QUESTION 1
Which of the following statements are correct about the firewall DMZ?
A. When external network users access the DMZ, both the security policy and NAT policy need to be deployed.
B. The default priority of the DMZ is 50 and cannot be manually changed.
C. Typically, servers that must provide public access services are deployed in the DMZ.
D. The DMZ has a lower priority than the Trust zone. Therefore, devices in the Trust zone can directly access the DMZ.
Correct Answer: ABC
QUESTION 2
Which of the following statements are correct about routing table characteristics?
A. There may be multiple next hops to the same destination network segment in the global routing table.
B. There is only one next hop to the same destination network segment in the global routing table.
C. When a packet matches multiple entries in a routing table, the packet is forwarded according to the routing entry with the largest metric.
D. When a packet matches multiple entries in a routing table, the packet is forwarded according to the longest mask match rule.
Correct Answer: AD
QUESTION 3
When a packet matches multiple entries in the routing table, the packet is forwarded according to the route with the longest matched mask.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 4
Match the following malicious code types with their corresponding descriptions.
Select and Place:
Correct Answer:
QUESTION 5
The traffic direction of a firewall is based on the zone priority. The Outbound direction refers to the direction from a low-priority zone to a high-priority zone.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 6
Which of the following statements are correct about the working principles of routers?
A. Before forwarding a data packet, a router needs to decapsulate the packet to match it against the routing table entries and then re-encapsulate the packet.
B. Routers can forward packets across networks.
C. Routers can broadcast data packets.
D. Routers work at the data link layer.
Correct Answer: AB
QUESTION 7
SQL injection is a security risk that occurs when the content entered by a user is transferred to a server and directly injected into the SQL code for execution.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 8
Arrange the ransomware attack steps in the correct order.
Select and Place:
Correct Answer:

QUESTION 9
When a Layer 2 switch forwards data, which of the following entries is used to determine the destination port?
A. ACL
B. Routing entry
C. ARP entry
D. MAC address entry
Correct Answer: D
QUESTION 10
Which of the following statements is incorrect about DDoS attacks?
A. Based on the types of attack packets, attacks can be classified into SYN flood, UDP flood, ICMP flood, and HTTP flood attacks.
B. The firewall and anti-DDoS device cannot be deployed at the same time.
C. Professional anti-DDoS devices can be used to defend against heavy-traffic DDoS attacks.
D. Hackers can quickly launch a large-scale DDoS attack by exploiting device hardware or management vulnerabilities.
Correct Answer: A
QUESTION 11
Which of the following statements is correct about firewall characteristics?
A. The firewall can prevent unauthorized information from being sent from the external network to the internal network.
B. Firewalls can replace antivirus systems.
C. Firewalls can accurately trace the attackers, even if they are attacking through DDoS.
D. Firewalls can adequately solve the problem of intranet attacks.
Correct Answer: A
QUESTION 12
When managing information security system construction, which of the following operations need to be performed in the planning phase?
A. System design
B. Project initiation and variance analysis
C. Certification and continuous improvement
D. Risk assessment
E. System operation and monitoring
Correct Answer: ABD
QUESTION 13
TCP session hijacking is an attack method in which an attacker snoops user packets and forges TCP packets with valid sequence numbers.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 14
As shown in the figure, a TCP connection is set up between PC1 and PC2. PC1 sends a FIN request for this connection, and PC2 replies with an ACK packet. Which of the following statements is correct?

A. The TCP connection between PC1 and PC2 is in the half-closed state, and PC2 can still send data to PC1.
B. The TCP connection between PC1 and Pc2 is closed.
C. The TCP connection between PC1 and Pc2 is in the half-closed state and cannot be used to send data.
D. The TCP connection between PC1 and PC2 is in the half-closed state, and PC1 can still send data to PC2.
Correct Answer: A
QUESTION 15
Which of the following are the default actions of predefined signatures?
A. Filter
B. Block
C. Reset
D. Permit
Correct Answer: BD
QUESTION 16
Which of the following statements are correct about firewall security policies?
A. Traffic in the same security zone is not controlled by the default security policy and is forwarded by default.
B. Traffic between different security zones is controlled by the default security policy.
C. To enable intra-domain traffic to be controlled by the default security policy, the administrator need to run the ‘default packet-filter intrazone enable’ command.
D. The traffic sent from the firewall or received by the firewall is not controlled by the default security policy.
Correct Answer: ABC
QUESTION 17
When forwarding TCP, UDP, or ICMP packet, the firewall needs to query the session table in order to determine the connection to which the packet belongs and take corresponding measures.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 18
Which of the following types of packets cannot be filtered by a packet filtering firewall?
A. Non-fragmented packets
B. Forged ICMP error packets
C. Non-initial fragments
D. Initial fragments
Correct Answer: C
QUESTION 19
3-tuple NAT allows external devices to proactively access internal PCs through translated addresses and ports. Even if no security policy is configured on the firewall, the firewall allows such access packets to pass through.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 20
Devices that need to provide network services externally, such as WWw servers and FTP servers, can be placed in the DMZ.
A. TRUE
B. FALSE
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.