H12-711問題集には練習試験問題解答 [Q86-Q110]

Share

H12-711問題集には練習試験問題解答

H12-711はHCNA-Security実際の無料試験練習テスト

質問 86
HTTP packets are carried by UDP, and the HTTPS protocol is based on TCP three-way handshake. Therefore, HTTPS is relatively secure, and HTTPS is recommended.

  • A. False
  • B. True

正解: A

 

質問 87
Use iptables to write a rule that does not allow the network segment of 172.16.0.0/16 to access the device. Which of the following rules is correct?

  • A. iptables -t filter -P INPUT -s 172.16.0.0/16 -p all -j ACCEPT
  • B. iptables -t filter -P INPUT -d 172.16.0.0/16 -p all -j ACCEPT
  • C. iptables -t filter -A INPUT -s 172.16.0.0/16 -p all -j DROP
  • D. iptables -t filter -P INPUT -s 172.16.0.0/16 -p all -j DROP

正解: C

 

質問 88
Which of the following are the necessary configurations of IPSec VPN? (Multiple Choice)

  • A. Configuring IKE neighbors
  • B. Configure IKE SA related parameters
  • C. Configuring IPSec SA related parameters
  • D. Configure the stream of interest

正解: A,B,C,D

 

質問 89
In o der to obtain evidence of crime, it is necessary to master the technology ofintrusion tracking Which of the following descriptions are correct about the tracking technology? (Multiple Choice)

  • A. Packet Recording Technology marks packets on each passing router by inserting trace data into the tracked IP packets
  • B. Packet tagging technology extracts information from attack sources by recording packets on the router and then using data drilling techniques
  • C. Snallow mail behavior analysis can analyze the information such as sending IF address, sending time, sending frequency, number of recipients, shallow email heacers and so on.
  • D. Link test technology determines the source of the attack by testing the network link between the routers

正解: A,C,D

 

質問 90
Which of the following are the same features of Windows and LINUX systems? (MultipleChoice)

  • A. Support multitasking
  • B. Support multiple terminal platforms
  • C. Support graphical interface operations
  • D. Open source system

正解: A,B,C

 

質問 91
What problem does IPsec IKE aggressive mode mainly solve?

  • A. solve the problem of slow negotiation on both ends of the tunnel
  • B. solve the security problem in the process of negotiation
  • C. solve because of uncertain originator source address cannot select pre-shared key problem
  • D. solve NAT traversal problem

正解: C

解説:
Explanation

 

質問 92
What is the nature of information security in "Implementation of security monitoring and management of information and information systems to prevent the illegal use of information and information systems"?

  • A. Controllability
  • B. Integrity
  • C. Non-repudiation
  • D. Confidentiality

正解: A

 

質問 93
Which of the following is wrong about the scanning of vulnerabilities?

  • A. Vulnerabilities can be avoided
  • B. The vulnerability was discovered beforehand and discovered afterwards
  • C. Vulnerabilities are security risks that can expose computers to hackers
  • D. Vulnerabilities are generally repairable

正解: A

 

質問 94
Digital certificate technology solves the problem that public key owners cannot determine in digital signature technology.

  • A. True
  • B. False

正解: A

 

質問 95
Which of the following are the characteristics of a symmetric encryption algorithm? (Multiple choice)

  • A. Fast encryption
  • B. Key distribution security is high
  • C. Key distribution is not secure
  • D. Confidential speed is slow

正解: A,C

 

質問 96
Which of the following statement is wong about L2TP VPN?

  • A. Will not encrypt the data
  • B. Can be used in conjunction with IPsec VPN
  • C. Belongs to Layer 3 VPN technology
  • D. Applicable to business employees dialing access to the intranet

正解: C

 

質問 97
There ere various security threats in the use of the server. Which of the following options is not a server securitythreat?

  • A. Hacking
  • B. DDos attack
  • C. Malicious programs
  • D. Natural disasters

正解: D

 

質問 98
Intrusion Prevention System (IPS) is a defense system that can block in real time when an intrusion is discovered

  • A. True
  • B. False

正解: A

 

質問 99
Which of the following is not included in the steps of the safety assessment method?

  • A. Questionnaire survey
  • B. Penetration test
  • C. Manual audit
  • D. Data analysis

正解: D

 

質問 100
Which of the following descriptions is correct about port mirroring? (Multiple Choice)

  • A. The mirrored port sends the received packet to the monitoring device.
  • B. The observing port sends the received packet to the monitoring device.
  • C. The observing port copies the packet to the mirrored port.
  • D. The mirrored port copies the packet to the observing port.

正解: B,D

 

質問 101
Which of the following are the status information that can be backed up by the HRP (Huawei Redundancy Protocol)protocol? (Multiple choice)

  • A. Session table
  • B. ServerMap entry
  • C. Dynamic blacklist
  • D. Routing table

正解: A,B,C

 

質問 102
HRP (Huawei Redundancy Protocol) Protocol to backup the connection state of data include: (Multiple Choice)

  • A. the routing table
  • B. the dynamic blacklist
  • C. TCP/UDP sessions table
  • D. Ser/er Map table

正解: B,C,D

 

質問 103
When the IPSec VPN tunnel mode is deployed, the AH protocol is used for packet encapsulation. In the new IP packet header field, which of the following parameters does not require data integrity check?

  • A. Destination IP address
  • B. Idetification
  • C. Source IP address
  • D. TTL

正解: D

 

質問 104
Which of the following information will be encrypted during the use of digital envelopes? (Multiple Choice)

  • A. Receiver private key
  • B. User data
  • C. Symmetric key
  • D. Receiver public key

正解: B,C

 

質問 105
On the USG seriesfirewall, after the web redirection function is configured, the authentication page cannot be displayed. Which of the following is not the cause of the fault?

  • A. The port of service of authentication page is set to 8887
  • B. The browser SSL version does not match the SSL version of the firewall authentication page.
  • C. The authentication policy is not configured or the authentication policy is incorrectly configured
  • D. Web authentication is not enabled.

正解: A

 

質問 106
In the Client-Initiated VPN configuration, generally it is recommended to plan the address pool and the headquarters of the network address for the different network segments, or need to open proxy forwarding on the gateway device.

  • A. True
  • B. False

正解: A

 

質問 107
Which of the following is not a key technology for anti-virus software?

  • A. Self-protection
  • B. Shelling technology
  • C. Real-time upgrade ofthe virus database
  • D. Format the disk

正解: D

 

質問 108
Which of the following is the correct description of windows log event type? (Multiple Choice)

  • A. When the disk space isinsufficient, it will be recorded as an "information event"
  • B. A warning event is asuccessful operation event of an application, driver, or service.
  • C. Failure audit event refers to a failed audit security login attempt, such as a failure when the user views accesses the network drive is logged as a failed audit event.
  • D. Error events usually refer to the loss of function and data. For example, if a service cannot be loaded as a system boot, an error event will be generated.

正解: A,C,D

 

質問 109
Which of the following statement about Internet user group management is wrong?

  • A. Each user group can belong to more than one parent user group
  • B. Each user group can include multiple users and user group
  • C. There is a default user group in the system; the user group is also the default authentication domain
  • D. Each user belongs to at least one user group, who can also belong to multiple user groups

正解: A

 

質問 110
......

無料HCNA-Security H12-711試験問題:https://jp.fast2test.com/H12-711-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어