Pass Huawei H12-711 Exam With Practice Test Questions Dumps Bundle [Q31-Q49]

Pass Huawei H12-711 Exam With Practice Test Questions Dumps Bundle

2022 Valid H12-711 test answers & Huawei Exam PDF

NEW QUESTION 31
When configuring NAT Server on the LSG series firewall, the server-map table will be generated. Which of the following does not belong in the table?

• A. Source IP
• B. Destination port
• C. Agreement number
• D. Destination IP

Answer: A

 

NEW QUESTION 32
Which of the following is correct for the command to view the number of security policy matches?

• A. display security-policy all
• B. display firewall sesstion table
• C. display security-policy count
• D. count security-policy hit

Answer: A

 

NEW QUESTION 33
Which VPN access modes are suitable for mobile office workers? (Choose three.)

• A. L2TP over IPsec
• B. SSL VPN
• C. GRE VPN
• D. L2TP VPN

Answer: A,B,D

 

NEW QUESTION 34
Through display ike sa to see the result as follows, which statements are correct? (Multiple choice)

• A. The first stage ike sa has been successfully established
• B. The second stage ipsec sa has been successfully established
• C. ike is using version v1
• D. ike is using version v2

Answer: A,C

 

NEW QUESTION 35
The European TCSEC Code is divided into two modules, Function and Evaluation, which are mainly used in the military, government and commercial fields.

• A. True
• B. False

Answer: A

 

NEW QUESTION 36
In IPSEC VPN, which of the following scenarios can be applied by tunnel mode?

• A. between the host and the host
• B. between hosts and security gateways
• C. between tunnel mode and transport mode
• D. between security gateways

Answer: D

 

NEW QUESTION 37
Manual auditing is asupplement to tool evaluation. It does not require any software to be installed on the target system being evaluated, and has no effect on the operation and status of the target system. Which of the following options does not include manual auditing?

• A. Manual inspection of the database
• B. Manual inspection of network equipment
• C. Manual detection of the host operating system
• D. Manual inspection of the administrator's operation of the equipment process

Answer: D

 

NEW QUESTION 38
UDP port scanning means that the attacker sends a zero-byte UDP packet to a specific port of the target host. If the port is open, it will return an ICMP port reachable data packet.

• A. False
• B. True

Answer: A

 

NEW QUESTION 39
Which of the following is not included in the design principles of the questionnaire?

• A. Consistency
• B. Openness
• C. Specificity
• D. Integrity

Answer: A

 

NEW QUESTION 40
Which of the following descriptions is correct about port mirroring? (Multiple Choice)

• A. The mirrored port copies the packet to the observing port.
• B. The mirrored port sends the received packet to the monitoring device.
• C. The observing port copies the packet to the mirrored port.
• D. The observing port sends the received packet to the monitoring device.

Answer: A,D

 

NEW QUESTION 41
In stateful inspection firewall, when openingstate detection mechanism, three-way handshake's second packet (SYN + ACK) arrives the firewall. If there is still no corresponding session table on the firewall, then which of the following statement is correct?

• A. If the firewall security policy allows packets through, then creating the session table
• B. If the firewall security policy allows packets through, then the packets can pass through the firewall
• C. Packets must pass through the firewall, and establishes a session table
• D. Packets must not pass through the firewall

Answer: D

 

NEW QUESTION 42
Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc. These fields are "and " , that is, only information in the message and all fields If you match, you can hit this strategy

• A. False
• B. True

Answer: A

 

NEW QUESTION 43
In order to obtain evidence of crime, it is necessary to master the technology of intrusion tracking. Which of the following descriptions are correct about the tracking technology? (Multiple Choice)

• A. Packet tagging technology extracts information from attack sources by recording packets on the router and then using data drilling techniques
• B. Packet Recording Technology marks packets on each passing router by inserting trace data into the tracked IP packets
• C. Shallow mail behavior analysis can analyze the information such as sending IP address, sending time, sending frequency, number of recipients, shallow email headers and so on.
• D. Link test technology determines the source of the attack by testing the network link between the routers

Answer: B,C,D

 

NEW QUESTION 44
Which of the following is true about the description of the TCP/IP protocol stack packet decapsulation? (Multiple choice)

• A. After receiving the data packet, the network layer is stripped after parsing, and the upper layer processing protocol is known according to the parsing information, such as HTTP.
• B. After the application layer receives the data packet, the application layer information is stripped after parsing, and the user data displayed at the end is exactly the same as the data sent by the sender host.
• C. The data packet is first transmitted to the data link layer. After parsing, the data link layer information is stripped, and the network layer information is known according to the parsing information, such as IP.
• D. After the transport layer (TCP) receives the data packet, the transport layer information is stripped after parsing, and the upper layer processing protocol, such as UDP, is known according to the parsing information.

Answer: B,C

 

NEW QUESTION 45
When the USG series firewall hard disk is irplace, which of the following logs can be viewed? (Multiple Choice)

• A. Business log
• B. Operation log
• C. Alarm information
• D. Threat log

Answer: A,B,C,D

 

NEW QUESTION 46
Which of the following is not a hash algorithm?

• A. SM1
• B. MD5
• C. SHA2
• D. SHA1

Answer: A

 

NEW QUESTION 47
Which of the following is true about the description of the TCP/IP protocol stack packet encapsulation?
(Multiple choice)

• A. After receiving the data packet, the network layer is stripped after parsing, and the upper layer processing protocol is known according to the parsing information, such as HTTP
• B. After the application layer receives the data packet, the application layer information is stripped after parsing, and the user data displayed at the end is exactly the same as the data sent by the sender host.
• C. The data packet is firsttransmitted to the data link layer. After parsing, the data link layer information is stripped, and the network layer information is known according to the parsing information, such as IP.
• D. After the transport layer (TCP) receives the data packet, the transport layer information is stripped after parsing, and the upper layer processing protocol, such as UDP, is known according to the parsing information

Answer: B,C

 

NEW QUESTION 48
HTTP packets are carried by UDP. and the HTTPS protocol is based on TCP three-way handshake. Therefore.
HTTPS is relatively secure, and HTTPS is recommended.

• A. False
• B. True

Answer: A

 

NEW QUESTION 49
......

Top Huawei H12-711 Courses Online: https://www.topexamcollection.com/H12-711-vce-collection.html

Free Huawei H12-711 Exam Questions and Answer from Training Expert TopExamCollection: https://drive.google.com/open?id=16NiD0Bbt-D8SeZMxOLPLVmeXjuHgHtQU