[Q57-Q82] H12-722_V3.0 Certification Exam Dumps Questions in here [Jan-2022]

H12-722_V3.0 Certification Exam Dumps Questions in here [Jan-2022]

Updated H12-722_V3.0 Exam Practice Test Questions

NEW QUESTION 57
Regarding the sequence of file filtering technology processing flow, which of the following is correct?
(1) The security policy is applied as permit
(2) Protocol decoding
(3) File type recognition
(4) Application recognition
(5) File filtering

• A. (1)(4)(2)(3)(5)
• B. (1)(2)(4)(3)(5)
• C. (1)(3)(2)(4)(5)
• D. (1)(2)(3)(4)(5)

Answer: A

 

NEW QUESTION 58
For the description of the principles of HTTP Flood and HTTPS Flood blow defense, which of the following options are correct? (multiple choice)

• A. HTTPS Flood defense can perform source authentication by limiting the request rate of packets.
• B. The principle of HTTPS Flood attack is to request URIs involving database operations or other URIs that consume system resources, causing server resource consumption.
  Failed to respond to normal requests.
• C. HTTPS Flood defense modes include basic mode, enhanced mode and 302 redirection.
• D. The principle of HTTPS Flood attack is to initiate a large number of HTTPS connections to the target server, causing the server resources to be exhausted and unable to respond to regular requests.
  begging.

Answer: A,B,D

 

NEW QUESTION 59
Among the following options, which attack is a malformed packet attack based on the TCR protocol?

• A. Ping of Death attack
• B. IP Spoofng attack
• C. Land attack
• D. Teardrop attack

Answer: C

 

NEW QUESTION 60
The administrator has configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not allowed Can the reason?

• A. The action configuration of the file extension does not match is incorrect
• B. The file filtering configuration file is not referenced in the security policy
• C. License is not activated.
• D. File filtering configuration file is incorrect

Answer: A

 

NEW QUESTION 61
Which of the following signature attributes cannot be configured for IP custom signature?

• A. Agreement
• B. Direction
• C. ID
• D. Message length

Answer: D

 

NEW QUESTION 62
Which of the following options is not a feature of Trojan horses?

• A. Not self-replicating but parasitic
• B. Trojans self-replicate and spread
• C. The ultimate intention is to steal information and implement remote monitoring
• D. Actively infectious

Answer: D

 

NEW QUESTION 63
Which of the following options is not a feature of big data technology?

• A. The data boy is huge
• B. Slow processing speed
• C. Low value density
• D. A wide variety of data

Answer: B

 

NEW QUESTION 64
Which of the following types of attacks are DDoS attacks? 2I

• A. Single packet attack
• B. Malformed message attack
• C. Snooping scan attack
• D. Floating child attack

Answer: D

 

NEW QUESTION 65
Regarding the global configuration of file filtering configuration files for Huawei USG6000 products, which of the following descriptions is correct?

• A. When the file extension does not match, if the action is "Allow" or "Alarm", file filtering, content filtering and anti-virus are performed according to the file type Detection.
• B. File filtering, content filtering and anti-virus detection cannot be performed when the file is damaged. At this time, the documents can be released or blocked according to business requirements.
• C. When the number of compression layers of a file is greater than the configured "Maximum Decompression Layers", the firewall cannot filter the file.
• D. When the file type cannot be recognized, file filtering, content filtering and anti-virus detection are not performed.

Answer: C

 

NEW QUESTION 66
SQI Server2005 may not be properly installed, which of the following may be the possible reasons?

• A. The operating system is Microsoft Windows Server 2003
• B. without prior installation of Microsoft SQL Server 2005 Toolkit
• C. equipment 21 port is occupied
• D. 1433 port are occupied by the other processes

Answer: D

 

NEW QUESTION 67
For compressed files, the virus detection system can directly detect them.

• A. True
• B. False

Answer: A

 

NEW QUESTION 68
Which of the following options is wrong for the description of the cleaning center?

• A. Re-injection methods include: policy route re-injection, static route re-injection, VVPN back-injection and layer 2 same.
• B. The cleaning center completes the functions of drainage, cleaning, and re-injection of the flow after cleaning in the abnormal flow.
• C. The cleaning equipment supports rich and flexible attack prevention technologies, but it is ineffective against cc attacks and ICMP Flood attacks.
• D. There are two types of drainage methods: static drainage and dynamic drainage.

Answer: C

 

NEW QUESTION 69
Which of the following threats cannot be detected by IPS?

