Current H12-724 Exam Dumps [2023] Complete Huawei Exam Smoothly [Q180-Q200]

Rate this post

Current H12-724 Exam Dumps [2023] Complete Huawei Exam Smoothly

H12-724 Premium PDF & Test Engine Files with 359 Questions & Answers

Huawei H12-724 (HCIP-Security (Fast track) V1.0) Certification Exam is a valuable credential for IT professionals who wish to demonstrate their expertise in network security. H12-724 exam covers a range of topics, including network security, firewall technology, VPN technology, and intrusion prevention technology. Passing this certification exam demonstrates that an individual has a comprehensive understanding of network security and is capable of designing, deploying, and maintaining secure network infrastructures. If you’re a security professional looking to take your skills to the next level, the Huawei H12-724 certification exam is definitely worth considering.

Huawei H12-724 (HCIP-Security (Fast track) V1.0) Certification Exam is a globally recognized certification exam that focuses on advanced security technologies and solutions. H12-724 exam is designed to validate the skills and expertise of the professionals in planning, designing, deploying, and managing security solutions based on Huawei products and technologies. HCIP-Security (Fast track) V1.0 certification exam is ideal for security engineers, administrators, and architects who want to enhance their skills and expertise in the field of security.

NO.180 Which of the following options are correct for the description of visitor management? (Multiple choice)

Visitor registration account can be configured to be exempt from approval

Guest login can only be configured as Web Way of webpage

Anonymous account authentication cannot be performed on the guest authentication page

Visitor account approval information can be notified to visitors via SMS

NO.181 For the basic mode of HTTP Flood source authentication, which of the following options are correct?
(multiple choice)

The basic mode can effectively block the access from the Feng Explor client.

The bot tool does not implement a complete HTTP protocol stack and does not support automatic redirection, so the basic mode can effectively defend against HTTP Flood attacks.
hit.

When there is an HTTP proxy server in the network, the firewall will add the IP address of the proxy server to the whitelist, but it will recognize the basic source of the zombie host.
The certificate is still valid.

The basic mode will not affect the user experience, so the defense effect is higher than the enhanced mode.

NO.182 File filtering technology can filter files based on the application of the file, the file transfer direction, the file type and the file extension.

True

False

NO.183 After enabling the IP policy, some services are found to be unavailable. Which of the following may be caused by? (multiple choice)

Only packets in one direction pass through the firewall

The same message passes through the firewall multiple times

IPS underreporting

Excessive traffic causes the Bypass function to be enabled

NO.184 How to check whether the SM and SC silverware start normally after installing the Agile Controller-Campus) (multiple delivery)

Open https://SM server IP:8943 in the browser, enter the account admin and the default password Changeme123, if the login is successful, it will be explained. The SIM components are normal.

After logging in to SC, select Resources>Users>User Management to create a common account. Open https://SM server IP:8447 in the browser newauth, if you can successfully log in using the account created in the previous step, the SM component is normal.

Open https://SC Server IP:8443 in the browser and enter the account admin and the default password Changeme123. If the login is successful, it will be explained. The SC component is normal.

After logging in to SM, select Ziyuan>User>User Management, and Xinlu has a common part number. Open https://SC server IP:8447 newauth in the browser. If you can successfully log in with the account created in the previous step, it means that the SC component is Wang Chang.

NO.185 The core technology of content security lies in anomaly detection, and the concept of defense lies in continuous monitoring and analysis.

True

False

NO.186 The access control server is the implementer of the corporate security policy, responsible for implementing the corresponding access control in accordance with the security policy formulated by the customer’s network(Allow, deny, leave or restrict).

True

False

NO.187 Regarding intrusion prevention, which of the following option descriptions is wrong

Intrusion prevention is a new security defense technology that can detect and prevent intrusions.

Intrusion prevention is a security mechanism that detects intrusions (including buffer overflow attacks, Trojan horses, worms, etc.) by analyzing network traffic

Intrusion prevention can block attacks in real time.

Intrusion prevention technology, after discovering an intrusion, the firewall must be linked to prevent the intrusion

NO.188 Agile Controller-Campus The system architecture belongs to C/S Architecture.

