• Home
  • Articles
  • Online Questions - Valid Practice To your H12-711-ENU Exam (Updated 290 Questions) [Q80-Q95]

Online Questions - Valid Practice To your H12-711-ENU Exam (Updated 290 Questions) [Q80-Q95]

Share

Online Questions - Valid Practice To your H12-711-ENU Exam (Updated 290 Questions)

Practice To H12-711-ENU - Remarkable Practice On your HCIA-Security V3.0 Exam

NEW QUESTION 80
Which of the following belongs to Layer 2 VPN technology?

  • A. L2TP VPN
  • B. IPSec VPN
  • C. SSL VPN
  • D. GRE VPN

Answer: A

 

NEW QUESTION 81
Which of the following are key elements of information security prevention? (Multiple choice)

  • A. Security operation and management
  • B. Asset management
  • C. Security products and technologies
  • D. Personnel

Answer: A,B,C,D

 

NEW QUESTION 82
Both A and B communicate data. If an asymmetric encryption algorithm is used for encryption, when A sends data to B, which of the following keys will be used for data encryption?

  • A. B public key
  • B. B private key
  • C. A private key
  • D. A public key

Answer: A

 

NEW QUESTION 83
Which of the following descriptions is wrong about the root CA certificate?

  • A. Signature is generated by CA public key encryption
  • B. The certificate subject name is CA.
  • C. Public key information is the public key of the CA
  • D. The issuer is CA

Answer: A

 

NEW QUESTION 84
Which of the following options can be used in the advanced settings of Windows Firewall? (Multiple choice)

  • A. Set connection security rules
  • B. Change notification rules
  • C. Restore defaults
  • D. Set out inbound rules

Answer: A,B,C,D

 

NEW QUESTION 85
Which of the following descriptions of the firewall fragment cache function are correct? (Multiple choice)

  • A. After the fragmented packet is directly forwarded, the firewall forwards the fragment according to the interzone security policy if it is not the fragmented packet of the first packet.
  • B. By default, the number of large fragment caches of an IPV4 packet is 32, and the number of large fragmentation buffers of an IPV6 packet is 255.
  • C. For fragmented packets, NAT ALG does not support the processing of SIP fragmented packets.
  • D. By default, the firewall caches fragmented packets.

Answer: B,C,D

 

NEW QUESTION 86
Against IP Spoofing, which of the following description is wrong?

  • A. An attacker would need to disguise the source IP addresses as trusted hosts, and send the data segment with the SYN flag request for connection
  • B. The hosts based on IP address's trust relationship can login directly without entering password verification
  • C. IP spoofing is to use the hosts' normal trust relationship based on the IP address to launch it
  • D. After IP spoofing attack is successful, the attacker can use forged any IP address to imitate legitimate host to access to critical information

Answer: D

 

NEW QUESTION 87
Evidence identification needs to resolve the integrity verification of the evidence and determine whether it meets the applicable standards. Which of the following statements is correct about the standard of evidence identification?

  • A. Objective standard means that the acquisition, storage, and submission of electronic evidence should be legal, and the basic rights such as national interests, social welfare, and personal privacy are not strictly violated.
  • B. Relevance criterion means that if the electronic evidence can have a substantial impact on the facts of the case to a certain extent, the court should determine that it is relevant.
  • C. Legality standard is to ensure that the electronic evidence is collected from the initial collection, and there is no change in the content of the evidence submitted as evidence.
  • D. Fairness standard refers to the evidence obtained by the legal subject through legal means, which has the evidence ability.

Answer: B

 

NEW QUESTION 88
Which of the following descriptions are correct about the buffer overflow attack? (Multiple Choice)

  • A. Buffer overflow attacks are not related to operating system vulnerabilities and architectures
  • B. Buffer overflow attack belongs to application layer attack behavior
  • C. Buffer overflow attack is the use of software system for memory operation defects, running attack code with high operation authority
  • D. Buffer overflow attacks are the most common method of attacking software systems.

Answer: B,C,D

 

NEW QUESTION 89
Which of the following is the encryption technology used by digital envelopes?

  • A. Symmetric encryption algorithm
  • B. Stream encryption algorithm
  • C. Hash algorithm
  • D. Asymmetric encryption algorithm

Answer: D

 

NEW QUESTION 90
About the descriptions of windows Firewall Advanced Settings, which of the following is wrong? (Multiple choice)

  • A. When setting the pop-up rule, only the local port can be restricted, and the remote port cannot be restricted.
  • B. When setting the pop-up rule, both local ports and remote ports can be restricted.
  • C. When setting the stacking rule, only the local port can be restricted, and the remote port cannot be restricted.
  • D. When setting the stacking rule, both the local port and the remote port can be restricted.

Answer: B,D

 

NEW QUESTION 91
Which of the following are correct regarding the matching conditions of the security policy? (Multiple choice)

  • A. "The source security zone" is an optional parameter in the matching condition.
  • B. "Time period" in the matching condition is an optional parameter
  • C. "Apply" in the matching condition is an optional parameter
  • D. "Service" is an optional parameter in the matching condition

Answer: A,B,C,D

 

NEW QUESTION 92
IPSec VPN uses an asymmetric encryption algorithm to encrypt the transmitted data.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 93
When the USG series firewall hard disk is in place, which of the following logs can be viewed? (Multiple Choice)

  • A. Business log
  • B. Alarm information
  • C. Operation log
  • D. Threat log

Answer: A,B,C,D

 

NEW QUESTION 94
Which of the following descriptions about the action and security profile of the security policy are correct? (Multiple choice)

  • A. If the action of the security policy is "prohibited", the device will discard this traffic, and then no content security check will be performed.
  • B. If the security policy action is "Allow", the traffic will not match the security profile.
  • C. The security profile may not be applied to the security policy that the action is allowed and take effect.
  • D. The security profile must be applied to the security policy that is allowed to take effect.

Answer: A,D

 

NEW QUESTION 95
......

True H12-711-ENU Exam Extraordinary Practice For the Exam: https://www.2pass4sure.com/HCNA-Security/H12-711-ENU-actual-exam-braindumps.html

Related Articles

more
Huawei H12-711-ENU Certification Practice Exam