IT認証試験問題集
毎月、ITshikenは1500人以上の受験者が試験準備を助けて、試験に合格するために受験者にご協力します
 ホームページ / H12-711 問題集  / H12-711 問題練習

Huawei H12-711 問題練習

HCIA-Security(Huawei Certified ICT Associate -Security) 試験

最新更新時間: 2019/07/10,合計19問。

平成から令和へ:H12-711 最新真題を買う時、日本語版と英語版両方を同時に獲得できます。

実際の問題集を練習し、試験のポイントを了解し、テストに申し込むするかどうかを決めることができます。

さらに試験準備時間の35%を節約するには、H12-711 問題集を使用してください。

 / 2

Question No : 1
Which of the following does not belong to the AES secret key length?

正解:

Question No : 2
The attacker by sending ICMP response request, and will request packet destination address set to suffer Internet radio address.
Which kind of attack does this behavior belong to?

正解:

Question No : 3
Forward in the process of online user management, online user authentication occurs only in the first package process, once the user through the authentication, equipment set up the session table, subsequent packets do not need to be repeated user authentication.

正解:

Question No : 4
ASPF (Application Specific Packet Filter) is a kind of packet filtering based on the application layer, it checks the application layer protocol information and monitor the connection state of the application layer protocol. ASPF by Server Map table achieves a special security mechanism.
Which statement about ASPF and Server map table are correct? (Multiple choice)

正解:

Question No : 5
Use NAT technology, can only switch the network layer information (IP address) in the data packet .

正解:

Question No : 6
In VRRP (Virtual Router Redundancy Protocol), the master router periodically sends notification message(HELLO) to the backup router, the backup router is only responsible for monitoring notification message, not to respond.

正解:

Question No : 7
Which of the following attack does not belong to the network layer attack ?

正解:

Question No : 8
Which statement about L2TP message is wrong ?

正解:

Question No : 9
Through display ike sa to see the result as follows, which statements are correct? (Multiple choice)
current ike sa number: 1
-------------------------------------------------------------------------
connection-id peer vpn flag phase doi
-------------------------------------------------------------------------
0x1f1 2.2.2.1 0 RD|ST v1 : 1 IPSEC 0x6043dc4
Flag meaning
RD--READY ST--STAYALIVE RL--REPLACED FD--FADING TO--TIMEOUT

正解:

Question No : 10
CA (Certificate Authority) certificate used for verifying the user's identity of virtual gateway when SSL communication connection is established, saved in the device side, issued by the CA institution.

正解:

Question No : 11
228.10.100:2048
Which of the following statement about above information are correct ? ( multiple choice)

正解:

Question No : 12
When ARP address resolution, ARP-REPLY packets sent by means of broadcast, hosts are able to receive on the same Layer 2 network , and thus learn the corresponding relations between the IP and MAC address.

正解:

Question No : 13
Huawei USG firewall VRRP HELLO packets for multicast packets, it requires each router in the backup group must be able to achieve directly two layer interflow.

正解:

Question No : 14
Symmetric encryption algorithm encryption key and decryption key are the same, asymmetric encryption algorithm encryption key and decryption key are not the same. IPsec in business data encryption and decryption use symmetric encryption algorithm.

正解:

Question No : 15
Which of the following components are terminal security system mainly composed of ? ( multiple choice)

正解:

 / 2