True

False

NO.189 Which of the following options is for Portal The description of the role of each role in the authentication system is correct?

The client is Any 0fice software.

Portal The role of the server is to receive client authentication requests, provide free portal services and authentication interfaces, and exchange client authentication information with access devices.

RADIUS The role of the server is to authenticate all the users in the network segment HTTP Requests are redirected to Portal server.

The role of admission control equipment is to complete the authentication, authorization and accounting of users.

NO.190 Which of the following options will not pose a security threat to the network?

Hacking

Weak personal safety awareness

Open company confidential files

Failure to update the virus database in time

NO.191 Which of the following statement is correct about Policy Center system client function?

NAC Agent support MAC account login.

Web page login for authentication and can perform checks Strategy.

Web Agent login for identity certification and security certification.

NAC Agent cannot be installed on Windows Vista operating system.

NO.192 In the scenario of SACG linkage in bypass mode, only the traffic initiated by the terminal user will pass through the firewall, and the server will return to the terminal in use.
The traffic does not need to go through the firewall y. For the firewall, it belongs to the scenario of inconsistent traffic back and forth paths, this needs to turn off the session state check function.

True

False

NO.193 The administrator of a certain enterprise wants employees of Yangzhi to visit the shopping website during working hours. So a URL filtering configuration file is configured to divide the predefined The shopping website in the category is selected as blocked. But employee A can still use the company’s network to shop online during lunch break. Then what are the following possible reasons some?

The administrator has not set the time to vote every day from 9:00 to 18:00

The shopping website does not belong to the predefined shopping website category

The administrator did not submit the configuration after completing the configuration.

The administrator has not applied the URL pass-through configuration file to the security policy.

NO.194 A network adopts 802. 1X To authenticate access users, the access control equipment is deployed at the convergence layer, and after the deployment is completed, it is used on the access control equipment t-aa The command test is successful, but the user cannot access the network. The failure may be caused by the following reasons? (Multiple choice)

The aggregation layer device is not configured RADIUS Certification template.

Agile Controller-Campus The switch is not added on NAS equipment.

Connect to the terminal on the device to open 802.1X Function.

The Layer 2 link is used between the access device and the aggregation device, and it is not turned on
802 Instrument transparent transmission function

NO.195 An account can only belong to one user group, that is, a user can only belong to one department.

True

False

NO.196 Which of the following options is not a feature of Trojan horses?

Not self-replicating but parasitic

Trojans self-replicate and spread

Actively infectious

The ultimate intention is to steal information and implement remote monitoring

NO.197 Free mobility is a special access control method, according to the user’s access location, access time, access method and terminal authorization instructions. Set permissions, as long as the user’s access conditions remain unchanged, the permissions and network experience after accessing the network–To q

True

False

NO.198 Regarding the way SACG devices connect to the network, which of the following descriptions are correct?
(multiple choice)

SACG The equipment requires Layer 3 intercommunication with the terminal.

SACG It is usually connected to the core switch equipment and uses policy routing to divert traffic.

SACG Support hanging on non-Huawei devices.

SACG Equipment requirements and Agile Controller-Campus Interoperability on the second floor.

NO.199 For the description of the principles of HTTP Flood and HTTPS Flood blow defense, which of the following options are correct? (multiple choice)

HTTPS Flood defense modes include basic mode, enhanced mode and 302 redirection.

HTTPS Flood defense can perform source authentication by limiting the request rate of packets.

The principle of HTTPS Flood attack is to request URIs involving database operations or other URIs that consume system resources, causing server resource consumption. Failed to respond to normal requests.

The principle of HTTPS Flood attack is to initiate a large number of HTTPS connections to the target server, causing the server resources to be exhausted and unable to respond to regular requests.

NO.200 Business accompanying is-A special access control method, according to the user’s access location, access time, access method and terminal use to grant designated investment limits, among which the physical connection can be divided into 3 Class, excluding which of the following access methods?

Wired access

Wireless access

VPN Access

802.1X Access

Loading …