試験合格保証付きのHCNA-Security H12-711試験問題集
Huawei H12-711日常練習試験は2022年最新のに更新された290問あります
質問 130
The scene of internal users access the internet as shown, the subscriber line process are:
1. After authentication, USG allow the connection
2. The user input http://1.1.1.1 to access Internet
3. USG push authentication interface, User =? Password =?
4. The user successfully accessed http://1.1.1.1, equipment create Session table.
5. User input User = *** Password = ***
Which the following procedure is correct?
- A. 2-3-5-1-4
- B. 2-3-1-5-4
- C. 2-5-3-1-4
- D. 2-1-3-5-4
正解: A
質問 131
Which of the followingare malicious programs? (Multiple choice)
- A. Vulnerabilities
- B. Worm
- C. Virus
- D. Trojan horse
正解: B,C,D
質問 132
Which of the following is an action to be t3ken during the summary phase of the cyber security emergency response? (Multiple Choice)
- A. Evaluation of members of the emergency response organization
- B. Determine the effectiveness nf the isnhtinn measures
- C. Evaluate the implementation of the contingency plan and propose a follow-up improvement plan
- D. Establish a defense system and specify control measures
正解: A,C
質問 133
In the first stage of IKE negotiation, which of the following IKE exchange mode does not provide identity protection features?
- A. Aggressive Mode
- B. Main Mode
- C. passive mode
- D. quick mode
正解: A
質問 134
If the administrator uses 'he default authentication domain to authenticate a user, you onlyneed to enter a user name when the user logs, if administrators use the newly created authentication domain to authenticate the user, the user will need to enter login "username @ Certified domain name"
- A. True
- B. False
正解: A
質問 135
Classify servers based on the shape, what types of the following can be divided into? (Multiple choice)
- A. Rack server
- B. Blade server
- C. X86 server
- D. Tower server
正解: A,B,D
質問 136
Through display ike sa to see the result as follows, which statements are correct? (Multiple choice)
- A. The second stage ipsec sa has been successfully established
- B. The first stage ike sa has been successfully established
- C. ike is using version v1
- D. ike is using version v2
正解: B,C
質問 137
Which of the following options does not belong to the log type of the Windows operating system?
- A. Security log
- B. System log
- C. Business log
- D. Application log
正解: C
質問 138
Which of the following is the GRE protocol number?
- A. 0
- B. 1
- C. 2
- D. 3
正解: C
質問 139
Which of the following statements are correct about Huawei routers and switches? (Multiple Choice)
- A. The main function of the router is to forward data. Sometimes the firewall may bea more suitable choice when the enterprise has security requirements.
- B. The router can implement some security functions, and some routers can implement more security functions by adding security boards.
- C. The switch has some security features, and some switches can implement more security functions by adding security boards.
- D. The switch does not have security features
正解: A,B,C
質問 140
Both A and B communicate data. If an asymmetric encryption algorithm is used for encryption, when A sends data to B, which of the following keys will be used for data encryption?
- A. A private key
- B. B public key
- C. B private key
- D. A public key
正解: B
質問 141
After the network attack event occurs, set the isolation area, summary data, and estimated loss according to the plan. Which stagedoes the above actions belong to the work contents of in the network security emergency response?
- A. Inhibition phase
- B. Recovery phase
- C. Preparation stage
- D. Detection phase
正解: A
質問 142
When Layer 2 switches (not configured VLAN) receiving a data frame, of no match is found in the MAC address table, it will forward the data frame to all ports (including Layer 2 switches receiving port).
- A. True
- B. False
正解: B
質問 143
In the classification of the information security level protection system, which of the following levels defines the damage to the social order and the public interest if the information system is destroyed? (Multiple choice)
- A. Third level Security mark protection
- B. First level User-independent protection level
- C. Fourth level Structured protection
- D. Second level System audit protection level
正解: A,B,C,D
質問 144
Which of the following behaviors is relatively safer when connecting to Wi-Fi in public places?
- A. Connect encrypted freeWi-Fi for online transfer operations
- B. Connect unencrypted free Wi-Fi for online shopping
- C. Connect to the paid Wi-Fi hotspot provided by the operator and only browse the web
- D. Connect Wi-Fi hotspots that are not encrypted
正解: C
質問 145
Regarding the relationship and role of VRRP/VGMP/HRP, which of the following statements are correct? (Multiple choice)
- A. HRP is responsible for data backup during hot standby operation.
- B. VGMP is responsible for monitoring equipment failures and controlling fast switching of equipment.
- C. VRRP is responsible for sending free ARP to direct traffic to the new primary device during active/standby switchover.
- D. VGMP group in the active state may include the VRRP group in the standby state.
正解: A,B,C
質問 146
Apply for emergency response special funds, which stage work content does procurement emergency responsesoftware and hardware equipment belong to in the network full emergency response?
- A. Response phase
- B. Recovery phase
- C. Inhibition phase
- D. Preparation stage
正解: D
質問 147
Which of the following is true about the description of the TCP/IP protocol stack packet encapsulation?
(Multiple choice)
- A. The data packet is firsttransmitted to the data link layer. After parsing, the data link layer information is stripped, and the network layer information is known according to the parsing information, such as IP.
- B. After the transport layer (TCP) receives the data packet, the transport layer information is stripped after parsing, and the upper layer processing protocol, such as UDP, is known according to the parsing information
- C. After receiving the data packet, the network layer is stripped after parsing, and the upper layer processing protocol is known according to the parsing information, such as HTTP
- D. After the application layer receives the data packet, the application layer information is stripped after parsing, and the user data displayed at the end is exactly the same as the data sent by the sender host.
正解: A,D
質問 148
Typical remote authentication modes are: (Multiple Choice)
- A. HWTACACS
- B. LLDP
- C. RADIUS
- D. Local
正解: A,C
質問 149
What problem does IPsec IKE aggressive mode mainly solve?
- A. solve NAT traversal problem
- B. solve the security problem in the process of negotiation
- C. solve the problem of slow negotiation on both ends of the tunnel
- D. solve because of uncertain originator source address cannot select pre-shared key problem
正解: D
解説:
Explanation
質問 150
Security technology has different methods at different technical levels and areas. Which of the following devices can be used for network layer security protection? (Multiple choice)
- A. Vulnerability scanning device
- B. IPS/IDS device
- C. Anti-DDoS device
- D. Firewall
正解: B,C,D
質問 151
Which scenarios does IPSec WEB configuration wizard not support?
- A. Gateway to Gateway
- B. Branch Gateway
- C. Center Gateway
- D. Host and Host
正解: D
質問 152
......
テストエンジン練習H12-711テスト問題:https://jp.fast2test.com/H12-711-premium-file.html