[Jan 29, 2022] New Real H12-722 Exam Dumps Questions
Pass Your H12-722 Exam Easily with Accurate HCIP-Security-CSSN(Huawei Certified ICT Professional -Constructing Service Security Network) PDF Questions
NEW QUESTION 54
The IPS function of Huawei USG6000 supports two response methods: blocking and alarming.
- A. True
- B. False
Answer: A
NEW QUESTION 55
For the basic mode of HTTP Flood Source authentication, which of the following are the correct descriptions? (Multiple choices)
- A. The basic mode will not affect the user experience, so the defense effect is higher than the enhanced mode.
- B. The basic mode effectively blocks access from non-browser clients.
- C. The zombie tool does not implement a complete HTTP protocol stack and does not support automatic redirection. Therefore, the basic mode can effectively defend against HTTP flood attacks.
- D. When there is an HTTP proxy server in the network, the firewall will add the proxy server IP address to the whitelist, but the basic source authentication of the zombie host is still valid.
Answer: B,C
NEW QUESTION 56
URL filtering technology can perform URL access control on users according to different time objects and address objects to achieve precise management of users.
The purpose of the Internet behavior.
- A. True
- B. False
Answer: A
NEW QUESTION 57
When configure the URL filtering configuration file, www.bt.com is configured in the URL blacklist, and URL is set to *bt.com in the custom URL classification, and the action for customizing the URL classification is warning. .
Which of the following statements is true about the above configuration? (Multiple choices)
- A. Users can visit www.bt.com website, but administrators will receive warning message.
- B. Users can visit www.videobt.com.
- C. Users can't access all websites ending with bt.com.
- D. Users will be blocked when they visit www.bt.com.
Answer: B,D
NEW QUESTION 58
What content can be filtered by the content filtering technology of Huawei USG6000? (Multiple choice)
- A. Voice content filtering
- B. Application content filtering
- C. Video content filtering
- D. File content filtering
Answer: B,D
NEW QUESTION 59
For special message attacks, which of the following option descriptions is correct?
- A. The attacker probes the network structure by sending special control messages to launch a real attack.
- B. Special control message attacks do not have the ability to detect the network structure. Only scanning attacks can detect the network.
- C. Special control message items can only use ICMP to construct attack messages.
- D. Special control packet attack is a potential attack and does not have direct destructive behavior
Answer: D
NEW QUESTION 60
Regarding the 3 abnormal situations of the file type recognition result, which of the following option descriptions is wrong?
- A. Unrecognized file type means that the file type cannot be recognized and there is no file extension.
- B. Unrecognized file type means that the file type cannot be recognized, and the file extension cannot be recognized.
- C. File damage means that the file type cannot be identified because the file is damaged.
- D. File extension mismatch means that the file type is inconsistent with the file extension.
Answer: B
NEW QUESTION 61
The administrator has configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not allowed Can the reason?
- A. File filtering configuration file is incorrect
- B. License is not activated.
- C. The action configuration of the file extension does not match is incorrect
- D. The file filtering configuration file is not referenced in the security policy
Answer: C
NEW QUESTION 62
Malicious code usually uses RootKit technology to hide itself. RootKit modifies the kernel of the system by loading special drivers to hide itself and specific files.
- A. TRUE
- B. FALSE
Answer: A
NEW QUESTION 63
After the user deploys the firewall anti-virus strategy, there is no need to deploy anti-virus software
- A. True
- B. False.
Answer: B
NEW QUESTION 64
Viruses can damage computer systems and falsify or damage business data: Spyware collects, use and disseminate sensitive information from employees. These malicious software seriously interfere with the normal business operations of enterprises. Desktop anti-virus software can solve the problem of viruses and spyware globally.
- A. True
- B. False
Answer: B
NEW QUESTION 65
With regard to traditional firewalls, which of the following statements are correct? (Multiple choice)
- A. Can quickly adapt to changes in threats.
- B. It is unable to effectively resist the spread of viruses from the Internet to the internal network.
- C. Lack of effective protection against application layer threats.
- D. Cannot accurately control various applications such as P2P, online games, etc.
Answer: B,C,D
NEW QUESTION 66
Which of the following options is correct for the description of the Anti DDoS system configuration?
- A. Configure drainage and re-injection on the testing equipment.
- B. Configure drainage and re-injection on the management center.
- C. Configure port mirroring on the cleaning device.
- D. Add protection objects on the management center.
Answer: D
NEW QUESTION 67
Which of the following options are common behavioral characteristics of viruses? (multiple choices)
- A. Network attack characteristics
- B. Download and backdoor features
- C. Information collection characteristics
- D. Self-hidden features
Answer: A,B,C,D
NEW QUESTION 68
Which of the following options is not a defense against HTTP Flood attacks?
- A. URI source fingerprint learning function
- B. Baseline learning
- C. HTTP Flood source authentication
- D. HTTP source statistics
Answer: B
NEW QUESTION 69
In the deployment of Huawei NIP6000 products, only port mirroring can be used for streaming replication.
- A. True
- B. False
Answer: B
NEW QUESTION 70
......
Updated H12-722 Exam Practice Test Questions: https://www.passleader.top/Huawei/H12-722-exam-braindumps.html