname-GigabitEthernet0/0/l] ( ), the command to be typed in the blank is (please fill in the complete command in all lowercase)

Question 181

Report
Export
Collapse

The steps of the security assessment method do not include which of the following?

A.
Manual audit
A.
Manual audit
Answers
B.
Penetration testing
B.
Penetration testing
Answers
C.
Questionnaire
C.
Questionnaire
Answers
D.
data analysis
D.
data analysis
Answers
Suggested answer: D

Question 182

Report
Export
Collapse

waiting for insurance2.0Which one of the stipulations"Spam should be detected and protected at key network nodes, and spam protection mechanisms should be upgraded and updated?

A.
Malicious code prevention
A.
Malicious code prevention
Answers
B.
communication transmission
B.
communication transmission
Answers
C.
Centralized control
C.
Centralized control
Answers
D.
Border Protection
D.
Border Protection
Answers
Suggested answer: A

Question 183

Report
Export
Collapse

Which of the following options is not part of the quintuple range?

A.
sourceIP
A.
sourceIP
Answers
B.
sourceMAC
B.
sourceMAC
Answers
C.
PurposeIP
C.
PurposeIP
Answers
D.
destination port
D.
destination port
Answers
Suggested answer: B

Question 184

Report
Export
Collapse

In a stateful inspection firewall, when the stateful inspection mechanism is enabled, the second packet of the three-way handshake (SYN+ACK) when reaching the firewall, which of the following descriptions is correct if there is no corresponding session table on the firewall?

A.
The firewall does not create a session table, but allows packets to pass through
A.
The firewall does not create a session table, but allows packets to pass through
Answers
B.
If the firewall security policy allows packets to pass, create a session table
B.
If the firewall security policy allows packets to pass, create a session table
Answers
C.
Packets must not pass through the firewall
C.
Packets must not pass through the firewall
Answers
D.
Packets must pass through the firewall and establish a session
D.
Packets must pass through the firewall and establish a session
Answers
Suggested answer: C

Question 185

Report
Export
Collapse

existVRRP(Virtual Router Redundancy Protocol) group, the primary firewall regularly sends notification messages to the backup firewall, and the backup firewall is only responsible for monitoring notification messages and will not respond

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: A

Question 186

Report
Export
Collapse

HuaweiUSGfirewallVRRPThe advertisement packets are multicast packets, so each firewall in the backup group must be able to communicate directly at Layer 2.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: A

Question 187

Report
Export
Collapse

Because the server is a kind of computer, we can use our personal computer as a server in the enterprise.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: B

Question 188

Report
Export
Collapse

As shown in the figure, aNAT serverapplication scenarios, when usingwebWhen this configuration is performed in the configuration mode. Which of the following statements are correct? (multiple choice)

A.
When configuring the interzone security policy, you need to set the source security zone toUntrust, the target security area isDMZ
A.
When configuring the interzone security policy, you need to set the source security zone toUntrust, the target security area isDMZ
Answers
B.
configureNATServer, the internal address is10.1.1.2, the external address is200.10.10.1
B.
configureNATServer, the internal address is10.1.1.2, the external address is200.10.10.1
Answers
C.
When configuring the interzone security policy, set the source security zone toDMZ, the target security area isUntrust
C.
When configuring the interzone security policy, set the source security zone toDMZ, the target security area isUntrust
Answers
D.
configureNATServer, the internal address is200.10.10.1, the external address is10.1.1.2
D.
configureNATServer, the internal address is200.10.10.1, the external address is10.1.1.2
Answers
Suggested answer: A, B

Question 189

Report
Export
Collapse

existL2TPconfiguration, for the commandTunnel Name, which of the following statements is true?

(multiple choice)

A.
Used to specify the tunnel name of the local end
A.
Used to specify the tunnel name of the local end
Answers
B.
Used to specify the tunnel name of the peer
B.
Used to specify the tunnel name of the peer
Answers
C.
both endsTunnel Nnamemust be consistent
C.
both endsTunnel Nnamemust be consistent
Answers
D.
If not configuredTunnel Name, the tunnel name is the local system name
D.
If not configuredTunnel Name, the tunnel name is the local system name
Answers
Suggested answer: A, D

Question 190

Report
Export
Collapse

DDosWhich of the following attack types is an attack?

A.
snooping scan attack
A.
snooping scan attack
Answers
B.
Malformed Packet Attack
B.
Malformed Packet Attack
Answers
C.
special packet attack
C.
special packet attack
Answers
D.
traffic attack
D.
traffic attack
Answers
Suggested answer: D
Total 497 questions
Go to page: of 50
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms