
試験合格保証付きのHCIP-Security H12-724試験問題集
Huawei H12-724日常練習試験は2023年最新のに更新された359問あります
質問 176
For the URL is htpt://www.abcd. com:8080/news/education. aspx?name=tom&age=20, which option is path?
- A. htttp://www.abcd. com:8080,te
- B. /news/education. aspx
- C. htttp://www.abcd. com:8080/news/education. aspx
- D. /news/education. aspx?name=tom&age=20
正解: B
質問 177
User access authentication technology does not include which of the following options?
- A. Access control
- B. Authentication
- C. Isolation repair'
- D. Security check
正解: C
質問 178
What content can be filtered by the content filtering technology of Huawei USG6000 products?
- A. The source of the video content
- B. File content filtering
- C. Apply content filtering..
- D. Voice content filtering
正解: B,C
質問 179
Regarding the description of intrusion detection technology, which of the following statements is correct?
- A. It is impossible to detect violations of security policies.
- B. It can detect all kinds of authorized and unauthorized intrusions.
- C. is an active and static security defense technology.
155955cc-666171a2-20fac832-0c042c0425 - D. Unable to find traces of the system being attacked.
正解: B
質問 180
In the park, users frequently enter and leave the wireless signal coverage area due to office needs. If you need to ensure the user's Internet experience, after the user passes an authentication, when he accesses the network again, no important authentication is required:Which of the following authentication methods is recommended?
- A. MAC Certification
- B. Portal Certification
- C. 82.1 Certification
- D. MAC(prioritized
正解: D
質問 181
The AD/LDAP account can be synchronized to the Agile Controller-Campus or not to the Agile Controller-Campus. Synchronize.
The Agile Controller-Campus can only be authorized by user group. If it is not synchronized to the Agile Controller-Campus, it can be fine-tuned based on the account.
Authorization
- A. False
- B. True
正解: A
質問 182
What equipment do Policy Center supported servers include? (Choose 3 answers)
- A. remote control device
- B. log collection server
- C. mail server
- D. Internet behavior management equipment
正解: A,C,D
質問 183
For the scenario where the authentication server adopts distributed deployment, which of the following descriptions are correct? (multiple choice)
- A. The terminal security management business between the branch and the headquarters is relatively independent, and the headquarters provides supervision and control over the branch terminal security management business.
- B. The enterprise network is relatively scattered, there are multiple branches, and the branch users are larger in scale.
- C. A scenario where there are less than 2,000 branch users, and the headquarters and branch networks are relatively stable.
- D. It is difficult to guarantee the quality of the network between the branch and the headquarters, and the network between the headquarters and the branch may be interrupted, making the terminal of the branch no longer available.
正解: B,D
質問 184
Import the user information of the AD server on the Agile Controller-Campus to realize the user's access authentication. If the user is in the Agile.
The user information is not found on the Controller-Campus. Which of the following actions will be performed in the next step?
- A. Discard user information.
- B. User 91 Information sent to AD The server performs verification.
- C. Synchronize the database again.
- D. Straight forward to return authentication failure information.
正解: B
質問 185
Which of the following attacks are attacks against web servers? (multiple choices)
- A. SQL injection
- B. Cross-site scripting attacks 2335
- C. Website Trojan
- D. Website phishing deception
正解: A,B
質問 186
When using local guest account authentication, usually use(Portal The authentication method pushes the authentication page to the visitor. Before the user is authenticated, when the admission control device receives the HTTP The requested resource is not Portal Server authentication URL When, how to deal with the access control equipment.
- A. URL Address redirected to Portal Authentication page
- B. Direct travel
- C. Send authentication information to authentication server
- D. Discard message
正解: A
質問 187
SQI Server2005 may not be properly installed, which of the following may be the possible reasons?
- A. without prior installation of Microsoft SQL Server 2005 Toolkit
- B. The operating system is Microsoft Windows Server 2003
- C. 1433 port are occupied by the other processes
- D. equipment 21 port is occupied
正解: C
質問 188
If the regular expression is "abc. de", which of the following will not match the regular expression?
- A. abcde
- B. abc+de
- C. abclde
- D. abcdde
正解: A
質問 189
Regarding the description of the ACL used in the linkage between SACG equipment and the TSM system, which of the following statements is correct!?
