[May 2018] New H12-722-ENU HCNP-Security-CTSS Free Online Test

Good News: New H12-722-ENU HCNP-Security-CTSS exam questions have been updated on May.11, 2018. With latest H12-722-ENU exam questions and answers, you can completed your H12-722-ENU HCNP-Security-CTSS (Huawei Certified Network Professional -Constructing Terminal Security System) exam.

HCDATEST has released New H12-722-ENU HCNP-Security-CTSS Free Online Test to help you test H12-722-ENU exam online. There are 25 free online test questions for testing New H12-722-ENU HCNP-Security-CTSS exam. Answer one free online question correctly will get 4 score. The total is 100 score. Before deciding to hold full version of New H12-722-ENU HCNP-Security-CTSS exam questions, please test HCDATEST New H12-722-ENU HCNP-Security-CTSS Free Online Test now.

Begin to Test:

1. If the user's FTP operation matches the FTP filtering policy, which actions can be performed? (Multiple choice)

Blocking

Announcement

Alerts

Execution

Question 1 of 25

2. About firewalls and IDS, which of the following is true?

Firewall is a bypass device for fine-grained detection

IDS is a straight-path device and can't perform depth detection

Firewall is unable to detect insider malicious operation or misoperation

IDS can't interact with the firewall

Question 2 of 25

3. Which of the following attack types is DDoS attack?

Single package attack

Traffic attack

Malformed packet attack

Snooping scanning attack

Question 3 of 25

4. Why APT attacks are difficult to defend? Part of the reason is that they use zero-day loopholes to attack. This zero-day loopholes usually takes a lot of time to research and analyze and make corresponding defense methods.

True

False

Question 4 of 25

5. The whitelist rule of the firewall antivirus module is configured as *example*. Which of the following matches is used in this configuration?

Prefix matching

Suffix matching

Keyword matching

exact match

Question 5 of 25

6. UDP is a connectionless protocol. A large number of UDP flood attacks cause the performance of network devices that rely on session forwarding to be degraded and even the session table is exhausted, causing network congestion.
Which of the following options does not prevent UDP flood attacks?

UDP fingerprint learning

Associated defense

Current limiting

First packet discarded

Question 6 of 25

7. Regarding the process of file filtering, which of the following statements is wrong?

After the file extraction fails, the file will still be filtered.

The application identification module can identify the type of application hosting the file.

Protocol decoding is responsible for parsing the file data and file transfer directions in the data stream.

The file type identification module is responsible for identifying the real type of the file and the extension of the file based on the file data

Question 7 of 25

8. Huawei WAF products mainly consist of implementing front-end, back-end central systems and databases. The database mainly stores the front-end detection rules and black and white list configuration files.

True

False

Question 8 of 25

9. Misuse detection discovers intrusion activity in system by detecting similar behaviors of user intrusions, or by detecting violations of system security rules indirectly by exploiting system flaws.
Which of the following is not misuse detection feature?

Easy to implement

Accurate detection

Effective detection of impersonation of legitimate users

Easy to upgrade

Question 9 of 25

10. Huawei NIP6000 products have zero-setting network parameters and plug-and-play functionality because interfaces pairs only work on Layer 2 and do not need to set IP address.

True

False

Question 10 of 25

11. During the infiltration phase of APT attack, which of the following attack behaviors will the attacker generally have?

Long-term latency and key data collection.

Leaks key data information to interested third parties.

By phishing emails, attachments carrying a 0day vulnerability cause the user's terminal to become a springboard for attacks.

The attacker sends C&C attack or other remote command to the infected host, cause the attack to spread horizontally across the intranet.

Question 11 of 25

12. What are the risks to information security caused by unauthorized access? (Multiple choices)

Confidentiality

Integrity

Availability

recoverability

Question 12 of 25

13. Network attacks are classified into two types: single-packet attacks and traffic-based attacks. Single-packet attacks include scanning and snooping attacks, malformed packet attacks and special packet attacks.

