최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

문제1

Which of the following security threats is an application security threat?

A. Viruses and Trojans

B. Network intrusion

C. User identity is not verified

D. Man-in-the-middle attack

정답: A

문제2

A small company has only one public network address that is not fixed. The administrator accesses the Internet by using NAT. Which of the following NAT technologies is most suitable for the company's Internet access needs?

A. Bidirectional NAT

B. NAT No-PAT

C. Easy IP

D. Destination NAT

정답: C

문제3

Huawei NIP6000 can form an interface pair between two interfaces of the same type. Traffic entering from one interface is always forwarded through the other interface without querying the MAC address table.

A. True

B. False

정답: B

문제4

Which of the following descriptions of the main implementation methods of single sign-on is incorrect?

A. Firewall monitors AD authentication messages

B. Query syslog server mode

C. Query the AD server security log mode

D. Accept PC message mode

정답: B

문제5

When the company network administrator performs dual-machine hot backup, considering the possibility of inconsistent round-trip paths, and wants to enable the session fast backup function, the command that needs to be entered is ()

정답:

hrp mirror session enable

문제6

According to the number of users that can support simultaneous operations, operating systems can be divided into single-user operating systems and multi-user operating systems. Which of the following items do not belong to multi-user operating systems? (Multiple Choice)

A. Linux

B. UNIX

C. MSDOS

D. OS/2

정답: B,C,D

문제7

If the virtual group ID of VRRP is 2, which of the following is the MAC of the virtual router?

A. 00-00-5E-00-01-02

B. 00-00-5E-00-00-02

C. 00-10-5E-00-01-02

D. 00-01-5E-00-01-02

정답: A

문제8

A certain basic ACL rule is configured as follows, rule permit source 1.1.1.0 0.0.0.255. Which of the following descriptions is correct?

A. Packets with source address 1.1.1.255 and destination address 2.2.2.2 are allowed to pass.

B. Packets with source address 1.1.255.255 and destination address 2.2.2.2 are allowed to pass.

C. Packets with source address 1.1.1.1 and destination address 2.2.2.2 are discarded.

D. Packets with source address 1.1.1.10 and destination address 2.2.2.2 are discarded.

정답: A

문제9

When an employee of a company receives a suspicious email with an attachment, which of the following actions is correct?

A. First determine whether the sender and email information are reliable, and use anti-virus software to check the attachment.

B. Check the sender of the email. If it comes from a company mailbox, you can open and save the attachment.

C. Check the content of the email. If it is related to the work content, you can open and save the attachment.

D. Email attachments will not cause harm to information security and can be opened directly

정답: A

문제10

Regarding security policy configuration commands, which of the following is correct?

A. Forbid all host ICMP messages from the trust zone to access the untrust zone and whose source address is the 10.1.0.0/16 network segment.

B. Prohibit access from the trust zone to all host ICMP messages from the untrust zone with the source address 10.2.10.10.

C. It is forbidden to access the ICMP packets from the trust zone to the untrust zone and the destination address is the 10.1.10.10 host.

D. Prohibit access from the trust zone to all host ICMP messages in the untrust zone with the destination address 10.1.0.0/16 network segment

정답: A

문제11

The data link layer is located between the network layer and the physical layer and can provide services to IP, IPv6 and other protocols of the network layer. PDUs at the data link layer are called packets.

A. True

B. False

정답: B

문제12

Regarding the description of IP spoofing, which of the following is incorrect?

A. Hosts with trust relationships based on IP addresses can log in directly without entering password verification.

B. The attacker needs to disguise the source IP address as a trusted host and send a data segment with SYN annotation to request a connection.

C. After a successful IP spoofing attack, the attacker can use any forged IP address to imitate a legitimate host to access key information.

D. IP spoofing attacks are launched by taking advantage of the normal trust relationship between hosts based on IP addresses.

정답: B

문제13

Deploying HiSec Insight in the enterprise network can effectively discover potential threats and advanced threats in the network, and achieve network-wide security situation awareness within the enterprise.

A. True

B. False

정답: A

문제14

Which of the following stages has the development of information security gone through? (Multiple Choice)

A. Communication guarantee stage

B. Information assurance stage

C. Information security stage

D. Communication confidentiality stage

정답: B,C,D

문제15

What are the correct options for the following description of the basic concepts of LDAP? (Multiple Choice)

A. Directory information tree DIT: A collection of attributes constitutes a directory information tree.

B. Relative identification name RDN, the name of the entry, uniquely identifies the child entry of the same parent entry

C. Unique identification name DN, a name that uniquely identifies an entry in a directory information tree

D. Attribute: Attribute describes the characteristics of an object. An attribute consists of an attribute type and one or more attribute values.

정답: C,D

문제16

The degree of harm to national security, social order, public interests, and the legitimate rights and interests of citizens, legal persons, and other organizations after the information system is destroyed shall be determined by factors such as the degree of harm. The security level of information systems is divided into () levels.

정답:

5

문제17

When an access user uses Client-Initiated VPN to establish a tunnel with the LNS, how many PPP connections can one tunnel carry?

A. 4

B. 1

C. 3

D. 2

정답: B

최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

우리와 연락하기

유용한 링크

최신 업데이트