Free to study H12-711-ENU HCNA-Security-CBSN exam questions online

The H12-711-ENU HCNA-Security-CBSN exam covers network security basis, firewall basis such as package filter, NAT, etc. and VPN technologies such as IPSec, SSL etc., as well as their implementation in Huawei firewall products, firewall user management technology, UTM technology and implementation and also terminal security with security policy configurations.

HCNA-Security H12-711-ENU exam questions are good for you to test well. It is free.

1. ASPF technology enables the firewall to support multi-channel protocols such as FTP, at the same time can also formulate the corresponding security strategy for complex applications.

2. Wildcard mask and subnet mask formats are similar, but values have different meanings, in wildcard mask, 1 indicates that the corresponding IP address bits need to compare, 0 indicates that the corresponding IP address bits to ignore comparisons.

3. The following description of the contents of the each stage of the SSL handshake protocol, which is wrong?

4. Under the USG series fire Trust region view configuration add interface GigabitEthernet0/0/1, GigabitEthernet0/0/1 no longer belongs to the Local area.

5. Suitable traveler access to the corporate intranet VPN under way in the public network environment: (multiple choice)

6. Intrusion prevention system technical characteristics include (multiple choice)

7. SVN products extend the network function, the need to implement the user can only access the remote enterprise Intranet, cannot access to the local LAN and the Internet, you need to use the client routing is:

8. Web redirection password authentication function, only the user for the purpose of the port is 80 HTTP business visit, the system only support the "Redirect" to the authentication page for session authentication.

9. For MAC address spoofing attack, which description is error?

10. In the GRE configuration environment, under the Tunnel interface mode, Destination address generally refers to:

11. SSL VPN which can through the following ways for access control to the user.(multiple choice)

12. In USG series firewall, use non-well-known port provides well-known application service, can adopt the following techniques:

13. The following features which option does not belong to AH can realize?

14. Typical remote authentication mode are 🙁 multiple choice)

15. Which of the following does not belong to the network security threats?

16. For IPsec, IKE protocol can provide auto-negotiation key exchange and create security associations, in order to simplify the use and management of IPsec.

17. Firewall Gateway Anti-Virus Response includes alerting and blocking, the way in which the alarm device only generates a log, sent out without processing on HTTP protocol to transmit the document: blocking the way equipment is disconnected from the HTTP server and block files, push Web pages to the client and generates logs.

18. Huawei Redundancy Protocol, used to connect the main firewall configuration and connection status and other data on the backup firewall to synchronize, which of the following options do not belong to the scope of sync?

19. Take the initiative to attack the most important feature is to listen information, to obtain confidential information, while the data owner or legitimate user, this kind of activities can not know.

20. Which of the following is non-symmetric encryption algorithm?


 

View and test H20-651-ENU HCS-Field-Server Practice Exam Questions
Huawei HCNP H31-431-ENU exam questions online

Add a Comment

Your email address will not be published. Required fields are marked *