Real Exam Questions H12-722 Dumps Exam Questions in here [Sep-2021]

Get Latest Sep-2021 Conduct effective penetration tests using  H12-722

NEW QUESTION 78
About firewalls and IDS, which of the following is true?

• A. IDS can't interact with the firewall
• B. Firewall is a bypass device for fine-grained detection
• C. Firewall is unable to detect insider malicious operation or misoperation
• D. IDS is a straight-path device and can't perform depth detection

Answer: C

 

NEW QUESTION 79
What are the typical technologies of anti-virus engines? (Multiple choices)

• A. Heuristic detection technology
• B. Document reputation detection technology
• C. Decryption technology
• D. First packet inspection technology

Answer: A,B,D

 

NEW QUESTION 80
For compressed files, the virus detection system can directly detect.

• A. True
• B. False

Answer: A

 

NEW QUESTION 81
Threat after the big data intelligent security analysis platform detect will be synchronized to each network device, and then continue to learn and optimize by collecting to the logs from the network device.

• A. True
• B. False

Answer: A

 

NEW QUESTION 82
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an attack? (Multiple Choices)

• A. DF bit is 1 and Fragment Offset + Length < 65535.
• B. DF bit is 1 and the MF bit is also 1 or the Fragment Offset is not 0.
• C. DF bit is 0, the MF bit is 1 or the Fragment Offset is not 0.
• D. DF bit is 0 and Fragment Offset + Length > 65535.

Answer: B,D

 

NEW QUESTION 83
Which of the following are the upgrade methods for the anti-virus feature database of Huawei USG6000 product? (Multiple Choices)

• A. Local upgrade
• B. Online upgrade
• C. Automatic upgrade
• D. Manual upgrade

Answer: A,B

 

NEW QUESTION 84
Which of the following is correct regarding the order of the mail transfer process?
1. The sending PC sends the mail to the specified SMTP server.
2. The sender SMTP Server encapsulates the mail information in the SMTP message and sends it to the receiver SMTP according to the destination address of the mail.
Server.
3. The sender SMTP Server encapsulates the mail information in the SMTP message and sends it to the receiver POP3/MAP Server based on the destination address of the mail.
4. Recipients send emails.

• A. 1->4->3
• B. 1->2->3
• C. 1->2->4
• D. 1->3->4

Answer: C

 

NEW QUESTION 85
Which of the following are the common behavioral characteristics of a virus? (Multiple Choice)

• A. Information collection features
• B. Network attack characteristics
• C. Self-hiding features
• D. Download and Backdoor Features

Answer: A,B,C,D

 

NEW QUESTION 86
Which of the following options are correct for the description of the Management Center ATIC configuration? (Multiple Choices)

• A. The drainage task must be configured on the management center and delivered to the cleaning center when an attack is discovered.
• B. The recycle strategy needs to be configured on management center needs to guide the cleaned traffic.
• C. The port mirroring needs to be configured on the management center to monitor abnormal traffic.
• D. The protection object needs to be configured on the management center to guide abnormal access traffic.

Answer: A,D

 

NEW QUESTION 87
To protect the security of data transmission, more and more websites or companies choose to encrypt traffic through SSL.
Which of the following statements is true about the threat detection of SSL traffic using Huawei NIP6000?

• A. Threat-detected traffic is sent directly to the server without encryption.
• B. Processes such as "decryption," "threat detection," and "encryption."
• C. NIP000 does not support SSL traffic threat detection.
• D. NIP can directly crack and detect SSL encryption.

Answer: B

 

NEW QUESTION 88
In the security protection system of cloud era, reforms must be carried out in advance, in the event, and afterwards, and continuous improvement and development of closed loops must be formed.
Which of the following key points should be fulfilled in "in the matter"? (Multiple choices)

• A. Defense in depth
• B. Counterattacks Hackers
• C. Offensive and defensive situation
• D. Vulnerability information

Answer: A,B

 

NEW QUESTION 89
For the description of the AntiDDoS system, which of the following option is correct?

• A. The detection center mainly uses the control strategy of the security management center to perform traction and cleaning of the attack traffic. The normal traffic after cleaning is injected back to the customer network and sent to the real destination.
• B. The management center mainly completes the processing of attack events, controls the flow policy and cleaning policy of the cleaning center, and classifies various attack events and attack traffic to generate reports
• C. The main role of the cleaning center is to detect and analyze the DDoS attack traffic for the mirrored or light splitting traffic and provide the analysis data to the management center for judgment.
• D. The firewall can only be a detection device.

Answer: B

 

NEW QUESTION 90
The configuration commands for enabling the attack defense function are as follows:
[FW] anti-ddos syn-flood source-detect
[FW] anti-ddos udp-flood dynamic-fingerprint-learn
[FW] anti-ddos udp-frag-flood dynamic-fingerprint-learn
[FW] anti-ddos http-flood defend alert-rate 2000
[FW] anti-ddos http-flood source-detect mode basic
Which of the following are the correct descriptions of the attack prevention configuration? (Multiple Choices)

• A. The threshold value enabled by HTTP Flood defense is 2000.
• B. The firewall uses the first packet discard to defense the UDP flood attacks.
• C. HTTP flood attack defense uses enhanced mode for defense.
• D. SYN Flood source detection and prevention function is enabled on the firewall.

Answer: A,D

 

NEW QUESTION 91
The process of a browser carrying a cookie to request a resource from a server is as shown in the following figure. Which of the following steps have the session ID information in the message?

• A. 1, 3, 4
• B. 3, 4,
• C. 2, 4
• D. 5, 6

Answer: B

 

NEW QUESTION 92
The whitelist rule of the firewall antivirus module is configured as *example*. Which of the following matches is used in this configuration?

• A. Suffix matching
• B. Keyword matching
• C. Prefix matching
• D. exact match

Answer: B

 

NEW QUESTION 93
For APT attacks, attackers often lurk for a long time and initiate formal attacks on the enterprise at key points of the incident. APT attacks can generally be summarized in four stages:
1. Collect Information & Invasion
2. Long-term latency & mining
3. Data leakage
4. Remote control and penetration
Which of the following options is correct regarding the ordering of these four phases?

• A. 2-1-4-3
• B. 2-3-4-1
• C. 1-2-4-3
• D. 1-4-2-3

Answer: D

 

NEW QUESTION 94
For SYN flood attacks, TCP source authentication and TCP proxy can be used for defense.
Which of the following description is correct?

• A. TCP proxy means that the firewall is deployed between the client and the server. When the client sends an SYII packet to the server through the firewall, the firewall instead of the server establishes a three-way handshake with the client. Generally used for scenarios where the path of the packet is inconsistent.
• B. After the TCP source authentication passes the source authentication of the client, it is added to the whitelist. Then the SYN packet of this source still needs to be verified.
• C. TCP source authentication has the same restriction on the path of packets, so the application is not as common as TCP proxy.
• D. During the TCP proxy process, the firewall proxies and responds to every SYN packet received and maintains half-connection. Therefore, when the traffic of the SYN packet is heavy, the firewall requires very high performance.

Answer: D

 

NEW QUESTION 95
......

Authentic Best resources for H12-722 Online Practice Exam: https://www.testsimulate.com/H12-722-study-materials.html