オンライン問題で最適なH12-722試験練習問題(最新の180問題) [Q19-Q38]

Share

オンライン問題で最適なH12-722試験練習問題(最新の180問題)

練習問題H12-722素晴らしい練習用のHCIP-Security-CSSN(Huawei Certified ICT Professional -Constructing Service Security Network)テスト問題

質問 19
Which of the following statement about IPS is wrong?

  • A. When the source security zone is the same as the destination security zone, the IPS policy is applied in the domain.
  • B. The covering signature has a higher priority than the signature in a centralized signature.
  • C. Changes to the IPS policy do not take effect immediately. You need to submit a compilation to update the configuration of the IPS policy.
  • D. The signature set can contain both pre-defined and custom signatures.

正解: D

 

質問 20
Regarding the description of intrusion detection technology, which of the following statements is correct?

  • A. It can detect all kinds of authorized and unauthorized intrusions.
  • B. It is impossible to detect violations of security policies.
  • C. is an active and static security defense technology.
  • D. Unable to find traces of the system being attacked.

正解: A

 

質問 21
Which of the following are the upgrade methods for the anti-virus feature database of Huawei USG6000 product? (Multiple Choices)

  • A. Automatic upgrade
  • B. Manual upgrade
  • C. Local upgrade
  • D. Online upgrade

正解: C,D

 

質問 22
The process of a browser carrying a cookie to request a resource from a server is as shown in the following figure. Which of the following steps have the session ID information in the message?

  • A. 5, 6
  • B. 2, 4
  • C. 3, 4,
  • D. 1, 3, 4

正解: C

 

質問 23
Malicious code usually uses RootKit technology to hide itself. RootKit modifies the kernel of the system by loading special drivers to hide itself and specific files.

  • A. TRUE
  • B. FALSE

正解: A

 

質問 24
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an attack? (Multiple Choices)

  • A. DF bit is 1 and the MF bit is also 1 or the Fragment Offset is not 0.
  • B. DF bit is 0, the MF bit is 1 or the Fragment Offset is not 0.
  • C. DF bit is 0 and Fragment Offset + Length > 65535.
  • D. DF bit is 1 and Fragment Offset + Length < 65535.

正解: A,C

 

質問 25
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an offensive behavior? (multiple choice)

  • A. The DF bit is 1, and Fragment Ofset + Length <65535.
  • B. DF, bit is down, and MF bit is also 1 or Fragment Offset is not 0,
  • C. DF bit is 0, and Fragment Offset + Length> 65535.
  • D. DF bit is 023, MF bit is 1 or Fragment Offset is not 0,

正解: B,C

 

質問 26
Misuse detection discovers intrusion activity in system by detecting similar behaviors of user intrusions, or by detecting violations of system security rules indirectly by exploiting system flaws.
Which of the following is not misuse detection feature?

  • A. Effective detection of impersonation of legitimate users
  • B. Accurate detection
  • C. Easy to upgrade
  • D. Easy to implement

正解: A

 

質問 27
Which of the following statements about IPS is wrong?

  • A. The signature set can contain either predefined signatures or custom signatures. 832335
  • B. The priority of the coverage signature is higher than that of the signature in the signature set.
  • C. Modifications to the PS policy will not take effect immediately. You need to submit a compilation to update the configuration of the IPS policy.
  • D. When the "source security zone" is the same as the "destination security zone", it means that the IPS policy is applied in the domain.

正解: A

 

質問 28
The following figure is the diagram which shows the firewall and sandbox system linkage detection file.

The Web Reputation feature is enabled on the firewall, and Site A is set as a trusted site and Site B is set as a suspicious site. Which of the following statements is correct?

  • A. The files which the users obtain from Site A and Site B are sent to the detection node for detection.
  • B. Assume that Site A is an unknown website, the administrator cannot detect the website's traffic file.
  • C. After the detection node detects a suspicious file, it not only informs the firewall in the figure, but also informs other connected network devices.
  • D. When the user visits the Site B, although the firewall will extract the file and send it to the detection node, the user can still visit the Site B normally during the detection process.

正解: C

 

質問 29
When you suspect that the corporate network is being attacked by hackers, you have conducted technical investigations.
Which of the following options does not belong to the pre-attack behavior?

  • A. Web Application Attacks
  • B. Loophole attack
  • C. Planting Malware
  • D. Brute force attack

正解: C

 

質問 30
Which of the following is wrong about intrusion prevention?

  • A. Intrusion prevention is a new type of security technology that can detect and prevent intrusions.
  • B. Intrusion prevention is a security mechanism that analyzes network traffic and detects intrusions (including buffer overflow attacks, Trojans, worms, etc.).
  • C. Intrusion prevention technology, after discovering intrusions, must link firewalls to prevent intrusions
  • D. Intrusion prevention can block attacks in real time.

正解: C

 

質問 31
When users deploy a firewall anti-virus policy, there is no need to deploy anti-virus software.

  • A. TRUE
  • B. FALSE

正解: B

 

質問 32
The realization of content security filtering technology requires the support of the content security combination license.

  • A. True
  • B. False

正解: A

 

質問 33
Which of the following statement is wrong about a network intrusion detection system (NIDS)?

  • A. Mainly used for real-time monitoring of critical network path information, listening to all packets on the network, collecting data, and analyzing suspicious objects
  • B. Use newly received network packets as a data source;
  • C. Used to monitor network traffic and can be deployed independently.
  • D. Real-time monitoring through network adapters and analysis of all communication traffic through the network;

正解: B

 

質問 34
Which of the following technologies can achieve content security? (multiple choice)

  • A. Sandbox and big data analysis
  • B. Web security protection
  • C. Intrusion prevention
  • D. Global environment awareness

正解: A,B,C,D

 

質問 35
Under the CLI command, which of the following commands can be used to view the AV engine and virus database version?

  • A. display av utm version
  • B. display utm av version
  • C. display version av-sdb
  • D. display utm version

正解: C

 

質問 36
With regard to traditional firewalls, which of the following statements are correct? (Multiple choice)

  • A. Cannot accurately control various applications such as P2P, online games, etc.
  • B. It is unable to effectively resist the spread of viruses from the Internet to the internal network.
  • C. Lack of effective protection against application layer threats.
  • D. Can quickly adapt to changes in threats.

正解: A,B,C

 

質問 37
Regarding HTTP behavior, which of the following statements is wrong?

  • A. When the file upload operation is allowed, the alarm threshold and blocking threshold can be configured to control the size of the uploaded file.
  • B. HTTP POST is generally used to send information to the server through a web page, such as forum posting x form submission, username I password login.
  • C. When the size of the uploaded or downloaded file and the size of the content of the POST operation reach the alarm threshold, the system will generate log information to prompt the device management And block behavior.
  • D. When the uploaded or downloaded file size, POST operation content size reaches the blocking threshold, the system will only block the uploaded or downloaded file, POST operate.

正解: D

 

質問 38
......

リアルなH12-722試験別格な練習試験問題:https://jp.fast2test.com/H12-722-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어