
[2023年11月26日] 最速合格には素晴らしいH12-731_V2.0無料テストPDF本日更新です
無料でゲット!最新の2023年最新の有効な練習HCIE-Security H12-731_V2.0問題と解答でテストエンジン
質問 # 114
With the following description of network scanning defense technology, which is correct? (single selection).
- A. If the rate at which its source IP accesses other protected addresses or ports exceeds the set access frequency threshold, this behavior is regarded as scanning behavior And add the purpose to the blacklist to block scan
- B. If the access frequency is set too high More false positives will be generated, blocking normal access traffic.
- C. For port scanning, you can defend by setting the value of the access frequency bureau.
- D. If the frequency of the set direction is too low The scanning behavior is not recognized.
正解:A
質問 # 115
Which of the following services are security management services in HUAWEI CLOUD solutions?
- A. SSL certificate management service
- B. DDOS Anti-DDoS Pro IP services
- C. Situational awareness services
- D. Security Expert Services
正解:A、B、C、D
質問 # 116
In the Anti-DDos system, the function of cleaning devices is to detect anomalous traffic in the network and escalate to the management centre (single selection).
- A. FALSE
- B. TRUE
正解:A
質問 # 117
Which of the following types of journals cannot use the Netflow format? (single selection).
- A. URL session logs
- B. Half-connection session logs
- C. IPV4 SESSION LOGS
- D. IPV6NAT64 SESSION LOGS
正解:A
質問 # 118
Which services in HUAWEI CLOUD solutions can data encryption be applied?
- A. Database security
- B. Cloud host security
- C. Vulnerability scanning service
- D. Situational awareness services
正解:A、B
質問 # 119
The following describes the authentication method and authentication domain relationship for Internet users single sign-on What are the correct ones? (multiple selection).
- A. If no other authentication domain exists on the server, the default authentication domain is online.
- B. The firewall participates in the authentication process of single sign-on users, so authentication configuration can be performed in the authentication domain.
- C. Single sign-on users need to be online on the firewall Policy control based on user Therefore, the single sign-on user must also belong to a certain authentication domain.
- D. Single sign-on in progress Firewalls can also be bound to users based on IP/MAC addresses Identify the authentication domain to which the local user belongs
正解:C、D
質問 # 120
Which of the following options is required by Security Manager in Graded Protection 2.0 (multi-select
- A. Centralized control
- B. Audit management
- C. Grading and filing
- D. System administration
正解:A、B、D
質問 # 121
Which of the following devices can be used to sense the intranet situation in conjunction with situational awareness technology? (Multiple selection)
- A. VSCAN
- B. Agile-controller DCN
- C. FireHunter
- D. SecoManager
正解:B、C、D
質問 # 122
Which of the following authentication methods is password authentication? (single selection).
- A. What do you have
- B. What do you do
- C. What do you know
- D. What you are
正解:C
質問 # 123
Which of the following is not part of the changing trend in cyberattacks? (Single selection)
- A. Physicalization of attack methods
- B. The attack method changes little
- C. Complication of attack methods
- D. Diversification of attack objectives
正解:B
質問 # 124
In Huawei's user management solution, when using AD single sign-on, the firewall does not support which of the following ways to obtain the message that the user has passed the user authentication radio selection).
- A. The AD single sign-on service program automatically reports messages to the firewall
- B. Install the single sign-on service program to receive messages from the PC
- C. Install the single sign-on service program to query the AD server security logs
- D. The firewall monitors AD authentication packets
正解:A
質問 # 125
Which of the following attacks can be addressed using cybertrapping? (Single selection)
- A. DDos
- B. TCP port scanning
- C. Oversized ICMP packet attack
- D. Malformed message attack
正解:B
質問 # 126
Huawei's network security intelligence system CIS can only be linked with which of the following devices to block viruses?
- A. AgileController-DCN
- B. Agile Controller-Campus
- C. SecoManager
- D. Firewall
正解:D
質問 # 127
Which of the following information cannot be scanned by the nmap tool? (single selection).
- A. Services
- B. System vulnerabilities
- C. Operating system version
- D. Port
正解:B
質問 # 128
Whitelisting may not properly handle complex obfuscation, which could allow attackers to subvert filters and potentially inject SQL language.
- A. TRLE
- B. FALSE
正解:A
質問 # 129
What is correct in the following description of the capabilities of cybertrapping techniques? (multiple selection).
- A. Network trapping technology can automatically sense the non-existence of IP and realize trapping.
- B. Network trapping technology can automatically sense APR-MISS and realize trapping.
- C. Network trapping technology can automatically sense open ports and realize trapping.
- D. Network trapping technology can automatically sense the absence of MAC addresses and realize trapping.
正解:A、B
質問 # 130
A VPCA and VPCB are created under a virtual data center VDC, and host A (192.168.1.100/24) is applied for in the VPCA Filed Host B (1921682100/24). Now configure VPC access Create a virtual firewall security policy as follows:
Security-policy
Source-zone any
destination-zone any
source-address 192.168.2.100 32
destination-address 192.168.1.100 32
action permit
Which of the following statements is correct?
- A. A and B cannot visit each other
- B. A and B are able to visit each other
- C. Only A is allowed to access B
- D. Only B is allowed to visit A
正解:D
質問 # 131
Clear the corresponding information safety standards on the left side with the country/organization on the right by dragging and dropping.
GB EU
TCSEC China
TCSEC USA
- A. Thisquestionisrepeatedwithquestion
正解:A
質問 # 132
The Pv6 multicast address range is FE80::/10
- A. FALSE
- B. TRUE
正解:A
質問 # 133
......
H12-731_V2.0問題集PDFで100%合格保証付き:https://jp.fast2test.com/H12-731_V2.0-premium-file.html