• A. Spam
• B. DoS
• C. Worms
• D. Virus

Answer: A

 

NEW QUESTION 70
What equipment do Policy Center supported servers include? (Choose 3 answers)

• A. remote control device
• B. Internet behavior management equipment
• C. mail server
• D. log collection server

Answer: A,B,C

 

NEW QUESTION 71
Huawei's USG000 product can identify the true type of common files and over-check the content. Even if the file is hidden in a compressed file, or change the extension The name of the exhibition can't escape the fiery eyes of the firewall.

• A. True
• B. False

Answer: A

 

NEW QUESTION 72
Regarding the processing flow of file filtering, which of the following statements is wrong?

• A. After the file decompression fails, the file will still be filtered. .
• B. The application identification module can identify the type of application that carries the file.
• C. Protocol decoding is responsible for analyzing the file data and file transmission direction in the data stream.
• D. The file type recognition module is responsible for identifying the true type of the file and the file extension based on the file data

Answer: A

 

NEW QUESTION 73
Under the CLI command, which of the following commands can be used to view the AV engine and virus database version?

• A. display utm version
• B. display av utm version
• C. display version av-sdb
• D. display utm av version

Answer: C

 

NEW QUESTION 74
Anti DDoS seven-layer defense can work from the dimensions of interface-based defense, global defense and defense object-based defense.

• A. True
• B. False

Answer: A

 

NEW QUESTION 75
Regarding firewall and IDS, which of the following statements is correct?

• A. The firewall is a bypass device, used for fine-grained detection
• B. IDS is a straight line equipment and cannot be used for in-depth inspection
• C. The firewall cannot detect malicious operations or misoperations by insiders
• D. IDS cannot be linked with firewall

Answer: C

 

NEW QUESTION 76
Regarding the description of file reputation technology in anti-virus engines, which of the following options is correct?

• A. File reputation database update and upgrade can only be achieved through linkage with sandbox
• B. File reputation database can only be upgraded by manual upgrade
• C. File reputation is to perform virus detection by calculating the full text MD5 of the file to be tested and matching it with the local reputation MD5 cache
• D. Local reputation MD5 cache only has static cache, which needs to be updated regularly

Answer: C

 

NEW QUESTION 77
Regarding the processing process of file overwhelming, which of the following statements is correct?

• A. If the file type is a compressed file, then after the file filtering check, the female file will be sent to the file decompression module for decompression and decompression.
  Press out the original file. If the decompression fails, the file will not be re-filed.
• B. The file filtering module will compare the application type, file type, and transmission direction of the file identified by the previous module with the file filtering rules configured by the administrator.
  Then the lookup table performs matching from top to bottom.
• C. If all the parameters of Wenzhu can match all file filtering rules, then the module will execute the action of this file filtering rule.
• D. There are two types of actions: warning and blocking.

Answer: C

 

NEW QUESTION 78
Which of the following options belong to the upgrade method of the anti-virus signature database of Huawei USG6000 products? (multiple choice)

• A. Local upgrade
• B. Automatic upgrade
• C. Manual upgrade
• D. Online upgrade

Answer: A,D

 

NEW QUESTION 79
IPS is an intelligent intrusion detection and defense product. It can not only detect the occurrence of intrusions, but also can respond in real time through certain response methods.
Stop the occurrence and development of intrusions, and protect the information system from substantial attacks in real time. According to the description of PS, the following items are wrong?

• A. IPS unifies IDS and firewall
• B. IPS is an intrusion detection system that can block real-time intrusions when found
• C. IPS must use bypass deployment in the network
• D. Common IPS deployment modes are in-line deployment,

Answer: C

 

NEW QUESTION 80
Viruses can damage computer systems. v Change and damage business data: spyware collects, uses, and disperses sensitive information of corporate employees.
These malicious pastoral software seriously disturb the normal business of the enterprise. Desktop anti-disease software can solve the problem of central virus and indirect software from the overall situation.

• A. False
• B. True

Answer: A

 

NEW QUESTION 81
Regarding the description of intrusion detection technology, which of the following statements is correct?

• A. Unable to find traces of the system being attacked.
• B. It is impossible to detect violations of security policies.
• C. is an active and static security defense technology.
• D. It can detect all kinds of authorized and unauthorized intrusions.

Answer: D

 

NEW QUESTION 82
......

Pass HCIP-Security H12-722_V3.0 Exam With 189 Questions: https://guidetorrent.dumpstorrent.com/H12-722_V3.0-exam-prep.html