ExamGecko
Search Search Login
Home Home / Huawei / H12-711

Huawei H12-711 Practice Test - Questions Answers, Page 6

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following options is correct for the description of the rating of the level protection system in the 2.0 class protection system?
Which of the following VPNs cannot be used in a Site to-Site scenario? ( )[Multiple choice]*
The digital certificate fairs the public key through a third-party organization, thereby ensuring the non-repudiation of data transmission. Therefore, to confirm the correctness of the public key, only the certificate of the communicating party is required.
Which of the following options are correct regarding the description of Windows log event types? (multiple choice)
Company network administrator allocation. After the dual-system hot backup is set, run the command to check VRRP and other information, and get the following information HRP_M<FWA> Gigabi tEtherneto/0/3 Virtual Router 1 State: Master Virtual IP: 10.3.0.3 Master IP: 10.3.0.1 PriorityRun: 120 PriorityConfig:100 MasterPriority: 120 Preempt: YESDelay Time: 0 s TimerRun: 60s TimerConfig: 60s Auth type: NONE Virtual MAC: 0000-5e00-0101 Check TIL: YES Config type:vgmp Vrrp Backup-torward: disabled Create time:2020-03-17 17:35:54 UTC+08:02 Last change time: 2020-03-22 16:01:56 UTC+08:02 Ask him to type the view command in the blank space is ____ [fill in the blank]*
The information security level protection is to improve the overall security level of the country, and at the same time reasonably optimize the allocation of security resources, so that it can send back the greatest security and economic benefits.
Which of the following options is correct regarding the description of firewall hot standby? (multiple choice)
Evidence identification needs to address the verification of the integrity of the evidence and determine whether it meets the applicable standards. Which of the following statements is correct about the criteria for identification of evidence?
When the company network administrator configures dual-system hot backup, (fill in the blank) configure the status of VRRP backup group l as Active, and configure the virtual IP address as 10.1.1.1/24 <sysname>system-view [sysname] interface GigabitEthernet 0/0/1 [sysname-GigabitEthernet0/0/l] ( ), the command to be typed in the blank is (please fill in the complete command in all lowercase)
To configure a NAT policy in command line mode, you need to use the ( ) command in the system view to enter the NAT policy configuration view. (fill in the blank)

Question 51

Report
Export
Collapse

Which of the following options are correct regarding configuring firewall security zones? (multiple choice)

A.
The firewall has four security zones by default, and the priority of the four security zones cannot be modified
A.
The firewall has four security zones by default, and the priority of the four security zones cannot be modified
Answers
B.
A firewall can have up to12safe area
B.
A firewall can have up to12safe area
Answers
C.
Firewall can create two security zones of the same priority
C.
Firewall can create two security zones of the same priority
Answers
D.
When data flows between different security zones, the security check of the device will be triggered and the corresponding security policy will be implemented
D.
When data flows between different security zones, the security check of the device will be triggered and the corresponding security policy will be implemented
Answers
Suggested answer: A, D

Question 52

Report
Export
Collapse

certificates, self-signed certificates, etc.

A.
True
A.
True
Answers
B.
False
B.
False
Answers
Suggested answer: A

Question 53

Report
Export
Collapse

Which of the following attacks is not a cyber attack?

A.
IP spoofing attack
A.
IP spoofing attack
Answers
B.
SmurfI attack
B.
SmurfI attack
Answers
C.
MAC address spoofing attack
C.
MAC address spoofing attack
Answers
D.
ICMP attack
D.
ICMP attack
Answers
Suggested answer: C

Question 54

Report
Export
Collapse

About the rootCACertificate, which of the following descriptions is incorrect?

A.
Issuer isCA
A.
Issuer isCA
Answers
B.
The certificate subject name isCA
B.
The certificate subject name isCA
Answers
C.
public key information isCA's public key
C.
public key information isCA's public key
Answers
D.
signature isCAgenerated by public key encryption
D.
signature isCAgenerated by public key encryption
Answers
Suggested answer: D

Question 55

Report
Export
Collapse

Which of the following configurations can achieveNAT ALGFeatures?

A.
nat alg protocol
A.
nat alg protocol
Answers
B.
alg protocol
B.
alg protocol
Answers
C.
nat protocol
C.
nat protocol
Answers
D.
detect protocol
D.
detect protocol
Answers
Suggested answer: D

Question 56

Report
Export
Collapse

About firewall gateways forHTTPWhich of the following statements is false about the protocol'santivirus response?

A.
When the gateway device blocksHTTPAfter connecting, push to the clientwebpage and generatelog
A.
When the gateway device blocksHTTPAfter connecting, push to the clientwebpage and generatelog
Answers
B.
Response methods include announcement and blocking
B.
Response methods include announcement and blocking
Answers
C.
In alarm mode, the device only generates logs, which is not correct.HTTPThe files transmitted bythe protocol are processed and sent out
C.
In alarm mode, the device only generates logs, which is not correct.HTTPThe files transmitted bythe protocol are processed and sent out
Answers
D.
Blocking means that the device is disconnected from theHTTPserver connection and block filetransfer
D.
Blocking means that the device is disconnected from theHTTPserver connection and block filetransfer
Answers
Suggested answer: B

Question 57

Report
Export
Collapse

Which of the following does not belong toUSGUser authentication method in firewall?

A.
Certification-free
A.
Certification-free
Answers
B.
Password authentication
B.
Password authentication
Answers
C.
sign in
C.
sign in
Answers
D.
Fingerprint authentication
D.
Fingerprint authentication
Answers
Suggested answer: D

Question 58

Report
Export
Collapse

firewallGE1/0/1andGE1/0/2mouth belongs toDMZarea, if you want to implementGE1/0/1The connected area is accessibleGE1/0/2Connected area, which of the following is correct?

A.
needs to be configuredLocalarriveDMZsecurity policy
A.
needs to be configuredLocalarriveDMZsecurity policy
Answers
B.
No configuration required
B.
No configuration required
Answers
C.
Interzone security policy needs to be configured
C.
Interzone security policy needs to be configured
Answers
D.
needs to be configuredDMZarrivelocalsecurity policy
D.
needs to be configuredDMZarrivelocalsecurity policy
Answers
Suggested answer: B

Question 59

Report
Export
Collapse

For the process of forwarding session header packets between firewall domains, there are the following steps:

1, look up the routing table

2, find the inter-domain packet filtering rules

3, lookup session table

4, find the blacklist

Which of the following is in the correct order?

A.
1->3->2->4
A.
1->3->2->4
Answers
B.
3->2->1->4
B.
3->2->1->4
Answers
C.
3->4->1->2
C.
3->4->1->2
Answers
D.
4->3->1->2
D.
4->3->1->2
Answers
Suggested answer: C

Question 60

Report
Export
Collapse

The administrator wants to be clear about the current session table. Which of the following commands is correct?

A.
clear firewall session table
A.
clear firewall session table
Answers
B.
reset firewall session table
B.
reset firewall session table
Answers
C.
display firewall session table
C.
display firewall session table
Answers
D.
display session table
D.
display session table
Answers
Suggested answer: B
Total 497 questions
Go to page: of 50
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms