ExamGecko
Search Search Login
Home Home / Huawei / H12-711

Huawei H12-711 Practice Test - Questions Answers, Page 20

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following VPNs cannot be used in a Site to-Site scenario? ( )[Multiple choice]*
Which of the following options is correct for the description of the rating of the level protection system in the 2.0 class protection system?
The digital certificate fairs the public key through a third-party organization, thereby ensuring the non-repudiation of data transmission. Therefore, to confirm the correctness of the public key, only the certificate of the communicating party is required.
Which of the following options is correct regarding the description of firewall hot standby? (multiple choice)
Which of the following options are correct regarding the description of Windows log event types? (multiple choice)
Company network administrator allocation. After the dual-system hot backup is set, run the command to check VRRP and other information, and get the following information HRP_M<FWA> Gigabi tEtherneto/0/3 Virtual Router 1 State: Master Virtual IP: 10.3.0.3 Master IP: 10.3.0.1 PriorityRun: 120 PriorityConfig:100 MasterPriority: 120 Preempt: YESDelay Time: 0 s TimerRun: 60s TimerConfig: 60s Auth type: NONE Virtual MAC: 0000-5e00-0101 Check TIL: YES Config type:vgmp Vrrp Backup-torward: disabled Create time:2020-03-17 17:35:54 UTC+08:02 Last change time: 2020-03-22 16:01:56 UTC+08:02 Ask him to type the view command in the blank space is ____ [fill in the blank]*
The information security level protection is to improve the overall security level of the country, and at the same time reasonably optimize the allocation of security resources, so that it can send back the greatest security and economic benefits.
Which of the following options are key elements of information security precautions? (multiple choice)
IPSec VPNAn asymmetric encryption algorithm is used to encrypt the transmitted data
Evidence identification needs to address the verification of the integrity of the evidence and determine whether it meets the applicable standards. Which of the following statements is correct about the criteria for identification of evidence?

Question 191

Report
Export
Collapse

existUSGIn the system firewall, you can useóóóóThe function provides well-known application services for non-well-known ports.

A.
Port Mapping
A.
Port Mapping
Answers
B.
MACandIPaddress binding
B.
MACandIPaddress binding
Answers
C.
packet filtering
C.
packet filtering
Answers
D.
Long connection
D.
Long connection
Answers
Suggested answer: A

Question 192

Report
Export
Collapse

Which of the following is true about the command to view the number of times security policy matches?

A.
display firewall session table
A.
display firewall session table
Answers
B.
display security-policy all
B.
display security-policy all
Answers
C.
display security-policy count
C.
display security-policy count
Answers
D.
count security-policy hit
D.
count security-policy hit
Answers
Suggested answer: B

Question 193

Report
Export
Collapse

Which of the following options belongs to Tier 2VPNTechnology?

A.
SSL VPN
A.
SSL VPN
Answers
B.
L2TP VPN
B.
L2TP VPN
Answers
C.
GRE VPN
C.
GRE VPN
Answers
D.
IPSec VPN
D.
IPSec VPN
Answers
Suggested answer: B

Question 194

Report
Export
Collapse

aboutwindowsDescription of the firewall advanced settings, which of the following options is wrong?

(multiple choice)

A.
When setting the stacking rules, only the local port can be restricted, and the remote port cannot be restricted
A.
When setting the stacking rules, only the local port can be restricted, and the remote port cannot be restricted
Answers
B.
When setting the stacking rules, you can restrict both the local port and the remote port.
B.
When setting the stacking rules, you can restrict both the local port and the remote port.
Answers
C.
When setting the stacking rule, only the local port can be restricted, and the remote port cannot be restricted
C.
When setting the stacking rule, only the local port can be restricted, and the remote port cannot be restricted
Answers
D.
When setting the stacking rules, you can restrict both the local port and the remote port.
D.
When setting the stacking rules, you can restrict both the local port and the remote port.
Answers
Suggested answer: B, D

Question 195

Report
Export
Collapse

aboutVGMPIn a description of group management, which of the following is false?

A.
VRRPbackup group master/All standby status changes need to be notified to theVGMPmanagement group
A.
VRRPbackup group master/All standby status changes need to be notified to theVGMPmanagement group
Answers
B.
The interface types and numbers of the heartbeat ports of the two firewalls can be different, as long as the Layer 2 interoperability can be guaranteed.
B.
The interface types and numbers of the heartbeat ports of the two firewalls can be different, as long as the Layer 2 interoperability can be guaranteed.
Answers
C.
Active and standby firewallsVGMPtimed starthellomessage
C.
Active and standby firewallsVGMPtimed starthellomessage
Answers
D.
The active and standby devices learn about the status of each other through the exchange of heartbeat messages, and back up related commands and status information.
D.
The active and standby devices learn about the status of each other through the exchange of heartbeat messages, and back up related commands and status information.
Answers
Suggested answer: B

Question 196

Report
Export
Collapse

In the security assessment method, the purpose of security scanning is to scan the target system with scanning analysis and assessment tools in order to find relevant vulnerabilities and prepare for attacks.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: B

Question 197

Report
Export
Collapse

Which of the following attacks is not a malformed packet attack?

A.
Teardropattack
A.
Teardropattack
Answers
B.
Smurfattack
B.
Smurfattack
Answers
C.
TCPFragmentation attack
C.
TCPFragmentation attack
Answers
D.
ICMPUnreachable Packet Attack
D.
ICMPUnreachable Packet Attack
Answers
Suggested answer: D

Question 198

Report
Export
Collapse

aboutIKE SA, which of the following descriptions is false?

A.
IKE SAis bidirectional
A.
IKE SAis bidirectional
Answers
B.
IKEis based onUDPapplication layer protocol
B.
IKEis based onUDPapplication layer protocol
Answers
C.
IKE SAit's forIPSec SAServices
C.
IKE SAit's forIPSec SAServices
Answers
D.
The encryption algorithm used by user data packets isIKE SADecide
D.
The encryption algorithm used by user data packets isIKE SADecide
Answers
Suggested answer: D

Question 199

Report
Export
Collapse

In the construction of information security system, it is necessary to accurately describe the relationship between important aspects of security and system behavior through security models.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: B

Question 200

Report
Export
Collapse

Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc.

"and"That is to say, this policy is hit only if the information in the packet matches all fields.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: B
Total 497 questions
Go to page: of 50
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms