
H12-731_V2.0問題集PDFでH12-731_V2.0リアル試験問題解答
時間限定!今すぐ試そうH12-731_V2.0試験 [2023] 問題集でHuaweiのPDF問題
Huawei H12-731_V2.0(HCIE-Security(Written)V2.0)試験は、ネットワークセキュリティの設計、実装、および保守に関連する広範なトピックをカバーしています。試験は、ファイアウォール技術、侵入防止および検出、VPN技術、ネットワークアクセス制御などのトピックもカバーしています。この試験は、候補者が安全な企業レベルのネットワークを設計、実装、および維持する能力をテストするために設計されています。
質問 # 115
Zombie networks are used to spread viruses and cannot launch DDos attacks
- A. TRUE
- B. FALSE
正解:B
質問 # 116
In the Anh-DDos system What are the functions that ATIC can complete as a management center? (multiple selection).
- A. reports an exception
- B. Clean the flow
- C. Report management
- D. Policy discipline
正解:C、D
質問 # 117
The following describes the USG firewall VRRP backup group status, which one is wrong
- A. When the VGMP group status of the firewall is load-balance The VRRP backup group status on the firewall is Master
- B. When the firewall interface fails The VRRP backup group status on the interface is Initialize
- C. When the VGMP group status of the firewall is active, the VRRP backup group status on the firewall is Master
- D. If the VGMP group status of the firewall is standby, the VRRP backup group status on the firewall is Backup
正解:A
質問 # 118
Which of the following situational aware detection attacks can DDOS attacks, firewall bypasses, and malware outreach attacks know? (multiple selection).
- A. C&C anomaly detection
- B. Meteor base rod anomaly detection
- C. Hidden channel detection
- D. Encrypted traffic detection
正解:A、B、C、D
質問 # 119
Huawei proposes * Partition Defense Unified Detection - Security Scheme Which of the following partitions requires a summer firewall").
- A. Business service area
- B. Internet boundaries
- C. Office network
- D. Core exchange area
正解:A、B、C
質問 # 120
When a user terminates the use of HUAWEI CLOUD services, as a service provider, we should ensure the security of user data operations.
- A. Storage security
- B. Transmission security
- C. Destroy security
- D. Collect security
正解:C
質問 # 121
Huawei's network security intelligence system CIS can only be linked with which of the following devices to block viruses?
- A. AgileController-DCN
- B. Firewall
- C. Agile Controller-Campus
- D. SecoManager
正解:B
質問 # 122
The SQL injection vulnerability occurs due to the lack of validation of the legitimacy of user input
- A. TRUE
- B. FALSE
正解:A
質問 # 123
Which of the following options is part of the business security resiliency (multiple choices)?
- A. Build defense-in-depth capabilities for your business
- B. Establish a secure business environment
- C. Do a good job of protecting the equipment at the point
- D. Improve situational awareness and resiliency of your business
正解:A、B、D
質問 # 124
The following describes the configuration contents of the firewall file filtering feature Which one is wrong, (single selection).
- A. When the default configuration file is referenced by the command line configuration security policy You need to enter the full profile name Otherwise, it cannot be successfully referenced.
- B. Under the command line interface, you can view the configuration information in the default configuration file through the command display profile type url-filter.
- C. The administrator should first clarify which types of files need to be purged, and then select the types of files that the device can support Finally, fill in the remaining file types in "Custom extension".
- D. Use the command display current-configuration to display configuration information for the default configuration file itself.
正解:D
質問 # 125
Which data security is the purpose of data watermark traceability?
- A. Storage security
- B. Exchange security
- C. Collection security
- D. Transport security
正解:B
質問 # 126
The following describes the authentication method and authentication domain relationship for Internet users single sign-on What are the correct ones? (multiple selection).
- A. Single sign-on users need to be online on the firewall Policy control based on user Therefore, the single sign-on user must also belong to a certain authentication domain.
- B. If no other authentication domain exists on the server, the default authentication domain is online.
