QUESTION 161
The MAC address entries of a 2 Layer 2 switch can be dynamically learned or manually configured.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 162
Which type of attack does fingerprint learning defend against?
A. SYN flood
B. ICMP flood
C. UDP flood
D. GRE flood
Correct Answer: A
QUESTION 163
Which of the following statements is correct about HTTP?
A. HTTP resolves known IP addresses into MAC addresses.
B. HTTP is used to convert host domain names to Ip addresses.
C. HTTP provides a way to transfer files. It allows data to be transferred from one host to another.
D. HTTP is used to access various pages on the WWW server.
Correct Answer: D
QUESTION 164
Which of the following types of attacks can the source detection technology defend against?
A. SIP flood
B. HTTPs flood
C. HTTP flood
D. SYN flood
Correct Answer: D
QUESTION 165
The source detection technology can be used to defend against SYN food attacks.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 166
Which of the following is not part of the Certification Accreditation and Audit Guide for the ISO27000 Information Security Management System Family?
A. ISO/IEC 27006
B. ISO/IEC 27007
C. ISO 27799
D. ISO/IEC 27008
Correct Answer: C
QUESTION 167
One of the differences between the TCP/IP model and the OSI reference model is that the TCP/IP model classifies both the presentation layer and the session layer as the application layer.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 168
User authentication is an identity authentication mechanism. It can verify the identity of a user and obtain the mapping between the user and the IP address. User authentication is the basis for configuring user-specific policies.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 169
Which of the following is the basis for security zone division on Huawei firewalls?
A. Service
B. IP address
C. Rule
D. Interface
Correct Answer: D
QUESTION 170
Which of the following service types are supported by AAA authentication?
A. Telnet
B. SSH
C. Web
D. FTP
Correct Answer: ABCD
QUESTION 171
Due to their unique characteristics, viruses need to be attached to other host programs to run. Which of the following methods cannot evade antivirus software?
A. Deformation
B. Encryption
C. Compression
D. Self-splitting
Correct Answer: A
QUESTION 172
Which of the following are characteristics of DoS attacks?
A. Unauthorized access
B. Damage
C. Tampering
D. Unauthorized activation
Correct Answer: AB
QUESTION 173
In single sign-on mode, the firewall functions as the authentication point to obtain user login information and enable users to connect to the network through the firewall.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 174
Which of the following statements is incorrect about packet processing on a stateful inspection firewall? When receiving a packet, the firewall searches for a matching entry in the session table.
A. If the match is found, the firewall processes the packet as a non-first packet.
B. When receiving a packet, the firewall searches for a matching a entry in the session table. If no match is found, the firewall processes the packet as the first packet.
C. When stateful inspection is enabled, the firewall checks both the first packet and subsequent packets against security policies.
D. When the firewall stateful detection mechanism is enabled, only SYN packets in TCP packets can be used to establish sessions.
Correct Answer: C
QUESTION 175
Which of the following statements is incorrect about the automatic backup mode in hot standby of firewalls?
A. Automatic backup needs to be manually enabled by an administrator.
B. The active device periodically backs up status information that can be backed up to the standby device.
C. Automatic backup can automatically back up configuration commands in real time and periodically back up status information. It is applicable to various hot standby networks.
D. Each time a command that can be backed up is executed on a firewall, command is immediately backed up to the other firewall
Correct Answer: A
QUESTION 176
Which of the following are the purposes for user authentication?
A. Preventing users from accessing non-work-related applications during working hours to conserve network bandwidth
B. Preventing inappropriate online behavior
C. Preventing internal data leakage
D. Preventing users from carrying out irrelevant activities during working hours to improve work efficiency
Correct Answer: ABCD
QUESTION 177
Which of the following requirements must be met in setting the administrator password?
A. To improve security, the password must contain special characters.
B. Admin@123 can be used as the password of a new administrator. However, after the administrator logs in to the system, the administrator must change the password.
C. The password cannot contain two or more of the same characters consecutively.
D. The password must be a string of 8 to 64 characters.
Correct Answer: BD
QUESTION 178
Which of the following items are included in the output of the display firewall session table verbose command?
A. TTL
B. Session ID
C. Protocol name
D. NextHop
Correct Answer: ABCD
QUESTION 179
If the firewalls work in active/standby mode, the status of all VRRP groups needs to be set to active on one firewall and set to standby on the other firewall.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 180
Which type of NAT can translate public IP addresses into private IP addresses so that Internet users can use the public IP addresses to access intranet servers?
A. NAPT
B. NAT No-PAT
C. Easy IP
D. NAT Server
Correct Answer: D
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.