최신 H12-724 무료덤프 - Huawei HCIP-Security (Fast track) V1.0

문제1

The core technology of content security lies in anomaly detection, and the concept of defense lies in continuous monitoring and analysis.

A. True

B. False

정답: A

문제2

Agile Controller-Campus All components are supported Windows System and Linux system.

A. True

B. False

정답: A

문제3

Web Standards that come with the client and operating system 8021 The instrument client only has the function of identity authentication: It does not support the execution of inspection strategies and monitoring strategies. Any Office The client supports all inspection strategies and monitoring strategies.

A. True

B. False

정답: A

문제4

Regarding the description of the security zone in the Agile Controller-Campus, which of the following options are correct? (multiple choice)

A. The service domain is the area that provides security services for the corporate intranet. This area is generally composed of systems that provide security services such as antivirus servers, patch management servers, and terminal security servers.

B. The business domain is a platform for the heavy load of business flows. According to the needs of the enterprise, security technology is used to logically divide the business to realize the security of the network.

C. The network domain is the most concerned security protection area of various enterprises, and it carries the important and core information assets of the enterprise.

D. The user domain is generally composed of various terminal users. The terminals in this area have the characteristics of large numbers, wide distribution, and strong mobility.

정답: A,D

문제5

An enterprise adopts hardware SACG access method for admission control. The configuration commands are as follows, among which Key; Admin@123
[USG] right-manager server-group
[USG-rightm] localip 10.1.10.2
[USG-rightm]serverip 10. 1.31.78 shared-key AdnIn@123
[USG2100-rightm] right-manager server-group enable.
Assuming that the other configurations are correct, based on the above configuration only, which of the following options is correct?

A. Can issue pre-authentication domain ACL.

B. After completing the configuration, SACG cannot successfully link with Agile Contrlle-Campus. P

C. After completing the configuration, SACG can successfully link with the Agile Controller-Campus.

D. The linkage cannot be successful but the terminal can access the pre-authentication domain server.

정답: B

문제6

Which of the following options belong to the network layer attack of the TCP/IP protocol stack? (multiple choice)

A. Address scanning

B. Buffer overflow p

C. Port scan

D. IP spoofing

정답: A,D

문제7

Portal The second-level authentication method of authentication refers to the direct connection between the client and the access device(Or only layer devices exist in between),The device can learn the user's MAC Address and can be used IP with MAC Address to identify the user.

A. True

B. False

정답: A

문제8

When using the misuse check technology, if the normal user behavior is successfully matched with the intrusion feature knowledge base, it will be falsely reported.

A. True

B. False

정답: A

문제9

Regarding the description of the ACL used in the linkage between SACG equipment and the TSM system, which of the following statements is correct!?

A. default ACL The rule group number can only be 3999.

B. due to SACG Need to use ACL3099-3999 To pick TSM The rules issued by the system, so in the configuration TSM Before linkage, you need to ensure these ACL Not referenced by other functions.

C. The original group number is 3099-3999 of ACL Even if it is occupied, it can be successfully activated TSM Linkage.

D. default ACL The rule group number can be arbitrarily specified.

정답: B

문제10

SQI Server2005 may not be properly installed, which of the following may be the possible reasons?

A. The operating system is Microsoft Windows Server 2003

B. without prior installation of Microsoft SQL Server 2005 Toolkit

C. 1433 port are occupied by the other processes

D. equipment 21 port is occupied

정답: C

문제11

For Huawei USG600 products, which of the following statements about mail filtering configuration is correct?

A. When the spam processing action is an alert, the email will be blocked and an alert will be generated

B. Cannot perform keyword filtering on incoming mail

C. You can control the size of the attachment of the received mail

D. Cannot control the number of received email attachments

정답: C

문제12

Huawei WAF products are mainly composed of front-end execution, back-end central systems and databases.
Among them, the database mainly stores the front-end detection rules and black Whitelist and other configuration files.

A. True

B. False

정답: A

문제13

Which of the following descriptions about viruses and Trojans are correct? (multiple choices)

A. Trojan horses are triggered by computer users

B. Viruses are triggered by computer users

C. Trojans can replicate themselves

D. Viruses can replicate themselves

정답: B,D

문제14

Which of the following behaviors is a false positive of the intrusion detection system?

A. Web-based attacks are not detected by the system

B. Unable to detect new types of worms

C. Use Ping to perform network detection and be alerted as an attack

D. The process of trying to log in to the system is recorded

정답: C

문제15

When the license of Huawei USG6000 product expires, the RBL function will be unavailable, and users can only use the local black and white list to filter junk mail.
155955cc-666171a2-20fac832-0c042c0435

A. True

B. False

정답: A

문제16

In order to protect the security of data transmission, more and more websites or companies choose to use SSL to encrypt transmissions in the stream. About using Huawei NIP6000 The product performs threat detection on (SSL stream boy, which of the following statements is correct?

A. The traffic after threat detection is sent directly to the server without encryption

B. NIP can directly crack and detect SSL encryption.

C. NIP0OO does not support SSL Threat Detection.

D. After the process of "decryption", "threat detection", and "encryption"

정답: D

문제17

In the following options, which of the two attacks use similar attack methods, they will generate a large number of useless response packets, occupying network bandwidth, Consume equipment resources?

A. Teardrop and Land35

B. Fraggle and Smurt

C. Fraggle and Land
155955cc-666171a2-20fac832-0c042c0423

D. Land and Smurf

정답: B

문제18

Windows in environment,Agile Controller-Campus After the installation is successful, how to manually start the management center(MC)? (Multiple choice)

A. choose"Start>all programs> Huawei> Agile Controller> Server Startup Config"To manually start the required components.

B. choose"Start>all programs> Huawei> MCServer> StartServer.

C. choose"Start 3 all programs> Huawei> MCServer> Sever Startup Conig",Manually start the required components

D. Double click on the desktop"Start Server"The shortcut starts.

정답: B,D

문제19

Which of the following features does Huawei NIP intrusion prevention equipment support? (multiple choice)

A. SSL traffic detection

B. Application identification and control

C. Mail detection

D. Virtual patch

정답: A,B,D

문제20

In the terminal security management, the black and white list mode is used to check the terminal host software installation status. Which of the following situations is a compliant behavior?

A. The terminal host installs all the software in the whitelist, but does not install the software in the blacklist.

B. The terminal host installs part of the software in the whitelist, but does not install the software in the blacklist.

C. The terminal host installs all the software in the whitelist, and also installs some of the software in the blacklist.

D. The terminal host does not install the software in the whitelist, nor the software in the blacklist.

정답: A

최신 H12-724 무료덤프 - Huawei HCIP-Security (Fast track) V1.0

우리와 연락하기

유용한 링크

최신 업데이트