• Home
  • Articles
  • Huawei H12-711_V3.0 Daily Practice Exam New 2022 Updated 396 Questions [Q20-Q40]

Huawei H12-711_V3.0 Daily Practice Exam New 2022 Updated 396 Questions [Q20-Q40]

Share

Huawei H12-711_V3.0 Daily Practice Exam New 2022 Updated 396 Questions

Use Valid H12-711_V3.0 Exam - Actual Exam Question & Answer

NEW QUESTION 20
IPSec VPN uses an asymmetric algorithm to calculate the ______ key to encrypt data messages.

  • A. Symmetry

Answer: A

 

NEW QUESTION 21
Data Analysis Technology is to find, match keywords or key phrases, and analyze the correlation of time in data streams or information streams that have been obtained.
Which of the following does not belong to evidence analysis technology?

  • A. Spam tracking technology
  • B. Exploring the technology of the connection between different evidence
  • C. Password decipherment, data decryption technology
  • D. File Digital Summary Analysis Technology

Answer: A

 

NEW QUESTION 22
According to the requirements of level protection, which of the following behaviors belong to the scope of information security operation and maintenance management? (Multiple choice)

  • A. Develop an emergency response plan
  • B. Harden the security of the host
  • C. Back up or restore data
  • D. Participate in information security training

Answer: A,B,C,D

 

NEW QUESTION 23
Which of the following behavior is needed in the "Check" section in the construction management cycle of the information security system?

  • A. Risk assessment
  • B. Safety management system operation monitoring
  • C. Safety management system design
  • D. Implementation of safety management system

Answer: B

 

NEW QUESTION 24
NAT technology can realize data secure transmission by encrypting data.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 25
Regarding NAT address translation, which of the following statements is wrong?

  • A. Address conversion can provide FTP, WWW, Telnet and other services outside the local area network according to the needs of users
  • B. Some application layer protocols carry IP address information in the data, and when NAT is performed on them, the IP address information in the upper layer data must be modified
  • C. For some non-TCP, UDP protocols (such as ICMP, PPTP), NAT conversion is not possible
  • D. Configure the NAT address pool in the source NAT technology, you can configure only one IP address in the address pool

Answer: C

 

NEW QUESTION 26
On Huawei USG series devices, the administrator wants to erase the configuration file. Which of the following commands is correct?

  • A. clear saved-configuration
  • B. reset running-configuration
  • C. reset saved-configuration
  • D. reset current-configuration

Answer: C

 

NEW QUESTION 27
Which types of the following can the encryption technology be divided into? (Multiple Choice)

  • A. Data encryption
  • B. Fractional symmetric encryption
  • C. Fingerprint encryption
  • D. Symmetrical encryption

Answer: B,D

 

NEW QUESTION 28
Which of the following are the main implementation methods of gateway anti-virus? (Multiple choice)

  • A. Stream scanning method
  • B. File inspection and killing methods
  • C. Proxy scanning method
  • D. Package inspection and killing method

Answer: A,C

 

NEW QUESTION 29
Which of the following is the status information that can be backed up by the HRP (Huawei Redundancy Protocol) protocol? (Multiple choice)

  • A. Session table
  • B. ServerMap table entries
  • C. Routing table
  • D. Dynamic blacklist

Answer: A,B,D

 

NEW QUESTION 30
Clients in the Trust zone of the firewall can log in to the FTP server in the Untrust zone, but cannot download files. Which of the following methods can solve the problem? (Multiple Choice)

  • A. When FTP working mode is Passive mode, modify the security policy action from Trust to Untrust zone to allow
  • B. Release 21 port number between Trust and Untrust
  • C. Enable detect ftp
  • D. When the FTP working mode is port mode, modify the security policy action from Trust to Untrust zone to allow

Answer: A,C

 

NEW QUESTION 31
Which of the following is not included in the Business Impact Analysis (BIA)?

  • A. Business priority
  • B. Incident handling priority
  • C. Impact assessment
  • D. Risk identification

Answer: B

 

NEW QUESTION 32
Which of the following options is not included in the consistency check of the HRP master and backup configuration?

  • A. Authentication strategy
  • B. Whether the heartbeat interface with the same serial number is configured
  • C. NAT policy
  • D. Next hop and outgoing interface of the static route

Answer: D

 

NEW QUESTION 33
Regarding the business continuity plan, which of the following statements is correct? (Multiple choice)

  • A. Not all safety incidents must be reported to the company's senior management
  • B. All possible accidents are thought not to be predicted, so BCP needs to be flexible
  • C. The business continuity plan does not require the participation of the company's senior management before it is formally documented
  • D. The business continuity plan does not require the participation of the company's senior management during the project scope stage

Answer: A,B,C

 

NEW QUESTION 34
Regarding the NAT configuration statement, which of the following is wrong?

  • A. The IP address in the address pool can overlap with the public IP address of the NAT server
  • B. When there are VoIP services in the network, NAT ALG is not required to be configured
  • C. Configure source NAT in transparent mode, the firewall does not support easy-ip mode
  • D. The firewall does not support NAPT conversion of ESP and AH packets

Answer: A

 

NEW QUESTION 35
If internal employees access the Internet through a firewall and find that they cannot connect to the Internet normally, which viewing commands can be used on the firewall to troubleshoot the interface, security zone, security policy, and routing table? (Write any viewing command, require: command line Words must be complete and correct to score, and cannot be omitted or abbreviated)

  • A. display zone | display current-configuration | display ip routing-table | display security-policy rule all | display ip interface brief

Answer: A

 

NEW QUESTION 36
Both GE1/0/1 and GE1/0/2 ports of the firewall belong to the DMZ zone. If you want to realize that the area connected by GE1/0/1 can access the area connected by GE1/0/2, which of the following is correct?

  • A. Need to configure the security policy from local to DMZ
  • B. No configuration required
  • C. Need to configure inter-domain security policies
  • D. Need to configure DMZ to local security policy

Answer: B

 

NEW QUESTION 37
On the surface, threats such as viruses, vulnerabilities, and Trojan horses are the causes of information security incidents, but at the root, information security incidents are also closely related to people and the information system itself.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 38
The reason why OSPF is more commonly used than RIP is that OSPF has a device authentication function and is more secure.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 39
The online scenario of internal users in the enterprise is shown in the figure. The user online process is as follows:
1. After the authentication is passed, the USG allows the connection to be established
2. The user accesses the internet and enters http://1.1.1.1
3. USG push authentication interface
4. The user successfully accesses http://1.1.1.1, and the device creates a session table
5. The user enters the correct user name and password
Which of the following is the correct process sequence?

  • A. 2->5->3->1->4
  • B. 2->1->3->5->4
  • C. 2->3->1->5->4
  • D. 2->3->5->1->4

Answer: D

 

NEW QUESTION 40
......

Test Engine to Practice H12-711_V3.0 Test Questions: https://torrentpdf.exam4tests.com/H12-711_V3.0-pdf-braindumps.html

Related Articles

more
Huawei H12-711_V3.0 Certification Practice Exam

Copyright © 2026 Exam4Tests NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy