H12-711_V3.0 | The Secret Of HUAWEI H12-711_V3.0 Dump

NEW QUESTION 1

Which of the following is an encryption technique used in digital envelopes?

• A. Symmetric encryption algorithm
• B. Asymmetric encryption algorithm
• C. hash algorithm
• D. Stream Encryption Algorithm

Answer: B

NEW QUESTION 2

______ is a flaw in the specific implementation of hardware, software, protocols, or system security policies that could enable an attacker to gain unauthorized access or compromise a system.[fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 3

existUSGConfigure on the system firewallNAT Server, will produceserver-mapTable, which of the following is not part of this representation?

• A. PurposeIP
• B. destination port number
• C. agreement number
• D. sourceIP

Answer: D

NEW QUESTION 4

As shown in the figure, two Server Map entries are generated after configuring NAT Server. Regarding the information presented in this figure, which of the following descriptions is wrong?[Multiple choice]*
Type: Nat Server. ANY1.1.1.1[192.168.1.1]
Type: Nat Server Reverse. 192.168.1.1[1.1.1.1] ANY

• A. The second Server Map function is that when 192.168.1.1 accesses any address, the source address will be converted to 1.1.1.1 after passing through the firewall
• B. The first Server Map function is that when any address accesses 192.168.1.1, the destination IP will be converted to 1.1.1.1 after passing through the firewall.
• C. The Server Map with the Reverse logo can use the command to remove it.
• D. The two Server Map entries are static, that is, after the NAT Server is configured, the two Server Maps will be automatically generated and exist permanently.

Answer: B

NEW QUESTION 5

Which of the following NAT technologies is a destination NAT technology?

• A. Easy-ip
• B. NAT No-PAT
• C. NAPT
• D. NAT Server

Answer: D

NEW QUESTION 6

The firewall is divided according to the protection object,windowsfirewall belongs to— ?

• A. Software Firewall
• B. hardware firewall
• C. Stand-alone firewall
• D. Internet Firewall

Answer: C

NEW QUESTION 7

Firewall usagehrp standby config enableAfter the standby device configuration function is enabled by the command, all information that can be backed up can be configured directly on the standby device, and the configuration on the standby device can be synchronized to the active device.

• A. True
• B. False

Answer: A

NEW QUESTION 8

Which of the following is network address port translation (NAPT) and only translate network addresses (No-PAT) difference?

• A. go throughNo-PATAfter conversion, for external network users, all packets come from the sameIPaddress
• B. No-PATOnly supports protocol port translation at the transport layer
• C. NAPTOnly supports protocol address translation at the network layer
• D. No-PATSupports protocol address translation at the network layer

Answer: D

NEW QUESTION 9

In order to obtain criminal evidence, it is necessary to master the technology of intrusion tracking. Which of the following options are correct for the description of tracking technology? (multiple choice)

• A. Packet logging technology through the tracedIPInsert trace data into packets to mark packets on each router mentioned
• B. Link detection technology determines the information of the attack source by testing the network connection between routers
• C. Packet marking technology extracts attack source information by logging packets on routers and then using data drilling techniques
• D. Shallow mail behavior analysis can achieveIPlandAnalysis of information such as address, sending time, sending frequency, number of recipients, shallow email headers, etc.

Answer: ABD

NEW QUESTION 10

Regarding the description of the firewall security zone and interface relationship, which of the following options is correct? (multiple choice)

• A. The firewall allows the same physical interface to belong to two different security zones (sub-interfaces are not considered)
• B. There are two security zones with exactly the same security level in the firewall
• C. Different interfaces of the firewall can belong to different security zones
• D. Different interfaces of the firewall can belong to the same security zone

Answer: CD

NEW QUESTION 11

When the company's network administrator is performing dual-system hot backup, due to the possibility of inconsistent round-trip paths, if he wants to enable the session fast backup function, the command that needs to be entered is _______ [fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 12

aboutHRPWhich of the following options is not included in the content of the master/slave configuration consistency check?

• A. NATStrategy
• B. Whether the heartbeat interface with the same sequence number is configured
• C. The next hop and outgoing interface of the static route
• D. Authentication Policy

Answer: C

NEW QUESTION 13

RFC (Request For Comment) 1918 reserves 3 IP addresses for private use, namely 10.0.0.0-10.255.255.255, _________, 192.168.0.0-192.168.255.255[fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 14

Which of the following statements about the PKI life cycle is correct?

• A. Certificate renewal: When the certificate expires and the key is leaked, the PKI entity must replace the certificat
• B. The purpose of renewal can be achieved by re-applying, or it can be automatically renewed using SCEP or CPv2 protocol.
• C. Certificate download: The PKI entity downloads the issued certificate to the RA server through SCEP or CIPvz protocol, or through DAP.HIITP or out-of-band mode, download the issued certificate.
• D. Certificate issuance: When a PKI entity applies for a local certificate from a CA, if there is an RA, the RA will first review the identity information of the PKI entit
• E. After the verification is passed, the RA will send the application information to the CA.
• F. Certificate application: certificate application, namely certificate registration, is a PKI entity introducing itself to the CA and obtaining a certificate

Answer: ABCD

NEW QUESTION 15

The repair of anti-virus software only needs to repair some system files that were accidentally deleted when scanning and killing viruses to prevent the system from crashing

• A. True
• B. False

Answer: A

NEW QUESTION 16

Please order the following steps in the PKI life cycle correctly, 1. Issued, 2. storage, 3. Update, 4. verify[fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 17
......