H12-711_V4.0 Exam Questions

A firewall is actually an isolation technology that separates internal networks from public access networks.

During the electronic evidence collection process, any changes to system settings, damage to hardware, data destruction, or virus infection must be avoided.

AAA supports remote authentication through the RADIUS protocol or HWTACACS protocol.

In single sign-on, both the third-party authentication server and the firewall need to participate in the authentication process and record the visitor's identity information.

Digital certificates can be divided into local certificates, CA certificates, root certificates and self- signed certificates according to different usage scenarios.

When a user uses session authentication to trigger the built-in Portal authentication in the firewall, the user does not actively perform identity authentication and access advance...

Digital certificate technology solves the problem of being unable to determine the owner of the public key in digital signature technology

The data format transmitted between data link layers in the OSI model is called a frame.

Antivirus software can detect and kill all viruses

In the USG series firewall system view, after executing the reset saved-configuration command, the device configuration will be restored to the default configuration, and no other...

The data transmitted between the headquarters and branches of an enterprise was stolen and tampered with by hackers. This security risk belongs to information access security.

After configuring the command nat server test protocol tcp global 202.202.1.1 inside 192.168.1.1, the device will automatically generate Server-map entries.

The firewall only needs to be deployed at the boundary between the internal network and the external network. There is no need to use a firewall for mutual access between different...

In the security assessment method, the purpose of security scanning is to use scanning analysis and assessment tools to scan the target system in order to discover relevant vulnera...

The calculation speed of the MD5 algorithm is faster than the SHA-1 algorithm, and the security strength is also higher.

SSH is a relatively secure remote login method. It provides two authentication methods, Password and RSA, for remote users.

Because UTM has the characteristics of parallel processing of multiple performances, UTM's processing performance and speed of network traffic are faster than NGFW.

Using computers to store information about criminal activities is not a form of computer crime.

Vulnerabilities that have not yet been discovered are zero-day vulnerabilities.

In response to network security incidents that occur, remote emergency response is generally carried out first. If the problem cannot be solved for the customer through remote acce...

The built-in Porral authentication method of Huawei firewall is only session authentication.

In practical applications, asymmetric encryption is mainly used to encrypt user data.

Antivirus software and host firewall have the same function.

SIP protocol uses SDP messages to establish sessions. SDP messages contain remote addresses or multicast addresses.

In the OSI seven-layer model, the data link layer defines the logical address of the device and provides media access

Digital signatures generate digital fingerprints by using a hash algorithm to ensure the integrity of data transmission.

When establishing an FTP connection using passive mode, use port 20 for the control channel and port 21 for the data channel.

Most of the data sent by the device contains IP five-tuples, such as ARP protocol request messages and HTTP protocol messages.

The default time for VGMP to send Hel1o messages is 10 seconds.

The essence of a packet filtering firewall is to filter data packets based on the access control list ACL.

Compared with packet filtering firewalls, proxy firewalls can control the session process and are more secure.

IPv6 supports configuring the router authorization function on the device, verifying the identity of the peer through digital certificates, and selecting legal devices.

The information security management system (ISM) includes four parts, Plan planning, Do implementation, Check inspection, Actlon improvement maintenance and improvement of ISMS.

On Huawei USG series firewalls, the default security policy does not support modification.

VPN technology usually requires the use of encryption and decryption technology to ensure the confidentiality of data.

Digital signature technology not only proves that the information has not been tampered with. The identity of the sender is also proven. Digital signature and digital envelope tech...

When the heartbeat interface is not configured with an IP address, it will be in the invalid state.

The "Caesar Cipher" basically encrypts data using a stick of specific specifications.

An employee on a business trip of a company wants to remotely access the company headquarters through the public network to access the data of the internal server. This requirement...

Symmetric encryption, also known as shared key encryption, uses the same key to encrypt and decrypt data.

The CA certificate is the CA's own certificate. If there is no multi-level CA in the PKI system, the CA's official certificate is a self-signed certificate, if there are multiple l...

When a Layer 2 switch receives a unicast frame and the switch's MAC address table entry is empty, the switch will discard the unicast frame.

In the VRRP (Virtual Router Redundancy Protocol) group, the main firewall regularly sends notification messages to the backup firewall, and the backup firewall is only responsible...

The process of electronic evidence collection includes: protecting the scene, obtaining evidence, preserving evidence, identifying evidence, analyzing evidence, tracking and presen...

Data monitoring can be divided into two types: active analysis and passive acquisition.

Enterprise-level servers are mainly used in large enterprises and important industries that need to process large amounts of data and have extremely high processing speed and relia...

Because a server is a type of computer, we can use our personal computers as servers in enterprises.

Huawei USG firewall VRRP advertisement messages are multicast messages, so each firewall in the backup group must be able to achieve direct Layer 2 interoperability.

If you want to implement the "anti-virus function" in the security policy, you must activate the license.

Network anti-virus technology deploys anti-virus strategies on security gateways.