QUESTION 41
Which of the following are FTP behavior control items?
A. Web browsing
B. File download
C. Internet access using a proxy
D. File upload
Correct Answer: BD
QUESTION 42
Match the cyber attack techniques with their corresponding descriptions one by one.
Select and Place:

Correct Answer:

QUESTION 43
Which of the following types of signatures is contained in the IPs signature database?
A. Signature filter
B. Predefined signature
C. User-defined signature
D. Exception signature
Correct Answer: B
QUESTION 44
Sort the intrusion prevention steps in sequence based on the working mechanism of the firewall device.
Select and Place:

Correct Answer:

QUESTION 45
Buffer overflow attacks are common attacks. Which of the following statements are true about such attacks?
A. Buffer overflow attacks cause program running exceptions but do not cause information leakage.
B. Buffer overflow attacks are launched by writing content that exceeds the buffer capacity to cause buffer overflow and disturbing program running.
C. Buffer overflow attacks can be launched by exploiting software vulnerabilities.
D. Buffer overflow attacks can be used to attack operating systems and a wide range of application software.
Correct Answer: ABCD
QUESTION 46
Most enterprise mailboxes have certain antivirus mechanisms. If an email from an unknown enterprise mailbox, clicking the hyperlink in the email or downloading the attachment in the email will not cause personal or company information leakage.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 47
The firewall device works based on a specific intrusion prevention mechanism. Which of the following is the correct sequence of steps in the intrusion prevention mechanism?
A. Protocol identification and parsing -> Application data reassembly -> Signature matching -> Response processing
B. Application data reassembly -> Signature matching -> Protocol identification and parsing -> Response processing
C. Application data reassembly -> Protocol identification and parsing -> Signature matching -> Response processing
D. Signature matching -> Application data reassembly -> Protocol identification and parsing -> Response processing
Correct Answer: C
QUESTION 48
Which of the following TCP port numbers is used by the WannaCry ransomware to launch network attacks on the Windows operating system?
A. 139
B. 443
C. 3389
D. 445
Correct Answer: D
QUESTION 49
Policies are configured on firewalls and ACLs are configured on switches to block the traffic destined for specific ports and thereby suppress the spread of viruses. This operation is in the containment phase of the emergency response.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 50
Match the following emergency response technologies with their Functions.
Select and Place:

Correct Answer:

QUESTION 51
During deployment of Portal authentication, an authentication-free rule profile needs to be configured to ensure Portal pages can be opened on authentication terminals. To achieve this purpose, the following traffic needs to be permitted in the authentication-free rule profile: DNs resolution traffic of user terminals, traffic from user terminals for accessing Portal pages, and traffic from user terminals to the RADIUS server.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 52
On a customer’s live network, 802.1X authentication is configured on a Huawei WAC and iMaster NCE-Campus acts as an authentication server. It is found that STAs fail to be authenticated. Which of the following are possible causes of this fault?
A. The authentication server is unreachable to the STAs.
B. The authentication profile on the WAC is not bound to an access profile.
C. No service VLAN is configured on the WAC.
D. The authorization key on the WAC differs from that on the authentication server.
Correct Answer: AB
QUESTION 53
Arrange the steps of the 802.1X authentication process in EAP relay mode in the correct order.
Select and Place:

Correct Answer:

QUESTION 54
When an LDAP server is used as the authentication server, which of the following protocols is used for interaction between the server and a device?
A. RADIUS
B. HTTP
C. EAP
D. LDAP
Correct Answer: D
QUESTION 55
iMaster NCE-Campus can function as a Portal server or interconnect with a third-party Portal server. When interconnecting with a third-party Portal server, iMaster NCE-Campus only forwards Portal packets.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 56
On the campus network below, SW1 acts as an authentication device. Which of the following statements about network access control are true?

A. If MAC address-prioritized Portal authentication is deployed, guests can access the network without entering usernames and passwords for a specified period after going offline.
B. If Portal authentication is deployed, iMaster NCE-Campus can function as both the RADIUS server and Portal server.
C. If MAC address authentication is deployed, there is no need to collect MAC addresses of any dumb terminals in advance.
D. If 802.1X authentication is deployed, SW2 and SW3 need to transparently forward EAP packets.
Correct Answer: ABD
QUESTION 57
iMaster NCE-Campus can use TACACS to interconnect with third-party admission devices added to it.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 58
User identity authentication and authorization can be performed on admission control devices or servers. In
local authentication mode, access devices perform authentication and authorization. Which of the following statements are true about local authentication?
A. Authorization parameters such as VLAN and ACL can be set during configuration of local authorization.
B. The information storage capacity is limited by the device hardware. The stored information is usually used for device login authentication.
C. Local authentication is fast and features low operational costs.
D. Local authentication requires a third-party server for user information storage and verification.
Correct Answer: BD
QUESTION 59
On a customer’s live network, AD authentication is used to control network access of terminals. Which of the following are the components of an AD server?
A. Ticket-granting server
B. Accounting server
C. LDAP server
D. Authentication server
Correct Answer: ACD
QUESTION 60
During MAC address authentication, the user terminal does not need to install any client software, and the user does not need to manually enter the user name and password.
A. TRUE
B. FALSE
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.