QUESTION 61
Which of the following statements are correct about the working principles of switches?
A. Layer 2 switches forward data based on MAC address tables.
B. Layer 2 switches work at the data link layer.
C. The MAC address table stores the mappings between MAC addresses and switch ports. The mappings exist permanently unless they are manually deleted.
D. Different ports on a switch send and receive data independently.
Correct Answer: ABD
QUESTION 62
Cyber security situational awareness is the ability to dynamically and comprehensively identify security risks based on the environment. It uses multiple technologies, such as data convergence, data mining, intelligent analysis, and visualization, to intuitively display the cyber security status in real time, thereby providing technical support for cyber security assurance.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 63
Which layer of the OSI model does a Layer 2 switch work at?
A. Network layer
B. Data link layer
C. Physical layer
D. Session layer
Correct Answer: B
QUESTION 64
Match the following application-layer service protocols with the correct transport-layer protocols and port numbers.
Select and Place:

Correct Answer:

QUESTION 65
Which of the following are the default zones of Huawei firewalls?
A. Local
B. DMZ
C. Untrust
D. Trust
Correct Answer: ABCD
QUESTION 66
What are the characteristics of intrusion prevention?
A. Comprehensive protection
B. Precise protection
C. Real-time attack blocking
D. In-depth protection
Correct Answer: ABCD
QUESTION 67
Enterprise information loss is mainly caused by attacks from external malicious users. Therefore, information security management should focus on external malicious users.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 68
An attacker uses ICMP packets to probe the target IP address to identify active hosts that connect to the target network. This is a single-packet malformed packet attack.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 69
Which of the following is not a function of security situation awareness?
A. Security data analysis and result display
B. Security element collection
C. Security data processing
D. Automatic security locating
Correct Answer: B
QUESTION 70
The firewall detects that the SMTP protocol carries virus files. Which of the following is not a possible response action?
A. Alert
B. Declare
C. Block
D. Delete attachment
Correct Answer: ABC
QUESTION 71
When a Layer 2 switch receives a unicast frame and the MAC address table of the switch is empty, the switch broadcasts the frame.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 72
Which of the following is not one of the top 10 security risks of web applications?
A. Physical terminal fault
B. Incorrect security configuration
C. Interrupted access
D. Encryption fault
Correct Answer: A
QUESTION 73
Which of the following statements are correct about TCP attacks?
A. TCP session hijacking can control TCP sessions but cannot tamper with user data.
B. TCP SYN Flood is initiated when an attacker forges numerous SYN packets to force authorized users to terminate TCP connections.
C. TCP SYN Flood is initiated when an attacker forges numerous SYN packets to occupy TCP session connections during a three-way handshake, exhausting server resources.
D. TCP session hijacking is when an attacker snoops user packets and forges TCP packets with valid sequence numbers.
Correct Answer: CD
QUESTION 74
Which of the following is not an external security threat faced by enterprises?
A. Phishing email
B. DDoS attack
C. Network scanning
D. Terminal vulnerability
Correct Answer: D
QUESTION 75
Match the following firewall authentication types with the corresponding explanations.
Select and Place:

Correct Answer:

QUESTION 76
Which of the following security profiles can be defined in a firewall security policy?
A. Antivirus
B. File blocking
C. URL filtering
D. Mail filtering
Correct Answer: ABCD
QUESTION 77
Which of the following statements are correct about hot standby configurations of firewall?
A. Before configuring the virtual IP address of the VRRP group, you must configure the IP address of the VRRP interface.
B. After the active firewall recovers from a fault, the preemption operation is started to complete the active/standby firewall switchover.
C. Heartbeat interfaces to be configured must be directly connected.
D. The interval for sending VGMP Hello packets should be as short as possible to speed up the response to firewall faults.
Correct Answer: ABD
QUESTION 78
Which of the following are included in AAA authentication?
A. Authentication
B. Accounting
C. Audit
D. Authorization
Correct Answer: ABD
QUESTION 79
Which of the following statements is correct about characteristics of a firewall?
A. The firewall is a comprehensive a security device with multiple security features to defend against zero-day vulnerabilities.
B. The firewall can defend against all external network threats.
C. The firewall has the antivirus function. Therefore, the antivirus system does not need to be deployed on the network where the firewall is deployed.
D. The firewall can prevent unauthorized information on the extranet from being sent to the intranet.
Correct Answer: D
QUESTION 80
Which of the following statements is correct about the default zones of Huawei firewalls?
A. Four default security zones are available.
B. Default security zones cannot be deleted, but their security level can be modified.
C. The level of a default security zone can be customized.
D. Default security zones can be deleted.
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.