A fully updated 2021 H12-711-ENU Exam Dumps exam guide from training expert ExamDumpsVCE [Q148-Q169]

A fully updated 2021 H12-711-ENU Exam Dumps exam guide from training expert ExamDumpsVCE

Provides complete coverage of every objective on exam and exam preparation H12-711-ENU

NEW QUESTION 148
Which of the following is an action to be taken during the eradication phase of the cybersecurity emergency response? (Multiple Choice)

• A. Find sick Trojans, illegal authorization, system vulnerabilities, and deal with it in time
• B. Block the behavior of the attack, reduce the scope of influence
• C. Confirm the damage caused by security incidents and report security incidents
• D. Revise the security policy based on the security incident that occurred, enable security auditing

Answer: A,D

 

NEW QUESTION 149
Electronic evidence preservation is directly related to the legal effect of evidence, in line with the preservation of legal procedures, and its authenticity and reliability are guaranteed. Which of the following is not an evidence preservation technology?

• A. Digital signature technology
• B. Message tag tracking technology
• C. Encryption technology
• D. Digital certificate technology

Answer: B

 

NEW QUESTION 150
Which of the following statement about the L2TP VPN of Client-initialized is wrong?

• A. remote users do not need to install VPN client software
• B. LNS assign a private IP address for remote users
• C. LNS device receives user L2TPconnection request, can verify based on user name and password.
• D. After the remote user access to internet, can initiate L2TP tunneling request to the remote LNS directly through the client software

Answer: A

 

NEW QUESTION 151
In some scenarios, it is necessary to convert the source IP address and the destination IP address. Which of the following techniques is used in the scenario?

• A. Two-way NAT
• B. Source NAT
• C. NAT-Server
• D. NAT ALG

Answer: A

 

NEW QUESTION 152
Which of the following statement is wrong about L2TP VPN?

• A. Belongs to Layer 3 VPN technology
• B. Applicable to business employees dialing access to the intranet
• C. Will not encrypt the data
• D. Can be used in conjunction with IPsec VPN

Answer: A

 

NEW QUESTION 153
Which of the following statement about the NAT configuration is wrong?

• A. When there is VoIP service in the network, you do not need to configure NAT ALG.
• B. The firewall does not support NAPT conversion for ESP and AH packets.
• C. Configure source NAT in transparent mode, the firewall does not support easy-ip mode.
• D. The IP address in the address pool can overlap with the public IP address of the NAT server.

Answer: B

 

NEW QUESTION 154
The Protocol field in the IP header identifies the protocol used by the upper layer.
Which of the following field values indicates that the upper layer protocol is UDP protocol?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: C

 

NEW QUESTION 155
Which of the following option does not belong to symmetric encryption algorithm?

• A. AES
• B. RSA
• C. 3DES
• D. DES

Answer: B

 

NEW QUESTION 156
Caesar Code is primarily used to encrypt data by using a stick of a specific specification.

• A. False
• B. True

Answer: A

 

NEW QUESTION 157
In the Client-Initiated VPN configuration, generally it is recommended to plan the address pool and the headquarters of the network address for the different network segments, or need to open proxy forwarding on the gateway device.

• A. True
• B. False

Answer: A

 

NEW QUESTION 158
Which of the following description is wrong about the intrusion detection system?

• A. The flood detection system can be linked with firewalls and switches to become a powerful "helper" of the firewall, which is better and more precise to control traffic access between domains.
• B. The intrusion detection system can perform blocking operation if it finds that there is a violation of the security policy or the system has traces of being attacked.
• C. The intrusion detection system can dynamically collect a large amount of key information and materials through the network and computer, and can timely analyze and judge the current state of the entire system environment.
• D. Intrusion detection system includes all hardware and software systems for intrusion detection

Answer: D

 

NEW QUESTION 159
Which of the following is not part of the LINUX operating system?

• A. MAC OS
• B. CentOS
• C. RedHat
• D. Ubuntu

Answer: A

 

NEW QUESTION 160
Which of the following information will be encrypted during the use of digital envelopes? (Multiple Choice)

• A. User data
• B. Receiver private key
• C. Receiver public key
• D. Symmetric key

Answer: A,D

 

NEW QUESTION 161
Which of the following attacks can DHCP Snooping prevent? (Multiple Choice)

• A. IP spoofing attack
• B. DHCP Server counterfeiter attack
• C. Intermediaries and IP/MAC spoofing attacks
• D. Counterfeit DHCP lease renewal packet attack using option82 field

Answer: A,B,C,D

 

NEW QUESTION 162
Manual auditing is a supplement to tool evaluation. It does not require any software to be installed on the target system being evaluated, and has no effect on the operation and status of the target system.
Which of the following options does not include manual auditing?

• A. Manual inspection of the database
• B. Manual inspection of network equipment
• C. Manual detection of the host operating system
• D. Manual inspection of the administrator's operation of the equipment process

Answer: D

 

NEW QUESTION 163
The attacker by sending ICMP response request, and will request packet destination address set to suffer Internet radio address.
Which kind of attack does this behavior belong to?

• A. ICMP redirect attack
• B. Smurf attack
• C. SYN flood attack
• D. IP spoofing attack

Answer: B

 

NEW QUESTION 164
On the USG series firewall, after the web redirection function is configured, the authentication page cannot be displayed. Which of the following is not the cause of the fault?

• A. Web authentication is not enabled.
• B. The browser SSL version does not match the SSL version of the firewall authentication page.
• C. The port of service of authentication page is set to 8887
• D. The authentication policy is not configured or the authentication policy is incorrectly configured.

Answer: C

 

NEW QUESTION 165
IPSec VPN uses an asymmetric encryption algorithm to encrypt the transmitted data.

• A. False
• B. True

Answer: A

 

NEW QUESTION 166
Which of the following is not a requirement for firewall double hot standby?

• A. The type and number of the interface used are the same.
• B. The firewall interface has the same IP address.
• C. The firewall hardware model is consistent
• D. The firewall software version is consistent

Answer: B

 

NEW QUESTION 167
Regarding the comparison between windows and Linux, which of the following statements is wrong?

• A. Getting started with Linux is more difficult and requires some learning and guidance.
• B. Windows can be compatible with most software, playing most games
• C. Linux is open source code, you can do what you want.
• D. windows is open source, you can do what you want.

Answer: D

 

NEW QUESTION 168
In practical applications, asymmetric encryption is mainly used to encrypt user data.

• A. False
• B. True

Answer: A

 

NEW QUESTION 169
......

Tested Material Used To H12-711-ENU: https://www.examdumpsvce.com/H12-711-ENU-valid-exam-dumps.html