[Sep-2021] H12-722-ENU Dumps Full Questions - HCNP-Security Exam Study Guide [Q93-Q110]

[Sep-2021] H12-722-ENU Dumps Full Questions - HCNP-Security Exam Study Guide

Exam Questions and Answers for  H12-722-ENU Study Guide

NEW QUESTION 93
The following figure shows the configuration of the URL filtering configuration file. Which of the following statements is true about this configuration?

• A. The user visit the website www.exzample.com. When there is no black and white list of hits, the predefined URL category entry is next queried.
• B. The default action means that all websites allow access. Therefore, this configuration error.
• C. The firewall will check the blacklist first and then check the whitelist.
• D. Assume that user visit www.exzample.com, which is part of Humanities and Social Networking category. At this time, the user cannot access the site.

Answer: D

 

NEW QUESTION 94
When configure the URL filtering configuration file, www.bt.com is configured in the URL blacklist, and URL is set to *bt.com in the custom URL classification, and the action for customizing the URL classification is warning. .
Which of the following statements is true about the above configuration? (Multiple choices)

• A. Users can visit www.bt.com website, but administrators will receive warning message.
• B. Users can't access all websites ending with bt.com.
• C. Users will be blocked when they visit www.bt.com.
• D. Users can visit www.videobt.com.

Answer: C,D

 

NEW QUESTION 95
In the Huawei USG6000 product, after the security profile is created or modified, the configuration does not take effect immediately. You need to click "Submit" in the upper right corner of the page to activate it.

• A. True
• B. False

Answer: A

 

NEW QUESTION 96
Under the CLI command, which of the following commands can be used to view the AV engine and virus database version?

• A. display utm version
• B. display utm av version
• C. display av utm version
• D. display version av-sdb

Answer: D

 

NEW QUESTION 97
There are the following steps in the storage XSS attack
1, The attacker hijacked the user session
2, Attacker submits issues with known JavaScript
3, user login
4, User Request Attacker Problem
5, Server responds to attacker's JavaScript
6, User's browser sends session token to attacker
7, Attacker's JavaScript is executed in the user's browser
Which of the following options is correct for the ordering of these steps?

• A. 3, 2, 7, 6, 4, 5, 1
• B. 3, 2, 4, 5, 7, 6, 1
• C. 3, 2, 4, 6, 5, 7, 1
• D. 3, 2, 5, 7, 4, 6, 1

Answer: B

 

NEW QUESTION 98
Malicious code usually uses RootKit technology to hide itself. RootKit modifies the kernel of the system by loading special drivers to hide itself and specific files.

• A. TRUE
• B. FALSE

Answer: A

 

NEW QUESTION 99
Which of the following belong to content security filtering technologies? (Multiple Choice)

• A. Content Filtering
• B. Application behavior control
• C. File Filtering
• D. Mail filtering

Answer: A,B,C,D

 

NEW QUESTION 100
Which of the following options are correct for the description of the Management Center ATIC configuration? (Multiple Choices)

• A. The drainage task must be configured on the management center and delivered to the cleaning center when an attack is discovered.
• B. The recycle strategy needs to be configured on management center needs to guide the cleaned traffic.
• C. The port mirroring needs to be configured on the management center to monitor abnormal traffic.
• D. The protection object needs to be configured on the management center to guide abnormal access traffic.

Answer: A,D

 

NEW QUESTION 101
Which of the following are the common causes of IPS detection failures? (Multiple choices)

• A. IPS function is not enabled
• B. Policy IDs with incorrect associations between IPS policy domains
• C. IPS policy is not submitted for compilation
• D. Bypass function in IPS is turned off

Answer: A,B,C

 

NEW QUESTION 102
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an attack? (Multiple Choices)

• A. DF bit is 1 and Fragment Offset + Length < 65535.
• B. DF bit is 1 and the MF bit is also 1 or the Fragment Offset is not 0.
• C. DF bit is 0, the MF bit is 1 or the Fragment Offset is not 0.
• D. DF bit is 0 and Fragment Offset + Length > 65535.

Answer: B,D

 

NEW QUESTION 103
The RBL black and white list query result on the firewall is as follows:

Based on the above information, which of the following statements is correct? (Multiple choices)

• A. Mail with source address 10.17.1.0/24 will be released
• B. Mail with source address 10.18.1.0/24 will be released
• C. Mail with source address 10.17.1.0/24 will be blocked
• D. Mail with source address 10.18.1.0/24 will be blocked

Answer: A,B

 

NEW QUESTION 104
Which of the following description is incorrect about the cleaning center?

• A. There are two drainage ways of static drainage and dynamic drainage.
• B. The re-injection methods include: policy route reinjection, static route reinjection, VPN reinjection, and Layer 2 peering.
• C. The cleaning center completes the function of drainage, cleaning, and flow reinjection after cleaning for abnormal flow.
• D. The cleaning equipment supports a variety of flexible attack defense technologies, but it is ineffective for CC attack and ICMP flood attack defense.

Answer: D

 

NEW QUESTION 105
Which of the following technologies can achieve content security? (Multiple Choice)

• A. Web security protection
• B. Global environment awareness
• C. Intrusion Prevention
• D. Sandbox and Big Data Analysis

Answer: A,B,C,D

 

NEW QUESTION 106
The following figure is the diagram which shows the firewall and sandbox system linkage detection file.

The Web Reputation feature is enabled on the firewall, and Site A is set as a trusted site and Site B is set as a suspicious site. Which of the following statements is correct?

• A. After the detection node detects a suspicious file, it not only informs the firewall in the figure, but also informs other connected network devices.
• B. When the user visits the Site B, although the firewall will extract the file and send it to the detection node, the user can still visit the Site B normally during the detection process.
• C. Assume that Site A is an unknown website, the administrator cannot detect the website's traffic file.
• D. The files which the users obtain from Site A and Site B are sent to the detection node for detection.

Answer: A

 

NEW QUESTION 107
About firewalls and IDS, which of the following is true?

• A. IDS can't interact with the firewall
• B. Firewall is a bypass device for fine-grained detection
• C. Firewall is unable to detect insider malicious operation or misoperation
• D. IDS is a straight-path device and can't perform depth detection

Answer: C

 

NEW QUESTION 108
Huawei USG6000 product can virus scan and process certain file transfer protocols, but which of the following protocol does not include?

• A. FTP
• B. POP3
• C. IMAP
• D. TFTP

Answer: D

 

NEW QUESTION 109
During the infiltration phase of APT attack, which of the following attack behaviors will the attacker generally have?

• A. Long-term latency and key data collection.
• B. By phishing emails, attachments carrying a 0day vulnerability cause the user's terminal to become a springboard for attacks.
• C. The attacker sends C&C attack or other remote command to the infected host, cause the attack to spread horizontally across the intranet.
• D. Leaks key data information to interested third parties.

Answer: C

 

NEW QUESTION 110
......

HCIP-Security-CSSN(Huawei Certified ICT Professional -Constructing Service Security Network) Free Update With 100% Exam Passing Guarantee: https://www.actual4labs.com/Huawei/H12-722-ENU-actual-exam-dumps.html