• Home
  • Articles
  • Best Preparations of H12-722 Exam 2021 HCNP-Security Unlimited 180 Questions [Q101-Q117]

Best Preparations of H12-722 Exam 2021 HCNP-Security Unlimited 180 Questions [Q101-Q117]

Share

Best Preparations of H12-722 Exam 2021 HCNP-Security Unlimited 180 Questions

Focus on H12-722 All-in-One Exam Guide For Quick Preparation.

NEW QUESTION 101
The application behavior control configuration file takes effect immediately after reference, without configuring the submission.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 102
The IPS process has the following steps:
1. Reorganize application data
2. Match signature
3. Message processing
4. Protocol identification
Which of the following is the correct ordering for the processing?

  • A. 1-3-2-4
  • B. 2-4-1-3
  • C. 4-1-2-3
  • D. 1-4-2-3

Answer: D

 

NEW QUESTION 103
The security management system is optional, and anti-virus software or anti-hacking technology can be very good against network threats.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 104
Which of the following statements is true about the process of file filtering?

  • A. The file filtering module will match the application type, file type, transmission direction of the file identified by the previous module and the file filter rule query table configured by the administrator from top to bottom.
  • B. If the file type is a compressed file, then after file filtering detection, the file will be sent to the file decompression module for decompression and decompressing the original file. If decompression fails, the file will no longer be filtered.
  • C. If all the parameters of the file can match all the file filtering rules, the module will perform the action of this file filtering rule.
  • D. There are two alarms and blocking actions.

Answer: C

 

NEW QUESTION 105
Why APT attacks are difficult to defend? Part of the reason is that they use zero-day loopholes to attack. This zero-day loopholes usually takes a lot of time to research and analyze and make corresponding defense methods.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 106
Which of the following statements about intrusion detection/defense devices are correct? (Multiple Choice)

  • A. Can quickly adapt changes in threats.
  • B. Protect the intranet from external attacks and suppress malicious traffic, such as spyware, worms, etc., flooding and spreading to the intranet.
  • C. Can't effectively resist the spread of viruses from the Internet to the Intranet.
  • D. NIP6000 can identify applications up to 6000+, implement fine-grained application protection, save export bandwidth, and ensure the business experience of key services.

Answer: A,B,D

 

NEW QUESTION 107
Which of the following are the common causes of IPS detection failures? (Multiple choices)

  • A. IPS function is not enabled
  • B. Policy IDs with incorrect associations between IPS policy domains
  • C. IPS policy is not submitted for compilation
  • D. Bypass function in IPS is turned off

Answer: A,B,C

 

NEW QUESTION 108
Which of the following is not detected action when detecting a virus in a message?

  • A. Delete the attachment
  • B. Alarms
  • C. Blocking
  • D. Announcement

Answer: C

 

NEW QUESTION 109
Which of the following options are correct for the description of the Management Center ATIC configuration? (Multiple Choices)

  • A. The drainage task must be configured on the management center and delivered to the cleaning center when an attack is discovered.
  • B. The recycle strategy needs to be configured on management center needs to guide the cleaned traffic.
  • C. The port mirroring needs to be configured on the management center to monitor abnormal traffic.
  • D. The protection object needs to be configured on the management center to guide abnormal access traffic.

Answer: A,D

 

NEW QUESTION 110
The anti-tampering technology of Huawei WAF products is based on the cache module. Assuming that user A accesses website B, website B has signs of page tampering. The workflow of the WAF tamper-resistant module has the following steps:
1, WAF uses the cached page to return to the client
2, WAF compares the server page content with the cached page content
3, After the learning is completed, the page content is stored in the cache
4, When the user accesses the web page, the WAF obtains the page content of the server
5, WAF initiates learning mode to learn the page content of the user visiting the website
Which of the following options is correct for the ordering of these steps?

  • A. 5, 1, 2, 4, 3
  • B. 2, 4, 1, 5, 3
  • C. 3, 4, 2, 5, 1
  • D. 5, 3, 4, 2, 1

Answer: D

 

NEW QUESTION 111
In the security protection system of cloud era, reforms must be carried out in advance, in the event, and afterwards, and continuous improvement and development of closed loops must be formed.
Which of the following key points should be fulfilled in "in the matter"? (Multiple choices)

  • A. Defense in depth
  • B. Counterattacks Hackers
  • C. Offensive and defensive situation
  • D. Vulnerability information

Answer: A,B

 

NEW QUESTION 112
The core technology of content security lies in anomaly detection. The idea of defense lies in continuous monitoring and analysis.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 113
Which of the following description is correct about the Management Center?

  • A. Management Center is divided into two parts: management server and data collector.
  • B. The management server of the management center is responsible for the cleaning of abnormal traffic, as well as the collection, analysis, aggregation, and storage of service data, and is responsible for reporting the summarized traffic to the management server for report presentation.
  • C. The data collector is responsible for abnormal traffic cleaning, centralized device management configuration, and business report presentation.
  • D. The data collector and management server support distributed deployment and centralized deployment. Centralized deployment has good scalability.

Answer: A

 

NEW QUESTION 114
Attacks against the Web can be divided into three attacks on the client, server or communication channel.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 115
Which of the following is wrong about intrusion prevention?

  • A. Intrusion prevention technology, after discovering intrusions, must link firewalls to prevent intrusions
  • B. Intrusion prevention is a security mechanism that analyzes network traffic and detects intrusions (including buffer overflow attacks, Trojans, worms, etc.).
  • C. Intrusion prevention can block attacks in real time.
  • D. Intrusion prevention is a new type of security technology that can detect and prevent intrusions.

Answer: A

 

NEW QUESTION 116
Which of the following descriptions about scanning and snooping attacks is wrong?

  • A. Scanning attacks include address scanning and port scanning.
  • B. When a worm breaks out, it is generally accompanied by an address scan attack, so scanning attacks are aggressive.
  • C. It is usually the network detection behavior before the attacker launches a real attack.
  • D. The source address of the scanning attack is real, so you can use the method of directly adding a blacklist for defense.

Answer: B

 

NEW QUESTION 117
......

Guaranteed Success with H12-722 Dumps: https://www.testkingpass.com/H12-722-testking-dumps.html

Related Articles

more
Huawei H12-722 Certification Practice Exam