Huawei H12-724 Dumps

SACG and IP Address is 2.1.1.1 The server linkage is unsuccessful.

SACG The linkage with the controller is successful.

main controller IP address is 1.1.1.2.

main controller IP address is 2.1.1.1.

True

False

Obtain

deploy

run

Uninstall

User use portal Page for authentication

Users follow WeChat for authentication.

User use IAC Client authentication

User use Pota At the first certification,RAOIUS Used by the server cache terminal MAC Address, if the terminal goes offline and then goes online again within the validity period of the cache,RAIUS The server directly searches the cache for the terminal's MAC The address is discussed.

Threaten the security of the user's host and network.

Some viruses can be used as intrusion tools, such as Trojan horse viruses,

Control the host computer's accumulated limit and the user's data, and some viruses may even cause damage to the host's hardware.

Can easily pass the defense of Huawei USG6000 products

It is mainly used for real-time monitoring of the information of the critical path of the network, listening to all packets on the network, collecting data, and analyzing suspicious objects

Use the newly received network packet as the data source;

Real-time monitoring through the network adapter, and analysis of all communication services through the network;

Used to monitor network traffic, and can be deployed independently.

Ordinary attacks will usually be cleaned locally first.

If there is a large traffic attack on the network, send it to the cloud cleaning center to share the cleaning pressure.

Since the Cloud Cleaning Alliance will direct larger attack flows to the cloud for cleaning, it will cause network congestion.

The closer to the attacked self-labeled cloud cleaning service, the priority will be called.

155955cc-666171a2-20fac832-0c042c0430

True

False

Web security protection

Global environment awareness

Sandbox and big data analysis

Intrusion prevention

True

False

Scanning attacks include address scanning and port scanning.

It is usually the network detection behavior before the attacker launches the real attack.

155955cc-666171a2-20fac832-0c042c0424

The source address of the scanning attack is real, so it can be defended by adding direct assistance to the blacklist.

When a worm virus breaks out, it is usually accompanied by an address scanning attack, so scanning attacks are offensive.

Single packet attack

Floating child attack

Malformed message attack

Snooping scan attack

Website phishing deception

Website Trojan

SQL injection

Cross-site scripting attacks 2335

Common_ user Users can access Internet www H.

VIP Users can access Internet w H.

VIP Can visit Mail Server H.

Common user Users can access Mail_ Sever resource.

The drainage task needs to be configured on the management center, and when an attack is discovered, it will be issued to the cleaning center.

It is necessary to configure the protection object on the management center to guide the abnormal access flow in etpa

Port mirroring needs to be configured on the management center to monitor abnormal traffic.

155955cc-666171a2-20fac832-0c042c0411

The reinjection strategy needs to be configured on the management center to guide the flow after cleaning. Q:

You can check whether there is a weak password.

You can check whether the account has joined a specific group.

It cannot be repaired automatically._

It is not possible to check whether the password length meets the requirements.

The basic mode can effectively block the access from the Feng Explor client.

The bot tool does not implement a complete HTTP protocol stack and does not support automatic redirection, so the basic mode can effectively defend against HTTP Flood attacks.

hit.

When there is an HTTP proxy server in the network, the firewall will add the IP address of the proxy server to the whitelist, but it will recognize the basic source of the zombie host.

The certificate is still valid.

The basic mode will not affect the user experience, so the defense effect is higher than the enhanced mode.

True

False

Teardrop attack

Ping of Death attack

IP Spoofng attack

Land attack

Use BGP to publish UNR routes to achieve dynamic diversion.

After receiving the UNR route, the peer neighbor will not send it to any BGP neighbor.

You also need to configure the firewall ddos ​​bgp-next-hop fib-filter command to implement back-injection.

The management center does not need to configure protection objects. When an attack is discovered, it automatically issues a traffic diversion task.

True

False

exist Any Office When logging in with an account for the first time, the terminal host is automatically bound to the current account, but the automatic binding process requires administrator approval

When other accounts need to be authenticated on the bound terminal host, there is no need to find the asset owner who is bound for the first time to authorize themselves.

Binding terminal hosts and accounts is only applicable to terminal users through Any Office Scenarios for authentication, Not applicable Web Agent Plugins and Web The scenario where the client authenticates.

There are only consoles in the account binding terminal host, which cannot be configured by the administrator.

Short message

E-mail

Web Print

Voicemail

True

155955cc-666171a2-20fac832-0c042c0433

False

True

False

The terminal host does not install the software in the whitelist, nor the software in the blacklist.

The terminal host installs all the software in the whitelist, but does not install the software in the blacklist.

The terminal host installs part of the software in the whitelist, but does not install the software in the blacklist.

The terminal host installs all the software in the whitelist, and also installs some of the software in the blacklist.

ARP Message

DHCP Message P

DHCPv6 Message

ICMP Message

When configuring the policy template, you can inherit the parent template and modify the parent template policy

Only the strategy in the strategy template can be used, and the administrator cannot customize the strategy.

