• Home
  • Articles
  • [2021] H12-722_V3.0 Answers H12-722_V3.0 Free Demo Are Based On The Real Exam [Q108-Q132]

[2021] H12-722_V3.0 Answers H12-722_V3.0 Free Demo Are Based On The Real Exam [Q108-Q132]

Share

[2021] H12-722_V3.0 Answers H12-722_V3.0 Free Demo Are Based On The Real Exam

H12-722_V3.0 [Dec-2021 Newly Released] Exam Questions For You To Pass

NEW QUESTION 108
Which of the following elements does PDCA include? (Choose 3 answers)

  • A. Implementation
  • B. Plan
  • C. termination
  • D. Monitoring

Answer: A,B,D

 

NEW QUESTION 109
IPS is an intelligent intrusion detection and defense product. It can not only detect the occurrence of intrusions, but also can respond in real time through certain response methods.
Stop the occurrence and development of intrusions, and protect the information system from substantial attacks in real time. According to the description of PS, the following items are wrong?

  • A. IPS unifies IDS and firewall
  • B. Common IPS deployment modes are in-line deployment,
  • C. IPS is an intrusion detection system that can block real-time intrusions when found
  • D. IPS must use bypass deployment in the network

Answer: D

 

NEW QUESTION 110
The network-based intrusion detection system is mainly used to monitor the information of the critical path of the network in real time, listen to all packets on the network, collect data, and divide Analyze the suspicious object, which of the following options are its main features? (multiple choices)

  • A. Need a lot of monitors.
  • B. It can detect the source address and destination address, identify whether the address is illegal, and locate the real intruder.
  • C. Good concealment, the network-based monitor does not run other applications, does not provide network services, and may not respond to other computers, so Not vulnerable to attack.
  • D. The monitoring speed is fast (the problem can be found in microseconds or seconds, and the host-based DS needs to take an analysis of the audit transcripts in the last few minutes

Answer: C,D

 

NEW QUESTION 111
The realization of content security filtering technology requires the support of the content security combination license.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 112
Single-packet attacks are divided into scanning and snooping attacks, malformed packet attacks, and special packet attacks. Ping of death is a special packet attack.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 113
Huawei NIP6000 products provide carrier-class high-reliability mechanisms from multiple levels to ensure the stable operation of equipment.
Which of the following options belong to the network reliability? (multiple choice)

  • A. Power supply. 1+1 redundant backup
  • B. Dual machine hot backup
  • C. Hardware Bypass
  • D. Link-group

Answer: B,D

 

NEW QUESTION 114
Since the sandbox can provide a virtual execution environment to detect files in the network, the sandbox can be substituted when deploying security equipment Anti-Virus, IPS, spam detection and other equipment.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 115
Which of the following threats cannot be detected by IPS?

  • A. Virus
  • B. DoS
  • C. Spam
  • D. Worms

Answer: C

 

NEW QUESTION 116
Which of the following options are common reasons for IPS detection failure? (multiple choices)

  • A. The IPS function is not turned on
  • B. False Policy IDs are associated with IPS policy domains
  • C. Bypass function is closed in IPS
  • D. IPS policy is not submitted for compilation

Answer: A,B,D

 

NEW QUESTION 117
Regarding the network intrusion detection system (NIDS), which of the following statements is wrong?

  • A. Use the newly received network packet as the data source;
  • B. It is mainly used for real-time monitoring of the information of the critical path of the network, listening to all packets on the network, collecting data, and analyzing suspicious objects
  • C. Used to monitor network traffic, and can be deployed independently.
  • D. Real-time monitoring through the network adapter, and analysis of all communication services through the network;

Answer: A

 

NEW QUESTION 118
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an offensive behavior? (multiple choice)

  • A. The DF bit is 1, and Fragment Ofset + Length <65535.
  • B. DF, bit is down, and MF bit is also 1 or Fragment Offset is not 0,
  • C. DF bit is 0, and Fragment Offset + Length> 65535.
  • D. DF bit is 023, MF bit is 1 or Fragment Offset is not 0,

Answer: B,C

 

NEW QUESTION 119
When a data file hits the whitelist of the firewall's anti-virus module, the firewall will no longer perform virus detection on the file.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 120
When configuring the terminal visits, we put some equipment configured exception equipment ,which of the following statements are true about the exception equipment?

