• Home
  • Articles
  • [Q97-Q122] Huawei H12-722 Practice Verified Answers - Pass Your Exams For Sure! [2021]

[Q97-Q122] Huawei H12-722 Practice Verified Answers - Pass Your Exams For Sure! [2021]

Share

Huawei H12-722 Practice Verified Answers - Pass Your Exams For Sure! [2021]

Valid Way To Pass HCNP-Security's  H12-722 Exam

NEW QUESTION 97
Which aspects of information security will be caused by unauthorized access? (multiple choice)

  • A. Integrity
  • B. Recoverability
  • C. Confidentiality
  • D. Availability

Answer: A,C

 

NEW QUESTION 98
When you suspect that the company's network has been attacked by hackers, you have carried out a technical investigation. Which of the following options does not belong to the behavior that occurred in the early stage of the attack?

  • A. Vulnerability attack
  • B. Brute force
  • C. Web application attacks
  • D. Planting malware

Answer: D

 

NEW QUESTION 99
After the Huawei USG6000 product license expires, the RBL function is unavailable.
Users can only use local black and white lists to filter spam.

  • A. FALSE
  • B. TRUE

Answer: B

 

NEW QUESTION 100
The core technology of content security lies in anomaly detection, and the concept of defense lies in continuous monitoring and analysis.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 101
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)

  • A. SQL injection
  • B. Cross-site scripting attacks
  • C. Website fishing fraud
  • D. Website Trojan

Answer: A,B

 

NEW QUESTION 102
IPS is an intelligent intrusion detection and defense product. It can not only detect the occurrence of intrusions, but also can respond in real time through certain response methods.
Stop the occurrence and development of intrusions, and protect the information system from substantial attacks in real time. According to the description of PS, the following items are wrong?

  • A. IPS unifies IDS and firewall
  • B. Common IPS deployment modes are in-line deployment,
  • C. IPS is an intrusion detection system that can block real-time intrusions when found
  • D. IPS must use bypass deployment in the network

Answer: D

 

NEW QUESTION 103
Regarding the description of keywords, which of the following is correct? (multiple choice)

  • A. Custom keywords can only be defined in text mode.
  • B. The minimum length of the keyword that the text can match is 2 bytes. ,
  • C. Keywords include predefined keywords and custom keywords.
  • D. Keywords are the content that the device needs to recognize during content filtering.

Answer: C,D

 

NEW QUESTION 104
Which of the following options are common reasons for IPS detection failure? (multiple choices)

  • A. The IPS function is not turned on
  • B. False Policy IDs are associated with IPS policy domains
  • C. Bypass function is closed in IPS
  • D. IPS policy is not submitted for compilation

Answer: A,B,D

 

NEW QUESTION 105
Network attacks are mainly divided into two categories: single-packet attacks and streaming attacks.
Single-packet attacks include scanning and snooping attacks, malformed packet attacks, and special reports.
Wen attack.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 106
The configuration commands for enabling the attack defense function are as follows:
[FW] anti-ddos syn-flood source-detect
[FW] anti-ddos udp-flood dynamic-fingerprint-learn
[FW] anti-ddos udp-frag-flood dynamic-fingerprint-learn
[FW] anti-ddos http-flood defend alert-rate 2000
[FW] anti-ddos http-flood source-detect mode basic
Which of the following are the correct descriptions of the attack prevention configuration? (Multiple Choices)

  • A. SYN Flood source detection and prevention function is enabled on the firewall.
  • B. HTTP flood attack defense uses enhanced mode for defense.
  • C. The threshold value enabled by HTTP Flood defense is 2000.
  • D. The firewall uses the first packet discard to defense the UDP flood attacks.

Answer: A,C

 

NEW QUESTION 107
IPS function of Huawei USG6000 product supports two response modes of blocking and alarming.

  • A. FALSE
  • B. TRUE

Answer: B

 

NEW QUESTION 108
Fage attack means that the original address and target address of TOP are both set to the IP address of a certain victim. This behavior will cause the victim to report to it.
SYN-ACK message is sent from the address, and this address sends back an ACK message and creates an empty connection, which causes the system resource board to occupy or target The host crashed.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 109
Which of the following options are correct for the configuration description of the management center ATIC?
(multiple choice)

  • A. Port mirroring needs to be configured on the management center to monitor abnormal traffic.
  • B. The reinjection strategy needs to be configured on the management center to guide the flow after cleaning.
  • C. It is necessary to configure the protection object on the management center to guide the abnormal access flow in etpa
  • D. The drainage task needs to be configured on the management center, and when an attack is discovered, it will be issued to the cleaning center.

Answer: C,D

 

NEW QUESTION 110
The administrator configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not possible?

  • A. The file filtering configuration file is incorrect
  • B. Misconfigured action for file extension mismatch
  • C. License is not activated
  • D. The file filtering configuration file is not referenced in the security policy

Answer: B

 

NEW QUESTION 111
The main attack prevention technologies of Huawei USG6000 products include: source detection, fingerprint learning and associated defense.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 112
Regarding worms and viruses, which of the following statements is correct?