- A. due to SACG Need to use ACL3099-3999 To pick TSM The rules issued by the system, so in the configuration TSM Before linkage, you need to ensure these ACL Not referenced by other functions.
- B. The original group number is 3099-3999 of ACL Even if it is occupied, it can be successfully activated TSM Linkage.
- C. default ACL The rule group number can be arbitrarily specified.
- D. default ACL The rule group number can only be 3999.
正解: A
質問 190
For Huawei USG600 products, which of the following statements about mail filtering configuration is correct?
- A. When the spam processing action is an alert, the email will be blocked and an alert will be generated
- B. You can control the size of the attachment of the received mail
- C. Cannot perform keyword filtering on incoming mail
- D. Cannot control the number of received email attachments
正解: B
質問 191
Due to differences in network environment and system security strategies, intrusion detection systems are also different in specific implementation. From the perspective of system composition, the main Which four major components are included?
- A. Incident extraction, intrusion analysis, intrusion response and remote management.
- B. Event extraction, intrusion analysis, reverse intrusion and remote management.
- C. Incident extraction, intrusion analysis, intrusion response and on-site management.
- D. Incident recording, intrusion analysis, intrusion response and remote management.
正解: A
質問 192
If a company wants to detect image files, Shellcode code files and PDF files, which of the following types of sandboxes can be used? (More
155955cc-666171a2-20fac832-0c042c0420
select)
- A. PDF heuristic sandbox
ja$ - B. PE heuristic sandbox
- C. Heavyweight sandbox (virtual execution)
- D. Web heuristic sandbox
正解: A,C,D
質問 193
The user needs of a university are as follows:
1. The environment is large, and the total number of two-way traffic can reach 800M. Huawei USG6000 series firewall is deployed at its network node.
2. The intranet is divided into student area, server area, etc., users are most concerned about the security of the server area to avoid attacks from various threats.
3. At the same time, some pornographic websites in the student area are prohibited.
The external network has been configured as an untrust zone and the internal network has been configured as a trust zone on the firewall. How to configure the firewall to meet the above requirements?
155955cc-666171a2-20fac832-0c042c0415
- A. To the untrust direction, only enable AV and IPS protection functions for the server zone to protect the server
- B. Go to the untrust direction to open the URL filtering function for the entire campus network, and filter some classified websites
- C. In the direction of untrust to the intranet, only the AV and IPS protection functions are turned on for the server area to protect the server
- D. You can directly turn on the AV, IRS protection functions, and URL filtering functions in the global environment to achieve the requirements
正解: B,C,D
質問 194
Which patches does Policy Center support to management?(Choose 3 answers)
- A. Microsoft Windows operating system patches
- B. android system patches
- C. Microsoft SQL Windows database patch
- D. Microsoft Internet Explorer patches
正解: A,C,D
質問 195
Regarding CAPWAP encryption, which of the following statements is wrong?
- A. DTLS Encryption can guarantee AC The issued control messages will not be eavesdropped on.
- B. Use the certificate method to carry out DTLS Negotiation, the certificate is only used to generate the key, not right AP Perform authentication.
- C. CAPWAP The data tunnel can be used DTLS Encrypted.
- D. DTLS Support two authentication methods:Certificate authentication(out AC,AP Already brought)with PSK Password authentication.
正解: C
質問 196
Which of the following options is not a feature of big data technology?
- A. A wide variety of data
- B. Slow processing speed
- C. Low value density
- D. The data boy is huge
正解: B
質問 197
Regarding the network intrusion detection system (NIDS), which of the following statements is wrong?
- A. It is mainly used for real-time monitoring of the information of the critical path of the network, listening to all packets on the network, collecting data, and analyzing suspicious objects
- B. Used to monitor network traffic, and can be deployed independently.
- C. Use the newly received network packet as the data source;
- D. Real-time monitoring through the network adapter, and analysis of all communication services through the network;
正解: C
質問 198
......
テストエンジン練習H12-724テスト問題:https://jp.fast2test.com/H12-724-premium-file.html
有効問題を試そう!H12-724実際の試験問題解答:https://drive.google.com/open?id=1sG2atxouvCpCNnm0ZdUFGcnr-ZS_6wFv