최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

문제1

Manual audit is a supplement to tool evaluation. It does not require the installation of any software on the target system being evaluated and has no impact on the operation and status of the target system.
Manual audit does not include which of the following options?

A. Manual inspection of the administrator's equipment operation process

B. Manual detection of the host operating system

C. Manual inspection of the database

D. Manual inspection of network equipment

정답: A

문제2

In the USG series firewall, you can use which of the following function to provide well-known application services for non-well-known ports?

A. Port mapping

B. Packet filtering

C. Long connection

D. MAC and IP address binding

정답: A

문제3

Predefined signatures are signatures included in the intrusion prevention signature database. The contents of predefined signatures (except actions) are not fixed and can be created, modified or deleted.

A. True

B. False

정답: B

문제4

Information security level protection is to improve the overall security level of the country, and at the same time reasonably optimize the allocation of security resources to maximize security and economic benefits.

A. True

B. False

정답: A

문제5

The default policy on the firewall is () all traffic

정답:

Reject

문제6

After a network intrusion event occurs, obtain the identity of the intruder, attack source and other information according to the plan, and block the intrusion behavior. Which links in the PDRR network security model do the above actions belong to? (Multiple Choice)

A. Protection link

B. Response link

C. Detection link

D. Recovery phase

정답: B,C

문제7

The hash algorithm is collision-resistant, that is, if you input different data, the output Hash value cannot be the same.

A. True

B. False

정답: B

문제8

In the process of establishing IPsec VPN between peers FWA and FW B, they need to go through two stages to establish two types of security associations. In the first stage, establish () and verify the identity of the peers.

정답:

IKE SA

문제9

In a PKI system, the CA certificate cannot be a self-signed certificate.

A. True

B. False

정답: B

문제10

To configure the NAT policy in the command line mode, you need to use it in the system view.
Command () to enter the NAT policy configuration view.

정답:

nat-policy

문제11

According to the HiSec solution, please drag the device on the left into the logical architecture layer to which it belongs on the right.

정답:

CIS - Analyzer
SecoManager - Controller
Switch - actuator

문제12

Regarding the description of the grading of the medium-level protection system in MSW 2.0, which of the following options are correct? (Multiple Choice)

A. Level 1: The destruction of the information system will cause serious damage to the legitimate rights and interests of citizens, legal persons and other organizations, but will not damage national security, social order and public interests.

B. Level 3: The damage to the information system will cause serious damage to the legitimate rights and interests of citizens, legal persons and other organizations, or damage to social order and public interests, as well as damage to national security.

C. Level 5: The damage to the information system will cause particularly serious damage to national security.

D. Level 4: The destruction of the information system will cause particularly serious damage to social order and public interests, or cause serious damage to national security.

정답: A,C,D

문제13

Which of the following options are suitable for business travelers to access the corporate intranet in a public network environment? (Multiple Choice)

A. MPLS VPN

B. L2 TP over IPsec VPN

C. SSL VPN

D. GER VPN

정답: B,C

문제14

The attacker sends an ICMP reply request and sets the destination address of the request packet to the broadcast address of the victim network.
What kind of attack does this behavior belong to?

A. SYN flood attack

B. IP spoofing attack

C. Smurf attack

D. ICMP redirect attack

정답: C

최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

우리와 연락하기

유용한 링크

최신 업데이트