H12-711_V4.0 Exam Questions

IPsec protects the safe transmission of user business data on the Internet through encryption and verification in which of the following aspects? (Multiple Choice)

Which of the following descriptions of the characteristics of free ARP are correct? (Multiple Choice)

In the IS027001 certification process, which of the following items are part of the terminal security inspection in the formal audit? (Multiple Choice)

Which of the following attacks can intrusion prevention detect? (Multiple Choice)

Which of the following descriptions about RADIUS are correct? (Multiple Choice)

Which of the following messages are RADIUS messages? (Multiple Choice)

Which of the following descriptions of manual batch backup in firewall hot backup are correct? (Multiple Choice)

Which of the following items does IKE's identity authentication mechanism include? (Multiple Choice)

Which of the following descriptions of L2TP VPN features are correct? (Multiple Choice)

Which of the following contents does the IPsec VPN protocol framework include? (Multiple Choice)

Which of the following descriptions about establishing SA through IKE in IPsec are correct? (Multiple Choice)

Which of the following methods does the switch process for forwarding data frames? (Multiple Choice)

Which of the following are the characteristics of intrusion prevention? (Multiple Choice)

Which of the following is not a characteristic of worm viruses? (Multiple Choice)

Which of the following descriptions of Huawei firewall's SYN Flood attack defense technology are correct? (Multiple Choice)

Which of the following descriptions of the centralized deployment scenario of the authentication server are correct? (Multiple Choice)

Which of the following protocols are transport layer protocols? (Multiple Choice)

Which of the following service types can verify identity through AAA authentication? (Multiple Choice)

Which of the following information can be included in a digital certificate? (Multiple Choice)

Which of the following descriptions about the difference between main mode and aggressive mode in the IPsec VPN negotiation process are correct? (Multiple Choice)

Commonly used scanning tools include: port scanning tools, vulnerability scanning tools, application scanning tools, database scanning tools, etc.

Although the tower server occupies a large area, it has strong expansion capabilities.

ARP man-in-the-middle attack is a type of spoofing attack technology.

Encryption is the basis for transmitting information over the Internet. In layman's terms, encryption is the use of mathematical methods to convert plaintext (data that needs to be...

Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc. There is an "AND" relationship betw...

The tunnel addresses at both ends of the GRE tunnel can be configured as addresses on different network segments.

When the firewall upgrades the signature database and virus database online through the security service center, the firewall is first required to be able to connect to the Interne...

The working mode of FTP is divided into active mode and passive mode. The control channel in active mode is initiated by the client, and the channel in passive mode is initiated by...

RADIUS uses TCP as the transmission protocol and has high reliability

Since there is more than one user accessing the database at the same time, the database server must support a parallel running mechanism to process multiple original events.

Cooperating with other institutions to provide training services is not the business scope of the National Internet Emergency Center.

HTTP messages are carried using UDP, while the HTTPS protocol is based on the TCP three- way handshake, so HTTPS is safer and it is more recommended to use HTTPS.

NAPT technology can realize that one public network IP address can be used by multiple private network hosts.

In PKI, if you manually replace the CA and local certificate, please first ensure that the CA and local certificate are not used by the business.

The matching principle of security policies is : first search for the manually configured inter-zone security policy. If no match is found, the data packet will be discarded direct...

When the intrusion detection system finds traces of an attack on the system. It will wait for the buffering time before activating relevant security mechanisms to respond.

Network administrators can collect data that needs to be analyzed on network devices through packet capture, port mirroring or logs.

NAT technology can achieve secure data transmission by encrypting data.

When an enterprise establishes its own information system, it should check every operation according to authoritative international standards to check whether its information syste...

By default, the aging time of long connections is 24 hours.

Digital certificates authenticate public keys through third-party organizations to ensure non- repudiation of data transmission. Therefore, only the certificate of the communicatin...

After the firewall uses the hrp standby config enable command to enable the standby device configuration function, all information that can be backed up can be configured directly...

By default, configuration modifications made by the administrator on the firewall are automatically stored in non-volatile registers

Database management functions include system configuration and management, data access and update management, data integrity management and data security management.

IPsec VPN uses an asymmetric encryption algorithm to encrypt the transmitted data.

Man-in-the-middle attacks are data security threats.

Multi-channel protocol refers to a protocol that requires two or more ports during the communication process.

When the firewall is not working properly, try to troubleshoot the problem and do not restart the system easily to avoid affecting the business.

In IP, after receiving the Hello message, the Standby end will respond with an ACK message, which will also carry its own priority and VRRP member status.

If the administrator uses the default authentication domain to authenticate the user, the user only needs to enter the user name when logging in; if the administrator uses the newl...