FREE H12-721 HCNP-Security-CISN V3.0 exam dumps questions

1. Man-in-the-middle attack means that the middleman completes the data exchange between the server and the client. In the server's view, all the messages are from or sent to the client; in the client's view, all the messages are also from or sent to the server side. If a hacker uses a man-in-the-middle attack, the hacker will send at least two packets as shown to implement the attack.


The following descriptions are about the packet 1 and the packet 2 fields, which is correct? (Choose 2 Answers)

2. In an Eth-Trunk interface, traffic load balancing can be achieved by configuring different weights on each member link.

3. SSL VPN authentication landing is not successful, and prompted "wrong user name or password", which option is wrong?

4. SSL works in the application layer and encrypts for specific applications, but which layer the IPsec works in and provides the transparent encryption protection for the layer and above?

5. In the following virtual firewall networking, the USG Unified Security Gateway provides rental services, VPN instance wfw1 is rented to enterprise A, and the networking diagram is as follows.
Enterprise A extranet user's PC C needs to access the Enterprise A extranet DMZ zone server B through NAT, if want to achieve the requirement, which of the following key configuration must do? (Select 3 Answers)

6. Dual hot standby load sharing service interface works in the three-layer, up and down to connect the router, two USG devices are the main and standby switched, so the upper and lower business interface needs to configure both hrp track master and hrp track slave.

7. IP-link sends a probe packet to the specified IP address. By default, after the three failures detection, the link to the IP address is considered to be faulty.

8. IPsec VPN at both ends of the firewall can not establish successfully, what are the possible reasons? (Choose 3 Answers)

9. The testing center is responsible for the detection of traffic, sent the inspection results to the management center, issued drainage strategy by the management center to the cleaning center for drainage cleaning.

10. Which of the following does belong to the scan spy attack?

11. What are the following VPN protocols that do not provide encryption? (Choose 3 Answers)

12. Huawei Secoway VPN client initializes the L2TP connection. The L2TP packet source port is port 1701 and the destination port is port 1701.

13. What are the possible causes of the failure when the user logs into the virtual gateway Web page, the message prompts "Can not display the page"? (Choose 2 Answers)

14. Analyze on the firewall according to the following information


Which of the following answer is correct? (Choose 3 Answers)

15. On the Radius protocol, which of the following statements are correct? (Select 3 Answers)

16. When an attack occurs, when found a lot of data packets as shown in the figure on the attacked host (1.1.129.32), according to the analysis, what kind of the attack is?

17. Terminate the invasion
Which one of the following interaction sequences is correct?

18. An administrator checks the IPsec status information and Debug information as follows, what is the most likely fault?

19. The PCA in the Trust zone is 192.168.3.1 and can not access the Internet server in the Untrust zone.
Check that the configuration between the Trust and Untrust domains is as follows: What is the most likely cause of the failure?

20. Which of the following is the disadvantage of L2TP VPN?