True

False

Question 13 of 25

14. Which of the following attacks are belong to attacks against Web servers? (Multiple choices)

Website fishing fraud

Website Trojan

SQL injection

Cross-site scripting attacks

Question 14 of 25

15. Which of the following is correct configuration strategy for anti-virus policy?
1. Load feature library
2. Configure security policy and reference AV profile
3. Apply and activate license
4. Configure AV Profile
5. Submit

3 -> 1 -> 4 -> 2 -> 5

3 -> 2 -> 4 -> 1 -> 5

3 -> 2 -> 1 -> 4 -> 5

3 -> 1 -> 2 -> 4 -> 5

Question 15 of 25

16. In the security protection system of cloud era, reforms must be carried out in advance, in the event, and afterwards, and continuous improvement and development of closed loops must be formed.
Which of the following key points should be fulfilled in "in the matter"? (Multiple choices)

Vulnerability information

Defense in depth

Offensive and defensive situation

Counterattacks Hackers

Question 16 of 25

17. Huawei NIP6000 products provide carrier-grade high-reliability mechanisms at multiple levels to ensure the stable operation of the equipment.
Which of the following options belong to the reliability of the network? (Multiple choices)

Hot Standby

Power 1+1 redundancy backup

Hardware Bypass

Link-group

Question 17 of 25

18. Which of the following are the common causes of IPS detection failures? (Multiple choices)

IPS policy is not submitted for compilation

Policy IDs with incorrect associations between IPS policy domains

IPS function is not enabled

Bypass function in IPS is turned off

Question 18 of 25

19. About the description of the file filtering technology in the USG6000, which statement is wrong?

It can identify the application hosting the file, the file transfer direction, the file type, and the file extension.

Even if the file type is modified, it can recognize the true type of the file.

It can identify the types of files transmitted by itself and can block, alert and announce specific type of files.

It supports the filtering of the decompressed contents of the compressed file.

Question 19 of 25

20. About the anti-virus gateways based on flow-scanning, which of the following statement is wrong?

Depends on state detection technology and protocol analysis technology

Performance is higher than proxy-based

The cost is smaller than proxy-based

The detection rate is higher than proxy-scanning-based

Question 20 of 25

21. For the description of the DNS Request Flood attack, which of the following option is correct?

The DNS request flood attack on the cache server can use the redirection mode to verify the validity of the source.

For the DNS request flood attack of the authorization server, you can trigger the client to send a DNS request with a TCP packet to verify the validity of the source IP address.

In the process of source authentication, the firewall triggers the client to send a DNS request with TCP packets to verify the validity of the source IP, but it will consume the TCP connection resources of the DNS cache server to some extent.

Redirection can be implemented not only for the source IP address of the attacked domain name, but also for the destination IP address of the attacked domain name.

Question 21 of 25

22. Which of the following statements is wrong about anti-spam answerback codes?

The answerback code will be different for different RBL service providers.

The USG treats the mail that matches the answerback code as spam.

Release the message if the answerback code does not reply to or the replied answerback code is not configured on the USG.

The answerback code is uniformly set as 127.0.0.1.

Question 22 of 25

23. The configuration commands for enabling the attack defense function are as follows:
[FW] anti-ddos syn-flood source-detect
[FW] anti-ddos udp-flood dynamic-fingerprint-learn
[FW] anti-ddos udp-frag-flood dynamic-fingerprint-learn
[FW] anti-ddos http-flood defend alert-rate 2000
[FW] anti-ddos http-flood source-detect mode basic
Which of the following are the correct descriptions of the attack prevention configuration? (Multiple Choices)

The SYN Flood source detection and prevention function is enabled on the firewall.

The firewall uses the first packet discard to defense the UDP flood attacks.

HTTP flood attack defense uses enhanced mode for defense.

The threshold value enabled by HTTP Flood defense is 2000.

Question 23 of 25

24. The application behavior control configuration file takes effect immediately after reference, without configuring the submission.

True

False

Question 24 of 25

25. Which of the following are true about the description of keywords? (Multiple Choices)

Keywords are content that the device needs to recognize when content is filtered.

Keywords include predefined keywords and custom keywords.

The minimum length of a keyword that a text can match is 2 bytes.

Custom keywords can only be defined in text mode.

Question 25 of 25

HCDA Test Preparations

Latest Huawei Exam Dumps | New HCIA, HCIP and HCIE Tests

[May 2018] New H12-722-ENU HCNP-Security-CTSS Free Online Test

Leave a Reply Cancel reply

Recent Posts

Tags