- C. Single sign-on in progress Firewalls can also be bound to users based on IP/MAC addresses Identify the authentication domain to which the local user belongs
- D. The firewall participates in the authentication process of single sign-on users, so authentication configuration can be performed in the authentication domain.
正解:A、C
質問 # 127
Which of the following items is not part of the firewall dual-machine hot standby ES-induced check is small
- A. Whether the service set configuration is the same
- B. Whether the security policy configuration is the same
- C. Whether the IP addresses of the interfaces are consistent
- D. Whether the address set configuration is the same
正解:C
質問 # 128
Which is the correct order for IPS to process traffic? (single selection).
- A. Corresponding processing, data reorganization, > trait matching, application identification
- B. Data reorganization. App recognition. Trait matching. Deal accordingly
- C. Corresponding treatment, characteristics matching. Application identification, data reorganization
- D. Data reorganization, > characteristic matching, > application identification, > corresponding processing
正解:B
質問 # 129
Which of the following devices can be used to sense the intranet situation in conjunction with situational awareness technology? (Multiple selection)
- A. SecoManager
- B. VSCAN
- C. FireHunter
- D. Agile-controller DCN
正解:A、C、D
質問 # 130
The collection of subdomains includes the collection (single selection) of the target's top-level domain name, second-level domain name, third-level domain name and other domain names
- A. TRUE
- B. FALSE
正解:A
質問 # 131
The following description of information security training Which items are correct? (multiple selection).
- A. In terms of training content For senior executives, training on information security strategies and information security laws and regulations is required.
- B. For grassroots employees, some safety technology training should be emphasized.
- C. Even for safety training, the focus will be different for different departments.
- D. In terms of training method For most employees, just one induction training is not enough attention, and frequent email campaigns are needed to raise awareness of information security
正解:A、D
質問 # 132
Multi-factor authentication is mainly used in scenarios of login protection and operation protection.
- A. TRUE
- B. FALSE
正解:A
質問 # 133
The antivirus system identifies the target of attack based on the characteristics of the detected object The APT defense system identifies the attack object based on the behavior of the detected object.
- A. TRUE
- B. FALSE
正解:A
質問 # 134
Anonymization and pseudonymization of data While reducing the risk of data privacy leakage, it will also reduce the availability of data
- A. TRUE
- B. FALSE
正解:A
質問 # 135
To implement private network user A to access the Internet network after user B That is, which of the following source NAT modes can be configured on the exit firewall to be actively accessed by other users in the Internet network?
- A. Port triples NAT
- B. NAT No-PAT
- C. asy-IP
- D. Mouth NAPT
正解:A
質問 # 136
When deploying an Anti-DDos system using bypass, which of the following options is a common drainage method? (single selection).
- A. BGP drainage
- B. MPLS LSP drainage
- C. Second-layer drainage
- D. GRE drainage
正解:A
質問 # 137
The General Data Protection Regulation (GDPR) aims to protect personal data, which of the following options are fundamental rights of data subjects (multiple choices)?
- A. Control
- B. Weak expulsion
- C. Right to information
- D. Right of Access
正解:B、C、D
質問 # 138
The National Graded Protection System (GB) is in the process of grading The assessment is based on the safety management assessment requirements in IS027001. (single selection).
- A. TRUE
- B. FALSE
正解:B
質問 # 139
PT (Advanced Persistent Threat) attacks are stealthy and persistent computer intrusion processes, usually orchestrated by certain personnel For specific goals.
- A. 5RUE
- B. FALSE
正解:A
質問 # 140
......
Huawei H12-731_V2.0 試験は、ネットワークセキュリティに関連する様々なトピックをカバーしており、ネットワークセキュリティの技術やアーキテクチャ、セキュリティポリシーと規制、ネットワークセキュリティ製品やソリューション、セキュリティ管理と運用などが含まれます。この試験は、候補者がこれらのトピックを理解し、この知識を実際の状況に適用できる能力をテストするために設計されています。
H12-731_V2.0プレミアム試験エンジンとPDFダウンロード:https://jp.fast2test.com/H12-731_V2.0-premium-file.html