  • A. Worms exist in a parasitic way
  • B. Viruses mainly rely on system vulnerabilities to spread
  • C. The virus exists independently in the computer system.
  • D. The target of the worm infection is other computer systems on the network.

Answer: D

 

NEW QUESTION 113
With the continuous development of the network and the rapid development of applications, companies are making users more and more frequently start to transfer files on the network.
Virus threats are becoming more and more serious. Only by rejecting the virus outside the network can data security and system stability be guaranteed. So, which of the following are What harm might be caused by illness? (multiple choices)

  • A. Control the host computer's accumulated limit and the user's data, and some viruses may even cause damage to the host's hardware.
  • B. Some viruses can be used as intrusion tools, such as Trojan horse viruses,
  • C. Threaten the security of the user's host and network.
  • D. Can easily pass the defense of Huawei USG6000 products

Answer: A,B,C

 

NEW QUESTION 114
If Huawei USG6000 product uses its own protocol stack cache for all files passing through the device and then performs virus scanning, then the device uses a flow scan mode.

  • A. FALSE
  • B. TRUE

Answer: A

 

NEW QUESTION 115
Which of the following is correct regarding the order of the mail transfer process?
1. The sending PC sends the mail to the specified SMTP server.
2. The sender SMTP Server encapsulates the mail information in the SMTP message and sends it to the receiver SMTP according to the destination address of the mail.
Server.
3. The sender SMTP Server encapsulates the mail information in the SMTP message and sends it to the receiver POP3/MAP Server based on the destination address of the mail.
4. Recipients send emails.

  • A. 1->3->4
  • B. 1->2->4
  • C. 1->2->3
  • D. 1->4->3

Answer: B

 

NEW QUESTION 116
Which of the following is not an abnormal condition of the file type recognition result?

  • A. File extension does not match
  • B. Files are compressed
  • C. File damage
  • D. The file type is not recognized

Answer: B

 

NEW QUESTION 117
Regarding HTTP behavior, which of the following statements is wrong?

  • A. HTTP POST is generally used to send information to the server through a web page, such as forum posting x form submission, username I password login.
  • B. When the file upload operation is allowed, the alarm threshold and blocking threshold can be configured to control the size of the uploaded file.
  • C. When the size of the uploaded or downloaded file and the size of the content of the POST operation reach the alarm threshold, the system will generate log information to prompt the device management And block behavior.
  • D. When the uploaded or downloaded file size, POST operation content size reaches the blocking threshold, the system will only block the uploaded or downloaded file, POST operate.

Answer: D

 

NEW QUESTION 118
Which of the following options is correct for the sequence of the flow-by-stream detection of AntiDDoS?
1. The Netflow analysis device samples the current network flow;
2. Send a drainage command to the cleaning center;
3. Discover the DDoS attack stream;
4.Netior: analysis equipment sends alarms to ATIC management center
5. The abnormal flow is diverted to the cleaning center for further inspection and cleaning;
6. The cleaning center sends the host route of the attacked target IF address server to the router to achieve drainage
7. The cleaning log is sent to the management center to generate a report;
8. The cleaned traffic is sent to the original destination server.

  • A. 1-3-4-2-5-6-7-8
  • B. 1-3-2-4-6-5-7-8
  • C. 1-3-4-2-6-5-8-7
  • D. 1-3-24-6-5-8-7

Answer: C

 

NEW QUESTION 119
Which of the following description is incorrect about the cleaning center?

  • A. The cleaning equipment supports a variety of flexible attack defense technologies, but it is ineffective for CC attack and ICMP flood attack defense.
  • B. There are two drainage ways of static drainage and dynamic drainage.
  • C. The re-injection methods include: policy route reinjection, static route reinjection, VPN reinjection, and Layer 2 peering.
  • D. The cleaning center completes the function of drainage, cleaning, and flow reinjection after cleaning for abnormal flow.

Answer: A

 

NEW QUESTION 120
Which of the following are typical intrusions? (Multiple choices)

  • A. Copy/View Sensitive Data
  • B. Tampering Web pages
  • C. The power supply in the equipment room is abnormally interrupted
  • D. Computer is infected by U disk virus

Answer: A,B

 

NEW QUESTION 121
Which of the following are true about the e-mail protocol? (Multiple choices)

  • A. Use POP3, the client software download all unread messages to the computer and the mail server deletes the message.
  • B. Use IMAP, the client software download all unread messages to the computer and the mail server deletes the message.
  • C. Use POP3, the user directly operates the mail on the server, and does not need to download all the mails locally and perform various operations.
  • D. Use IMAP, the user directly operates the mail on the server, and does not need to download all the mails locally and perform various operations.

Answer: A,D

 

NEW QUESTION 122
......

Huawei H12-722 Pre-Exam Practice Tests | PassLeaderVCE: https://www.passleadervce.com/HCNP-Security/reliable-H12-722-exam-learning-guide.html

Related Articles

more
Huawei H12-722 Certification Practice Exam