Huawei H12-722-ENU 問題集

質問 1：
For the description of the AntiDDoS system, which of the following option is correct?
A. The firewall can only be a detection device.
B. The main role of the cleaning center is to detect and analyze the DDoS attack traffic for the mirrored or light splitting traffic and provide the analysis data to the management center for judgment.
C. The detection center mainly uses the control strategy of the security management center to perform traction and cleaning of the attack traffic. The normal traffic after cleaning is injected back to the customer network and sent to the real destination.
D. The management center mainly completes the processing of attack events, controls the flow policy and cleaning policy of the cleaning center, and classifies various attack events and attack traffic to generate reports
正解：D

質問 2：
The whitelist rule of the firewall antivirus module is configured as *example*. Which of the following matches is used in this configuration?
A. Prefix matching
B. exact match
C. Keyword matching
D. Suffix matching
正解：C

質問 3：
Which of the following is not an abnormal condition of the file type recognition result?
A. File extension does not match
B. The file type is not recognized
C. File damage
D. Files are compressed
正解：D

質問 4：
The following commands are configured on the Huawei firewall:
[USG] firewall defend ip-fragment enable
Which of the following situations will be recorded as an attack? (Multiple Choices)
A. DF bit is 1 and Fragment Offset + Length < 65535.
B. DF bit is 0, the MF bit is 1 or the Fragment Offset is not 0.
C. DF bit is 0 and Fragment Offset + Length > 65535.
D. DF bit is 1 and the MF bit is also 1 or the Fragment Offset is not 0.
正解：C,D

質問 5：
In the anti-virus policy configuration of Huawei USG6000 products, which are the HTTP response methods? (Multiple choices)
A. Blocking and pushing pages
B. Popup warning dialog
C. Disable all access for this client
D. Alarms
正解：A,D

質問 6：
Viruses can damage computer systems and falsify or damage business data: Spyware collects, use and disseminate sensitive information from employees. These malicious software seriously interfere with the normal business operations of enterprises. Desktop anti-virus software can solve the problem of viruses and spyware globally.
A. False
B. True
正解：A

質問 7：
For SYN flood attacks, TCP source authentication and TCP proxy can be used for defense.
Which of the following description is correct?
A. After the TCP source authentication passes the source authentication of the client, it is added to the whitelist. Then the SYN packet of this source still needs to be verified.
B. During the TCP proxy process, the firewall proxies and responds to every SYN packet received and maintains half-connection. Therefore, when the traffic of the SYN packet is heavy, the firewall requires very high performance.
C. TCP proxy means that the firewall is deployed between the client and the server. When the client sends an SYII packet to the server through the firewall, the firewall instead of the server establishes a three-way handshake with the client. Generally used for scenarios where the path of the packet is inconsistent.
D. TCP source authentication has the same restriction on the path of packets, so the application is not as common as TCP proxy.
正解：B