Home / Huawei / H12-724

Huawei H12-724 Practice Test - Questions Answers

Question list

List of questions

Question 1

(0)

If the user's FTP operation matches the FTP filtering policy, what actions can be performed? (multiple choice)

Question 2

(0)

Regarding firewall and IDS, which of the following statements is correct?

Question 3

(0)

Which of the following types of attacks are DDoS attacks? 2I

Question 4

(0)

Part of the reason why the APT attack becomes difficult to defend is that it uses the vulnerabilities to attack. This kind of zero-day hole usually requires flowers A lot of time to research and ana

Question 5

(0)

The following figure shows the configuration of the URL filtering configuration file. Regarding the configuration, which of the following statements is correct?

Question 6

(0)

The whitelist rule of the firewall anti-virus module is configured as ("*example*, which of the following matching methods is used in this configuration?

Question 7

(0)

UDP is a connectionless protocol. UDP Flood attacks that change sources and ports will cause performance degradation of network devices that rely on session forwarding. Even the session table is ex

Question 8

(0)

Regarding the processing flow of file filtering, which of the following statements is wrong?

Question 9

(0)

Huawei WAF products are mainly composed of front-end execution, back-end central systems and databases. Among them, the database mainly stores the front-end detection rules and black Whitelist and o

Question 10

(0)

Misuse detection is through the detection of similar intrusions in user behavior, or those that use system flaws to indirectly violate system security rules To detect intrusions in the system. Which

Related questions

Traditional network single--The strategy is difficult to cope with the current complex situations such as diversified users, diversified locations, diversified terminals, diversified applications, and insecure experience.

For the scenario where the authentication server adopts distributed deployment, which of the following descriptions are correct? (multiple choice)

Regarding the application scenarios of Agile Controller-Campus centralized deployment and distributed deployment, which of the following options are correct? (Multiple select)

Use BGP protocol to achieve diversion, the configuration command is as follows [sysname] route-policy 1 permit node 1 [sysname-route-policy] apply community no-advertise [sysname-route-policy] quit [sysname]bgp100 155955cc-666171a2-20fac832-0c042c04 29 [sysname-bgp] peer [sysname-bgp] import-route unr [sysname- bgpl ipv4-family unicast [sysname-bgp-af-ipv4] peer 7.7.1.2 route-policy 1 export [sysname-bgp-af-ipv4] peer 7.7. 1.2 advertise community [sysname-bgp-af-ipv4] quit [sysname-bgp]quit Which of the following options is correct for the description of BGP diversion configuration? (multiple choice)

Regarding the principle of MAC authentication, which of the following descriptions is wrong?

The relationship between user groups and accounts in user management is stored in a tree on the Agile Controller-Campus. An account belongs to only one user group. Consistent with the corporate organizational structure: If the OU (OnizbonUnit) structure stored in the AD/LDAP server is consistent with the corporate organizational structure, users are stored Under 0OU, when the Agile Controller-Campus synchronizes AD/LDAP server accounts, which synchronization method can be used?

If you are deploying BYOD When the system is installed, use a stand-alone installation SM, Dualmachine installation SC, Stand-alone hardware deployment AE,Which of the following descriptions are correct? (Multiple choice)

Deploying on Windows platform, using SQL Server database About the HA function of Agile Cotoller- Campus, which of the following descriptions Is it correct? (multiple choice)

There are two types of accounts on the Agile Controller-Campus: one is a local account and the other is an external account. Which of the following is not a local account?

About the software SACG And hardware SACG Description, which of the following is correct?

Question 1

If the user's FTP operation matches the FTP filtering policy, what actions can be performed? (multiple choice)

Block

Declare

Alarm

Execution

Show Answer Comment (0)

Question 2

Regarding firewall and IDS, which of the following statements is correct?

The firewall is a bypass device, used for fine-grained detection

IDS is a straight line equipment and cannot be used for in-depth inspection

The firewall cannot detect malicious operations or misoperations by insiders

IDS cannot be linked with firewall

Show Answer Comment (0)

Question 3

Which of the following types of attacks are DDoS attacks? 2I

Single packet attack

Floating child attack

Malformed message attack

Snooping scan attack

Show Answer Comment (0)

Part of the reason why the APT attack becomes difficult to defend is that it uses the vulnerabilities to attack. This kind of zero-day hole usually requires flowers A lot of time to research and analyze and produce corresponding defense methods.

True

False

Show Answer Comment (0)

Question 5

The following figure shows the configuration of the URL filtering configuration file. Regarding the configuration, which of the following statements is correct?

The firewall will first check the blacklist entries and then the whitelist entries.

Assuming that the user visits the www.exzample.com website, which belongs to the categories of humanities and social networks at the same time, the user cannot access the website.

The user visits the website www.exzample.com, and when the black and white list is not hit, the next step is to query the predefined URL category entry.

The default action means that all websites are allowed to visit. So the configuration is wrong here.

Show Answer Comment (0)

Question 6

The whitelist rule of the firewall anti-virus module is configured as ("*example*, which of the following matching methods is used in this configuration?

Prefix matching

Suffix matching155955cc-666171a2-20fac832-0c042c043

Keyword matching

Exact match

Show Answer Comment (0)

Question 7

UDP is a connectionless protocol. UDP Flood attacks that change sources and ports will cause performance degradation of network devices that rely on session forwarding.

Even the session table is exhausted, causing the network to be paralyzed. Which of the following options is not a preventive measure for UDP Flood attacks?

UDP fingerprint learning

Associated defense

current limit

First packet discarded

Show Answer Comment (0)

Question 8

Regarding the processing flow of file filtering, which of the following statements is wrong?

After the file decompression fails, the file will still be filtered. .

The application identification module can identify the type of application that carries the file.

Protocol decoding is responsible for analyzing the file data and file transmission direction in the data stream.

The file type recognition module is responsible for identifying the true type of the file and the file extension based on the file data

Show Answer Comment (0)

Question 9

Huawei WAF products are mainly composed of front-end execution, back-end central systems and databases. Among them, the database mainly stores the front-end detection rules and black Whitelist and other configuration files.

True

False

Show Answer Comment (0)

Question 10

Misuse detection is through the detection of similar intrusions in user behavior, or those that use system flaws to indirectly violate system security rules To detect intrusions in the system. Which of the following is not a feature of misuse detection 2

Easy to implement

Accurate detection

Effective detection of impersonation detection of legitimate users

Easy to upgrade

Show Answer Comment (0)

Total 367 questions

1 2 3 4 5

Go to page: of 37