The Best Huawei H12-711_V4.0 Study Guides and Dumps of 2024

Top Huawei H12-711_V4.0 Exam Audio Study Guide! Practice Questions Edition

NEW QUESTION # 21
Which of the following attack methods is to construct special SQL statements and submit sensitive information to exploit program vulnerabilities

• A. Worm attack
• B. Buffer overflow attack
• C. SQL injection attacks
• D. Phishing attacks

Answer: C

NEW QUESTION # 22
Under normal circumstances, the Emai1 protocols we often talk about include ____, POP3, and SMTP.[fill in the blank]*

• A. IMAE
• B. IMAP

Answer: B

NEW QUESTION # 23
The trigger authentication method for firewall access user authentication does not include which of the following? ( )[Multiple choice]*

• A. IPSec VPN
• B. SSL VPN
• C. MPLS VPN
• D. L2TP VPN

Answer: C

NEW QUESTION # 24
Which of the following descriptions about the main implementation of single sign-on is wrong? ( )[Multiple choice]*

• A. Query the AD server security log mode
• B. Accept PC message mode
• C. Query the syslog server mode
• D. Firewall monitors AD authentication packets

Answer: C

NEW QUESTION # 25
DES is a stream encryption algorithm, because the cipher capacity is only 56 bits, so it is not enough to deal with the weakness of insufficient security, and later 3DES was proposed.

• A. TRUE
• B. FALSE

Answer: A

NEW QUESTION # 26
The following description of the AH protocol in IPSec VPN, which one is wrong?

• A. Support anti-message replay
• B. Supports packet encryption
• C. Supports data source validation
• D. Supports data integrity checking

Answer: B

NEW QUESTION # 27
Drag the phases of the cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution. 1. Inhibition stage, 2. recovery phase, 3. Detection stage, 4. eradication phase[fill in the blank]*

• A. 0
• B. 1

Answer: A

NEW QUESTION # 28
Which of the following descriptions of single sign-on is correct?

• A. The visitor sends the username and password that identifies his identity to the third-party authentication server, and after the authentication is passed, the third-party authentication server sends the visitor's identity information to FW. F7 only records the identity information of the visitor and does not participate in the authentication process
• B. The visitor recited the Portal authentication page and sent the username and password to FT to identify his/her identity, and the password was not stored on the FT, and the FI sent the username and password to the third-party authentication server, and the authentication process was carried out on the authentication server.
• C. Visitors obtain the SMS verification code through the Portal authentication page, and then enter the SMS verification code to pass the authentication.
• D. The visitor sends the username and password that identifies them to the FW through the portal authentication page, on which the password is stored and the verification process takes place on the FW.

Answer: A

NEW QUESTION # 29
IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.[fill in the blank]

• A. TRUE
• B. symmetry

Answer: B

NEW QUESTION # 30
We should choose the encryption algorithm according to our own use characteristics. When we need to encrypt a large amount of data, it is recommended to use the ____ encryption algorithm to improve the encryption and decryption speed.[fill in the blank]*

• A. symmetry
• B. packets

Answer: A

NEW QUESTION # 31
What type of ACL does ACL number 3001 correspond to?

• A. interface ACL
• B. Advanced ACLs
• C. Basic ACL
• D. Layer 2 ACL

Answer: B

NEW QUESTION # 32
As shown in the figure, the process of AD single sign-on (querying the security log mode of AD server), please match the corresponding operation process.

Answer:

Explanation:

NEW QUESTION # 33
The following description of the intrusion fire protection system IPS, which is correct?

• A. Oral IPS has the ability to customize intrusion prevention rules.
• B. The IPS cannot prevent intrusion from occurring in real time.
• C. The port IPS can be concatenated at the network boundary.
• D. The port IPS can be attached to the switch and port mirrored through the switch.

Answer: A,C,D

NEW QUESTION # 34
____- The goal is to provide a rapid, composed and effective response in emergency situations, thereby enhancing the ability of the business to recover immediately from a disruptive event.[fill in the blank]*

• A. business continuity plan
• B. business continuity

Answer: A

NEW QUESTION # 35
Match each of the following application layer service protocols with the correct transport layer protocols and port numbers.

Answer:

Explanation:

NEW QUESTION # 36
ARP man-in-the-middle attacks are a type of spoofing attack technique.

• A. TRUE
• B. FALSE

Answer: A

NEW QUESTION # 37
During the process of establishing IPSec VPN between peers FW_A and FW_B, two types of security associations need to be established in two stages. In the first stage, _____ is established to verify the identity of the peers.[fill in the blank]*

• A. IKE SB
• B. IKE SA

Answer: B

NEW QUESTION # 38
The network environment is becoming more and more complex, and network security incidents occur frequently. While accelerating the construction of informatization, enterprises must not only resist external attacks, but also prevent internal management personnel from being involved in data leakage and operation and maintenance accidents due to operational errors and other issues. Which of the following options might reduce operational risk?

• A. Oral Each department system is independently authenticated and uses a single static password for authentication.
• B. According to the administrator configuration, the O&M user corresponds to the background resource account, and restricts the unauthorized use of the account. mouth Based on the password security policy, the O&M security audit system automatically modifies the password of the background resource account at regular intervals.
• C. Each system is independently operated, maintained and managed, and the access process is not audited and monitored.

Answer: B

NEW QUESTION # 39
Which of the following is the correct sequence for incident response management
1. Detection 2 Report 3 Mitigation 4 Lessons learned 5 Fix 6 Recovery 7 Response

• A. 1->2->3->7->6->5->4
• B. 1->7->3->2->6->5->4
• C. 1->3->2->7->6->5->4
• D. 1->3->2->7->5->6->4

Answer: B

NEW QUESTION # 40
_____ Authentication is to configure user information (including local user's user name, password and various attributes) on the network access server. The advantage is that it is fast.[fill in the blank]*

• A. total authentication
• B. local authentication

Answer: B

NEW QUESTION # 41
Which of the following descriptions about the heartbeat interface is wrong ( )?[Multiple choice]*

• A. It is recommended to configure at least two heartbeat interfaces. - One heartbeat interface is used as the master, and the other heartbeat interface is used as the backup.
• B. MGMT interface (Gigabi tEtherneto/0/0) cannot be used as heartbeat interface
• C. The connection method of the heartbeat interface can be directly connected, or it can be connected through a switch or router
• D. The interface MTU value is greater than 1500 and cannot be used as a heartbeat interface

Answer: D

NEW QUESTION # 42
Which of the following are the backup items that HRP can provide?

• A. Mouth ARP table entry
• B. Mouth No-PAT table entry
• C. Mouth Server-map table entry
• D. Port TCP session table

Answer: A,B,C,D

NEW QUESTION # 43
What is the protocol number of the GRE protocol?

• A. The 50th
• B. 0
• C. 1
• D. 2

Answer: C

NEW QUESTION # 44
Which of the following protocols is a multichannel protocol?

• A. The SSH
• B. FTP
• C. The Telnet
• D. THE HITP

Answer: B

NEW QUESTION # 45
......

Valid H12-711_V4.0 Exam Updates - 2024 Study Guide: https://testking.braindumpsit.com/H12-711_V4.0-latest-dumps.html