Last H12-722 practice test reviews Practice Test Huawei dumps [Q72-Q95]

Rate this post

Last H12-722 practice test reviews: Practice Test Huawei dumps

Try H12-722 Free Now! Real Exam Question Answers Updated [Jul 18, 2022]

QUESTION 72
In the security protection system of cloud era, reforms must be carried out in advance, in the event, and afterwards, and continuous improvement and development of closed loops must be formed.
Which of the following key points should be fulfilled in “in the matter”? (Multiple choices)

Vulnerability information

Defense in depth

Offensive and defensive situation

Counterattacks Hackers

QUESTION 73
Which of the following files can the sandbox detect? (multiple choice)

www file

PE file

Picture file

Mail

QUESTION 74
Regarding Huawei’s anti-virus technology, which of the following statements is wrong?

The virus detection system cannot directly detect compressed files

The anti-virus engine can detect the file type through the file extension

Gateway antivirus default file maximum decompression layer is 3 layers

The implementation of gateway antivirus is based on proxy scanning and stream scanning

QUESTION 75
Anti-DDoS defense system includes: management center, inspection center and cleaning center.

True

False

QUESTION 76
Which of the following is correct about the order of the file filtering technology process?
(1) Security policy application is permit
(2) Protocol decoding
(3) File Type Identification
(4) Application identification
(5) File Filtering

(1) (2) (3) (4) (5)

(1) (4) (2) (3) (5)

(1) (2) (4) (3) (5)

(1) (3) (2) (4) (5)

QUESTION 77
After the data file hits the whitelist of the firewall anti-virus module, the firewall will no longer do virus detection on the file.

True

False

QUESTION 78
Information security is the protection of information and information systems against unauthorized access, use, disclosure, interruption, modification, destruction and thereby providing confidentiality, integrity and availability.

True

False

QUESTION 79
For SYIN Flood attacks, TCP source authentication and TCP proxy can be used for defense. Which of the following descriptions is correct?

TCP proxy means that the firewall is deployed between the client and the server. When the SYI packet sent by the client to the server passes through the firewall, the The firewall replaces the server and establishes a three-way handshake with the client. Generally used in scenarios where the back and forth paths of packets are inconsistent.

During the TCP proxy process, the firewall will proxy and respond to each SYN message received, and maintain a semi-connection, so when the SYN message is When the document flow is heavy, the performance requirements of the firewall are often high.

TCP source authentication has the restriction that the return path must be consistent, so the application of TCP proxy is not common. State “QQ: 9233

TCP source authentication is added to the whitelist after the source authentication of the client is passed, and the SYN packet of this source still needs to be verified in the future.

QUESTION 80
When misuse detection techniques are used, false positives are reported if the normal user behavior matches the intrusion signature repository successfully.

True

False

QUESTION 81
Regarding the local black and white list of anti-spam messages, which of the following statements is wrong?

The black and white list is matched by extracting the destination IP address of the SMTP connection

The black and white list is matched by the sender’s dns suffix

Black and white lists are matched by extracting the source IP address of the SMTP connection

Block the connection if the source IP address of the SMTP connection matches the blacklist

QUESTION 82
The application behavior control configuration file takes effect immediately after being referenced, without configuration submission.

True

False

QUESTION 83
When you suspect that the company’s network has been attacked by hackers, you have carried out a technical investigation. Which of the following options does not belong to the behavior that occurred in the early stage of the attack?

Planting malware

Vulnerability attack

Web application attacks

Brute force

QUESTION 84
Which of the following descriptions about viruses and Trojans are correct? (multiple choices)

Viruses are triggered by computer users

Viruses can replicate themselves

Trojan horses are triggered by computer users

Trojans can replicate themselves

QUESTION 85
Which of the following options does not belong to the defense against HTTP flood attacks?

HTTP Flood Source Authentication

HTTP source statistics

URI source fingerprint learning function

Baseline learning

QUESTION 86
SQI injection attacks generally have the following steps:
1, Privilge Escalation
2, Get the data in the database
3, To determine whether there is a vulnerability in the webpage
4, Determine the database type
Which of the following options is correct for the ordering of these steps?

3, 4, 1, 2

3, 4, 2, 1

4, 1, 2, 3

4, 2, 1, 3

QUESTION 87
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an attack? (Multiple Choices)

DF bit is 1 and the MF bit is also 1 or the Fragment Offset is not 0.

DF bit is 0, the MF bit is 1 or the Fragment Offset is not 0.

DF bit is 0 and Fragment Offset + Length > 65535.

DF bit is 1 and Fragment Offset + Length < 65535.

QUESTION 88
Regarding the process of file filtering, which of the following statements is wrong?

After the file extraction fails, the file will still be filtered.

The application identification module can identify the type of application hosting the file.

Protocol decoding is responsible for parsing the file data and file transfer directions in the data stream.

The file type identification module is responsible for identifying the real type of the file and the extension of the file based on the file data

QUESTION 89
When the AntiDDoS system detects attack traffic, the attack traffic is directed to the cleaning device. After the cleaning device completes cleaning, the traffic is re-injected to the original link. Which of the following options does not belong to the injection method?

Policy Routing injection

GRE injection

MPLS LSP injection

BGP injection

QUESTION 90
Based on the anti-virus gateway of streaming scan, which of the following descriptions is wrong?

Rely on state detection technology and protocol analysis technology

The performance is higher than the agent-based method

The cost is smaller than the agent-based approach

The detection rate is higher than the proxy-based scanning method

QUESTION 91
Due to differences in network environment and system security strategies, intrusion detection systems are also different in specific implementation. From the perspective of system composition, the main Which four major components are included?

Event extraction, intrusion analysis, reverse intrusion and remote management.

Incident extraction, intrusion analysis, intrusion response and on-site management.

Incident recording, intrusion analysis, intrusion response and remote management.

Incident extraction, intrusion analysis, intrusion response and remote management.

QUESTION 92
What are the typical technologies of anti-virus engines (multiple choice)

First package detection technology

Heuristic detection technology

Decryption technology

File reputation detection technology 5

QUESTION 93
The administrator has configured file filtering to prohibit internal employees from uploading development files, but internal employees can still upload development files. Which of the following is not allowed Can the reason?

The file filtering configuration file is not referenced in the security policy

File filtering configuration file is incorrect

License is not activated.

The action configuration of the file extension does not match is incorrect

QUESTION 94
In the Huawei USG6000 product, after creating or modifying the security configuration file, the configuration content will not take effect immediately: you need to click the “Prompt” in the upper right corner of the interface.
“Hand in” to activate.

True

False

QUESTION 95
File filtering technology can filter files based on the application of the file, the file transfer direction, the file type and the file extension.

True

False