최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

문제1

Regarding the single sign-on supported by the firewall, which of the following is not included?

A. HWTACACS single sign-on

B. AD single sign-on

C. ISM single sign-on

D. RADIUS single sign-on

정답: A

문제2

Compared with IPsec VPN, () has the advantage of good compatibility, can encapsulate IPX, multicast packets, etc., and is widely used.

정답:

GRE VPN

문제3

As shown in the figure, some packets were captured on a terminal device using packet capture software. Regarding the packet information, which of the following statements is correct?

A. The terminal uses Telnet to log in to other devices.

B. The terminal initiated a TCP connection termination request to 192.168.1.1.

C. The terminal initiated a TCP connection establishment request to 192.168.1.1.

D. The terminal uses Http to log in to other devices.

정답: C

문제4

Which of the following descriptions about the transmission of information through the heartbeat in the dual-machine hot standby center is incorrect?

A. Heartbeat link detection messages are used to synchronize configuration commands and status of the two firewalls.

B. The two firewalls periodically send heartbeat messages to each other to detect whether the peer device is alive.

C. VGMP messages are used to determine the status of the peer device to determine whether switching is required.

D. Configuration consistency check messages are used to check whether the key configurations of two firewalls are consistent.

정답: A

문제5

Which of the following passwords is a strong password?

A. admin123

B. he110world

C. 1001

D. tLzXsqc735!

정답: D

문제6

From the time when the original packet enters the GRE tunnel to when the GRE packet is transferred out by the firewall, the packet spans the relationship between two domains.
As shown in the figure, after the original packet is encapsulated by GRE, when the firewall forwards the packet, which of the following security zones does the packet pass through?

A. Local-->Untrust

B. Trust-->DMZ

C. Untrus-->Local

D. DMZ-->Trust

정답: A

문제7

The advantages of symmetric key encryption are high efficiency, simple algorithm, low system overhead, and suitable for encrypting large amounts of data.

A. True

B. False

정답: A

문제8

In the process of using digital envelopes, which of the following information will be encrypted?
(Multiple Choice)

A. Receiver's public key

B. Symmetric key

C. Receiver's private key

D. User Data

정답: B,D

문제9

Which of the following is not a feature of GRE VPN?

A. Ensures the safe transmission of user business data on the Internet

B. Solve the problem of message transmission across heterogeneous networks

C. Expand the working range of networks with limited hop count

D. Ability to encapsulate multicast messages

정답: A

문제10

When the intrusion detection system finds traces of an attack on the system. It will wait for the buffering time before activating relevant security mechanisms to respond.

A. True

B. False

정답: B

문제11

When configuring NAT Server on the USG system firewall, a server-map table will be generated.
Which of the following is not included in this performance?

A. Destination port number

B. Destination IP

C. Source IP

D. Agreement number

정답: C

문제12

Regarding SSL VPN technology, which of the following statements is incorrect?

A. The encryption of SSL VPN technology only takes effect on the application layer

B. SSL VPN technology can be perfectly suitable for NAT traversal scenarios

C. SSL VPN technology expands the network scope of enterprises

D. SSL VPN requires a dial-up client

정답: D

문제13

Regarding the description of VGMP group management, which of the following is incorrect?

A. The interface types and numbers of the heartbeat interfaces of the two firewalls can be different, as long as they can ensure Layer 2 interoperability.

B. Regularly send hello messages between VGMP of the active and standby firewalls

C. All changes in the active/standby status of a VRRP backup group need to be notified to the VGMP management group to which it belongs.

D. The active and standby devices understand each other's status through heartbeat line exchange messages, and back up relevant commands and status information.

정답: A

문제14

Which of the following descriptions of HWTACACS are incorrect? (Multiple Choice)

A. Authentication and authorization are processed together

B. Suitable for security control

C. Support authorization of configuration commands

D. Use UDP protocol

정답: A,D

최신 H12-711_V4.0 무료덤프 - Huawei HCIA-Security V4.0

우리와 연락하기

유용한 링크

최신 업데이트