• Home
  • Articles
  • Latest Jan 04, 2022 Real H12-711_V3.0-ENU Exam Dumps Questions Valid H12-711_V3.0-ENU Dumps PDF [Q68-Q86]

Latest Jan 04, 2022 Real H12-711_V3.0-ENU Exam Dumps Questions Valid H12-711_V3.0-ENU Dumps PDF [Q68-Q86]

Share

Latest Jan 04, 2022 Real H12-711_V3.0-ENU Exam Dumps Questions Valid H12-711_V3.0-ENU Dumps PDF

Huawei H12-711_V3.0-ENU Exam Dumps - PDF Questions and Testing Engine

NEW QUESTION 68
UDP port scanning means that the attacker sends a zero-byte length UDP packet to a specific port of the target host. If the port is open, an ICMP port reachability data packet will be returned.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 69
Which of the following is not a symmetric encryption algorithm?

  • A. 3DES
  • B. RSA
  • C. AES
  • D. DES

Answer: B

 

NEW QUESTION 70
To use AH+ESP protocol to encapsulate IP packets, how many IPSec SAs need to be established?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: A

 

NEW QUESTION 71
Which of the following is the action to be taken in the summary phase of cybersecurity emergency response? (Multiple Choice)

  • A. Judging the effectiveness of isolation measures
  • B. Establish a defense system and specify control measures
  • C. Evaluate the implementation of emergency plans and propose follow-up improvement plans
  • D. Evaluate the members of the emergency response organization

Answer: C,D

 

NEW QUESTION 72
Regarding the NAT policy processing flow, which of the following options are correct? (Multiple choice)

  • A. Server-map is processed after status detection
  • B. Server-map is processed before the security policy matches
  • C. The source NAT policy query is processed after the session is created
  • D. The source NAT policy is processed after the security policy is matched

Answer: A,B,D

 

NEW QUESTION 73
In the process of using the digital envelope, which of the following information will be encrypted? (Multiple choice)

  • A. Receiver's public key
  • B. Symmetric key
  • C. User data
  • D. Receiver's private key

Answer: B,C

 

NEW QUESTION 74
RFC (Request For Comment) 1918 sets aside 3 IP address ends for private use, namely 10.0.0.0-10.255.255.255, _______, 192.168.0.0-192.168.255.255

  • A. 172.16.0.0-172.31.255.255

Answer: A

 

NEW QUESTION 75
Regarding port mirroring, which of the following descriptions are correct? (Multiple Choice)

  • A. The observation port sends the received message to the monitoring device
  • B. The mirror port sends the received message to the monitoring device
  • C. The mirror port copies the packet to the observing port
  • D. The observing port copies the packet to the mirror port

Answer: A,C

 

NEW QUESTION 76
Which of the following options are malicious programs? (Multiple Choices)

  • A. Trojan Horse
  • B. Worms
  • C. Vulnerabilities
  • D. Viruses

Answer: A,B,D

 

NEW QUESTION 77
Regarding GRE encapsulation and decapsulation, which of the following descriptions is wrong?

  • A. In the decapsulation process. After receiving the GRE message, the destination end passes the data packet to the Tunnel interface by searching for a route, and then starts GRE decapsulation.
  • B. In the decapsulation process, after the GRE module decapsulates, the data packet will enter the IP module for further processing
  • C. In the encapsulation process, the original data packet is sent to the Tunnel interface through the route search, and then GRE encapsulation is started.
  • D. In the encapsulation process. After encapsulation by the GRE module, the data packet will enter the IP module for further processing

Answer: A

 

NEW QUESTION 78
Which item is correct about SSL VPN?

  • A. Can encrypt the IP layer
  • B. Can be used without the client
  • C. There is a NAT crossing problem
  • D. No authentication

Answer: B

 

NEW QUESTION 79
Which of the following are functions of address translation technology? (Multiple choice)

  • A. Address translation can enable internal network users (private IP addresses) to access the Internet
  • B. Address translation can make many hosts in the internal LAN share an IP address to surf the Internet
  • C. Address translation can handle encrypted IP headers
  • D. Address translation can shield users on the internal network and improve the security of the internal network

Answer: A,B,D

 

NEW QUESTION 80
In the construction of an information security system, a security model is needed to accurately describe the relationship between important aspects of security and system behavior

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 81
Which of the following statement is wrong about the L2TP VPN of Client-Initialized?

  • A. The LNS device receives the user's L2TP connection request, and the user can be verified according to the username and password.
  • B. LNS assign private IP addresses for remote users.
  • C. The remote users do not need to install VPN client software
  • D. After the remote user access the Internet, the L2TP tunnel connection request can be initiated directly from the remote LNS through the client software.

Answer: C

 

NEW QUESTION 82
We should choose the encryption algorithm according to our own characteristics. When we need to encrypt a large amount of data, it is recommended to use the _____ encryption algorithm to improve the speed of encryption and decryption.

  • A. Symmetry

Answer: A

 

NEW QUESTION 83
Regarding the description of the intrusion prevention system (IPS), which of the following is wrong?

  • A. IPS devices cannot be deployed in bypass mode in the network
  • B. IPS equipment can be connected in series at the network boundary and deployed online
  • C. The IDS device needs to be linked to the firewall to block the intrusion
  • D. Once the IPS device detects the intrusion, it can block it in real time

Answer: A

 

NEW QUESTION 84
Applying for special funds for emergency response and which stage of the work of complete network emergency response do purchasing emergency response software and hardware equipment belong to?

  • A. Response stage
  • B. Preparation stage
  • C. Inhibition stage
  • D. Recovery stage

Answer: B

 

NEW QUESTION 85
_______ is a defect in the specific implementation of hardware, software, and protocol or system security strategy, which can enable an attacker to access or destroy the system without authorization.

  • A. Vulnerabilities

Answer: A

 

NEW QUESTION 86
......

Reliable HCIA-Security H12-711_V3.0-ENU Dumps PDF Jan 04, 2022 Recently Updated Questions: https://www.testkingfree.com/Huawei/H12-711_V3.0-ENU-practice-exam-dumps.html

Related Articles

more
Huawei H12-711_V3.0-ENU Certification Practice Exam