You can assign a policy template to a certain network segment.

If different policy templates are applied to departments and accounts, the policy template assigned to the highest priority will take effect. The priority relationship of the number is: account>department

True

False

Set local blacklist and whitelist: Both blacklist and whitelist can be configured at the same time, or only one of them can be configured.

In the "Whitelist" text box, enter the P address and mask of the SMTP Server to be added to the whitelist. You can enter multiple IP addresses, one IP address

Address one line. v

Enter the IP address and mask of the SMITP Server to be added to the blacklist in the "Blacklist" text box, you can enter multiple IP addresses, one IP

Address one line.

The priority of the blacklist is higher than that of the whitelist.

Straight forward to return authentication failure information.

Discard user information.

User 91 Information sent to AD The server performs verification.

Synchronize the database again.

Local upgrade

Manual upgrade

Online upgrade

Automatic upgrade

The administrator has not set the time to vote every day from 9:00 to 18:00

The shopping website does not belong to the predefined shopping website category

The administrator did not submit the configuration after completing the configuration.

The administrator has not applied the URL pass-through configuration file to the security policy.

400.

404

200

503

router

switch

Firewall

IPS

MAC authentication does not require users to install any client software.

The user name format used by MAC authentication is only one of MAC address user name format.

MAC authentication actually uses 802 1X authentication method.

MAC bypass authentication solves the situation of both 802.1x client authentication and MAC authentication in the same network environment.

MAC Address format

Fixed username form

DHCP Option format

ARP Option format

Page customization stage

Account application stage

User authentication phase

Audit and cancellation stage

File filtering can reduce the risk of malicious code execution and virus infection in the internal network by blocking the transmission of fixed types of files, and it can also prevent

Prevent employees from leaking company confidential documents to the Internet.

Content filtering can prevent the disclosure of confidential information and the transmission of illegal information

The application behavior control function can finely control common HTTP behaviors and FTP behaviors.

Mail filtering refers to the management and control of mail sending and receiving, including preventing the flooding of spam and anonymous emails, and controlling the sending and receiving of illegal emails.

4-1-2-3

1-4-2-3

1-3-2-4

2-4-1-3:

The file filtering module will compare the application type, file type, and transmission direction of the file identified by the previous module with the file filtering rules configured by the administrator.

Then the lookup table performs matching from top to bottom.

If all the parameters of Wenzhu can match all file filtering rules, then the module will execute the action of this file filtering rule.

There are two types of actions: warning and blocking.

If the file type is a compressed file, then after the file filtering check, the female file will be sent to the file decompression module for decompression and decompression.

Press out the original file. If the decompression fails, the file will not be re-filed.

Portal server IP

Portal page URL

shared-key

Portal Protocol version

1433 port are occupied by the other processes

equipment 21 port is occupied

without prior installation of Microsoft SQL Server 2005 Toolkit

The operating system is Microsoft Windows Server 2003

True

False

The client is Any 0fice software.

Portal The role of the server is to receive client authentication requests, provide free portal services and authentication interfaces, and exchange client authentication information with access devices.

RADIUS The role of the server is to authenticate all the users in the network segment HTTP Requests are redirected to Portal server.

The role of admission control equipment is to complete the authentication, authorization and accounting of users.

WIDS Is a wireless intrusion prevention system

WIPS Wireless intrusion detection system

WIDS Is a wireless intrusion countermeasure system

WIPS Is a wireless intrusion prevention system

User passed web The method can support two authentication types: local authentication and digital certificate authentication.

User passed web Agent The method can support two authentication types: digital certificate authentication and system authentication.

User passed Agent The method can support three authentication types: local authentication, digital certificate authentication and system authentication.

User passed web Agent The method can support two authentication types: digital certificate authentication and local authentication.

HTTP POST is generally used to send information to the server through a web page, such as forum posting x form submission, username I password login.

When the file upload operation is allowed, the alarm threshold and blocking threshold can be configured to control the size of the uploaded file.

When the size of the uploaded or downloaded file and the size of the content of the POST operation reach the alarm threshold, the system will generate log information to prompt the device management

And block behavior.

When the uploaded or downloaded file size, POST operation content size reaches the blocking threshold, the system will only block the uploaded or downloaded file, POST

operate.

True

False

True

False

The business management plane focuses on administrators, authentication servers, and policy servers.

The network equipment plane focuses on user terminals and static resources.

The user plane focuses on authentication points and policy enforcement points.

The business free mobility logic architecture includes a management subsystem, an authentication and authorization subsystem, and a business strategy subsystem.

True

False

access mode

Normal mode

Mixed mode

Monitoring mode

Local account authentication

Anonymous authentication

AD Account Verification

MAC Certification

The data boy is huge

A wide variety of data

Low value density

Slow processing speed