QUESTION 81
The protocol number of AH is 50.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 82
In the figure, mobile users access the internal file server through the file sharing function. Which of the following statements are true about this process?
A. The file sharing function implements protocol conversion when traveling users access intranet file resources.
B. The user needs to log in to the virtual gateway and then initiate an HTTPS file access request.
C. The request and response packets are transparently transmitted through the firewall without being modified.
D. If a user accesses file sharing resources for the first time, the user must be authenticated by the file server.
Correct Answer: ABD
QUESTION 83
Which of the following statements is true when a mobile user accesses the internal web server of an enterprise through the web proxy?
A. The mobile user establishes an HTTPS session with the virtual gateway, and the virtual gateway establishes an HTTP session with the internal web server.
B. The mobile user establishes an HTTP session with the virtual gateway, and the virtual gateway also establishes an HTTP session with the internal web server.
C. The mobile user establishes an HTTP session with the virtual gateway, and the virtual gateway establishes an HTTPS session with the internal web server.
D. The mobile user establishes an HTTPS session with the virtual gateway, and the virtual gateway also establishes an HTTPS session with the internal web server.
Correct Answer: A
QUESTION 84
In SSL VPN, the firewall performs access authorization and control based on which of the following dimensions?
A. IP address
B. MAC address
C. Role
D. Port number
Correct Answer: C
QUESTION 85
Which of the following types of resources is not an intranet resource that SSL VPN can provide for mobile users?
A. IP resources
B. File resources
C. Web resources
D. UDP resources
Correct Answer: D
QUESTION 86
Which of the following is not a function of the anti-DDoS management center?
A. Policy management
B. Performance management
C. Traffic detection
D. Alarm management Correct Answer: C QUESTION 87
The key to configuring DDoS mitigation is to set a proper threshold. If the threshold is set too low, the system enables DDoS mitigation even when no attack occurs. As a result, the device performance is affected or normal traffic is discarded.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 88
Which of the following characteristics can be used as filtering conditions of an anti-DDoS filter?
A. TTL
B. Destination Ip address
C. Source Ip address
D. Protocol
Correct Answer: ABCD
QUESTION 89
Which of the following statements are true about the networking mode of the anti-DDoS solution?
A. In off-path deployment, traffic does not pass through the cleaning center by default.
B. In in-path networking, the anti-DDoS device is deployed on the network in in-path mode, without the need to consider single points of failure. This deployment mode is simple.
C. In off path deployment, traffic can be diverted to the cleaning center for detection and cleaning in static traffic diversion mode.
D. Off-path deployment supports dynamic traffic diversion that diverts traffic to the cleaning center.
Correct Answer: ACD
QUESTION 90
The anti-DDoS system is deployed between a Layer 2 switch and the Zone on the network. When only this Layer 2 switch is available, Layer 2 traffic injection is usually used.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 91
Which of the following are components of Huawei anti-DDoS solution?
A. Management center
B. Detecting center
C. Cleaning center
D. Zone
Correct Answer: ABC
QUESTION 92
Spam not only causes inconvenience for users, but also may contain harmful information such as viruses.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 93
URL filtering implements access control earlier than DNs filtering, effectively reducing the traffic of HTTP packets on the entire network.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 94
DNS filtering can allow or block requests based on the different schedules, users, or user groups by referencing these configuration items to control users’ Internet access permissions in a more refined and accurate manner.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 95
Which of the following statements is false about URL categories?
A. Predefined URL categories cannot be created, deleted, or renamed.
B. User-defined URL categories need to be manually configured by the administrator.
C. Predefined URL categories are preset upon delivery and do not need to be manually loaded.
D. Predefined URL categories take precedence over user-defined URL categories.
Correct Answer: A
QUESTION 96
Which of the following are the matching modes of firewall URL filtering?
A. Fuzzy match
B. Exact match
C. Keyword match
D. Suffix match
Correct Answer: BCD
QUESTION 97
Which of the following application behaviors can be controlled by the firewall?
A. FTP
B. IM
C. HTTP
D. IMAP
Correct Answer: ABC
QUESTION 98
Which of the following are common cyber attacks?
A. SQL injection
B. DDoS attack
C. Attacks such as Trojan horses and viruses
D. XSS attack
Correct Answer: ABCD
QUESTION 99
The main technique of SQL injection attacks is to construct ingenious SQL statements and submit them to the server as input items to implement attacks. Which of the following techniques can be used to launch SOL injection attacks?
A. Use the constant equation (for example, 1=1).
B. Use the UNION statement for union query.
C. Use comment symbols.
D. Use the INSERT or UPDATE statement to insert or modify data.
Correct Answer: ABD
QUESTION 100
Generally, the SYN scanning technology does not leave a scanning trace on the target host, and does not need to obtain the root permission of the target host.
A. TRUE
B. FALSE
Correct Answer: B
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.