Improved HCIA-Security V3.0 H12-711_V3.0 Exam Engine

NEW QUESTION 1

An employee of a company accesses the internal web server of the company through the firewall, and can open the web page of the website by using a browser, but the accessibility of the web server is tested by using the Pina command, and it shows that it is unreachable. What are the possible reasons? ( )[Multiple choice]

• A. The security policy deployed on the firewall allows the TCP protocol, but not the ICMP protocol
• B. The interface of the firewall connecting to the server is not added to the security zone
• C. The security policy deployed on the firewall allows the HTTP protocol, but not the ICMP protocol
• D. WEB server is down

Answer: A

NEW QUESTION 2

During the use of the server, there are various security threats. Which of the following options is not a server security threat?

• A. natural disaster
• B. DDosattack
• C. hacker attack
• D. malicious program

Answer: A

NEW QUESTION 3

On the surface, threats such as viruses, loopholes, and Trojan horses are the causes of information security incidents, but at the root, information security incidents are also closely related to people and the information system itself.

• A. True
• B. False

Answer: A

NEW QUESTION 4

Usually we divide servers into two categories: general-purpose servers and functional servers. Which of the following options meets this classification standard?

• A. By application level
• B. By use
• C. By shape
• D. By Architecture

Answer: B

NEW QUESTION 5

Which of the following areFTPThe standard port number of the protocol? (multiple choice)

• A. 20
• B. twenty one
• C. twenty three
• D. 80

Answer: AB

NEW QUESTION 6

If the administrator uses the defaultdefaultThe authentication domain verifies the user, and the user only needs to enter the user name when logging in; if the administrator uses the newly created authentication domain to authenticate the user, the user needs to enter the user name when logging in."username@Certified domain name"

• A. True
• B. False

Answer: A

NEW QUESTION 7

firewallGE1/0/1andGE1/0/2mouth belongs toDMZarea, if you want to implementGE1/0/1The connected area is accessibleGE1/0/2Connected area, which of the following is correct?

• A. needs to be configuredLocalarriveDMZsecurity policy
• B. No configuration required
• C. Interzone security policy needs to be configured
• D. needs to be configuredDMZarrivelocalsecurity policy

Answer: B

NEW QUESTION 8

existVRRP(Virtual Router Redundancy Protocol) group, the primary firewall regularly sends notification messages to the backup firewall, and the backup firewall is only responsible for monitoring notification messages and will not respond

• A. True
• B. False

Answer: A

NEW QUESTION 9

An engineer needs to back up the firewall configuration. Now he wants to use a command to view all the
current configurations of the firewall. May I ask the command he uses is _____ [fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 10

Which of the following statements about the patch is incorrect?

• A. A patch is a small program made by the original author of the software for a discovered vulnerability
• B. Not patching does not affect the operation of the system, so whether patching is irrelevant or not.
• C. Patches are generally updated continuously.
• D. Computer users should download and install the latest patches in a timely manner to protect their systems

Answer: B

NEW QUESTION 11

at HuaweiUSGOn a series device, the administrator wants to wipe the configuration file, which of the following commands is correct?

• A. clear saved-configuration
• B. reset saved-configuration
• C. reset current-configuration
• D. reset running-configuration

Answer: B

NEW QUESTION 12

Because the server is a kind of computer, we can use our personal computer as a server in the enterprise.

• A. True
• B. False

Answer: B

NEW QUESTION 13

Using the ______ method of the Web proxy, the virtual gateway will encrypt the real URL that the user wants to access, and can adapt to different terminal types.[fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 14

Digital signature is to generate digital fingerprint by using hash algorithm, so as to ensure the integrity of data transmission

• A. True
• B. False

Answer: A

NEW QUESTION 15

According to the logical architecture of the HiSec solution, please drag the HiSec solutions on the left to the right box and arrange them in order from top to bottom

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 16

waiting for insurance2.0Which one of the stipulations"Spam should be detected and protected at key network nodes, and spam protection mechanisms should be upgraded and updated?

• A. Malicious code prevention
• B. communication transmission
• C. Centralized control
• D. Border Protection

Answer: A

NEW QUESTION 17

Manual auditing is a supplement to tool evaluation, it does not require any software to be installed on the target system being evaluated, and has no impact on the operation and status of the target system. Which of the following options is not included in the content of a manual audit?

• A. Manual detection of the host operating system
• B. Manual inspection of the database
• C. Manual inspection of network equipment
• D. Manual inspection of the administrator's process for operating equipment

Answer: D

NEW QUESTION 18

The administrator wishes to clear the current session table. Which of the following commands is correct? (
)[Multiple choice]*

• A. display session table
• B. display firewall session table
• C. reset firewall session table
• D. clear firewall session table

Answer: C

NEW QUESTION 19

existUSGConfigure on the system firewallNAT Server, will produceserver-mapTable, which of the following is not part of this representation?

• A. PurposeIP
• B. destination port number
• C. agreement number
• D. sourceIP

Answer: D

NEW QUESTION 20

Which of the following is not the default security zone of the firewall ( )[Multiple choice]*

• A. untrust trust
• B. trust zone
• C. dmz zone
• D. isp zone)

Answer: D

NEW QUESTION 21
......