  • A. terminal in isolation domain can not access exception equipment .
  • B. the exception equipment IP is not in controlled network segment.
  • C. only through security authentication terminals can access exception equipment.
  • D. through identity authentication terminals can access exception equipment.

Answer: B,D

 

NEW QUESTION 121
The analysis and processing capabilities of traditional firewalls at the application layer are weak, and they cannot correctly analyze malicious codes that are mixed in the flow of allowed application teaching: many Attacks or malicious behaviors often use the firewall's open application data flow to cause damage, causing application layer threats to penetrate the firewall

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 122
After enabling the IP policy, some services are found to be unavailable. Which of the following may be caused by? (multiple choice)

  • A. Only packets in one direction pass through the firewall
  • B. The same message passes through the firewall multiple times
  • C. IPS underreporting
  • D. Excessive traffic causes the Bypass function to be enabled

Answer: A,B

 

NEW QUESTION 123
An enterprise administrator configures a Web reputation website in the form of a domain name, and configures the domain name as www. abc; example. com. .
Which of the following is the entry that the firewall will match when looking up the website URL?

  • A. www.abc. example
  • B. www. abc. example. com
  • C. example. com
  • D. example

Answer: D

 

NEW QUESTION 124
In the big data intelligent security analysis platform, it is necessary to collect data from data sources, and then complete a series of actions such as data processing, detection and analysis, etc.
Which of the following options does not belong to the action that needs to be completed in the data processing part?

  • A. Distributed index
  • B. Threat determination
  • C. Data preprocessing
  • D. Distributed storage

Answer: B

 

NEW QUESTION 125
For compressed files, the virus detection system can directly detect them.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 126
Which of the following iterations is correct for the description of the management center?

  • A. The management server of the management center is responsible for the cleaning of abnormal flow, as well as the collection and analysis of business data, and storage, and is responsible for the summary The stream is reported to the management server for report presentation.
  • B. The data coking device is responsible for the cleaning of abnormal flow, the centralized management and configuration of equipment, and the presentation of business reports.
  • C. The management center is divided into two parts: management server and teaching data collector.
  • D. The data collector and management server support distributed deployment and centralized deployment.
    Centralized deployment has good scalability.

Answer: C

 

NEW QUESTION 127
Which of the following technology, administrators can according to business requirements, to scale to achieve load sharing of business flow?

  • A. weighting mechanism
  • B. Resource pool mechanism
  • C. Hot Standby
  • D. load balancing

Answer: A,B

 

NEW QUESTION 128
Which of the following features does Huawei NIP intrusion prevention equipment support? (multiple choice)

  • A. Application identification and control
  • B. Virtual patch
  • C. SSL traffic detection
  • D. Mail detection

Answer: A,B,C

 

NEW QUESTION 129
For full encryption registered mobile storage devices must be formatted to normal use in not installed NAC client terminal host.

  • A. FALSE
  • B. TRUE

Answer: B

 

NEW QUESTION 130
The administrator has configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not allowed Can the reason?

  • A. The action configuration of the file extension does not match is incorrect
  • B. License is not activated.
  • C. The file filtering configuration file is not referenced in the security policy
  • D. File filtering configuration file is incorrect

Answer: A

 

NEW QUESTION 131
Which of the following is the correct configuration idea for the anti-virus strategy?
1. Load the feature library
2. Configure security policy and reference AV Profile
3. Apply and activate the license
4. Configure AV Profile
5. Submit

  • A. 3->1->4->2->5
  • B. 3->2->1->4->5
  • C. 3->2->4->1->5
  • D. 3->1->2->4->5

Answer: A

 

NEW QUESTION 132
......

New 2021 Realistic Free Huawei H12-722_V3.0 Exam Dump Questions & Answer: https://measureup.preppdf.com/Huawei/H12-722_V3.0-prepaway-exam-dumps.html

Related Articles

more
Huawei H12-722_V3.0 Certification Practice Exam