• Home
  • Articles
  • [Mar 05, 2022] H12-722_V3.0 Exam Dumps PDF Updated Dump from PassReview Guaranteed Success [Q68-Q84]

[Mar 05, 2022] H12-722_V3.0 Exam Dumps PDF Updated Dump from PassReview Guaranteed Success [Q68-Q84]

Share

[Mar 05, 2022] H12-722_V3.0 Exam Dumps PDF Updated Dump from PassReview Guaranteed Success

Pass Your Huawei Exam with H12-722_V3.0 Exam Dumps

NEW QUESTION 68
In the following options, which of the two attacks use similar attack methods, they will generate a large number of useless response packets, occupying network bandwidth, Consume equipment resources?

  • A. Land and Smurf
  • B. Teardrop and Land35
  • C. Fraggle and Smurt
  • D. Fraggle and Land

Answer: C

 

NEW QUESTION 69
In the deployment of Huawei NIP6000 products, only port mirroring can be used for streaming replication.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 70
Content filtering is a security mechanism for filtering the content of files or applications through Huawei USCG00 products. Focus on the flow through deep recognition Contains content, the device can block or alert traffic containing specific keywords.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 71
The anti-virus feature configured on the Huawei USG6000 product does not take effect. Which of the following are the possible reasons? (multiple choice)

  • A. The anti-virus configuration file is configured incorrectly.
  • B. No virus exceptions are configured.
  • C. The virus signature database version is older.
  • D. The security policy does not reference the anti-virus configuration file.

Answer: A,C,D

 

NEW QUESTION 72
What content can be filtered by the content filtering technology of Huawei USG6000 products?

  • A. File content filtering
  • B. Voice content filtering
  • C. The source of the video content
  • D. Apply content filtering..

Answer: A,D

 

NEW QUESTION 73
The configuration command to enable the attack prevention function is as follows; n
[FW] anti-ddos syn-flood source-detect
[FW] anti-ddos udp-flood dynamic-fingerprint-learn
[FW] anti-ddos udp-frag-flood dynamic fingerprint-learn
[FW] anti-ddos http-flood defend alert-rate 2000
[Fwj anti-ddos htp-flood source-detect mode basic
Which of the following options is correct for the description of the attack prevention configuration? (multiple choice)

  • A. The firewall uses the first packet drop to defend against UDP Flood attacks.
  • B. HTTP Flood attack defense uses enhanced mode for defense
  • C. The threshold for HTTP Flood defense activation is 2000.
  • D. The firewall has enabled the SYN Flood source detection and defense function

Answer: C,D

 

NEW QUESTION 74
Attacks on the Web can be divided into three types of attacks on the client, server, or communication channel.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 75
Abnormal detection is to establish the normal behavior characteristic profile of the system subject through the analysis of the audit data of the system: check if the audit data in the system If there is a big discrepancy with the normal behavior characteristics of the established subject, it is considered an intrusion. Nasu must be used as the system subject? (multiple choice)

  • A. Host
  • B. Single user
  • C. A group of users
  • D. A key program and file in the system

Answer: A,B,C,D

 

NEW QUESTION 76
Which of the following behaviors is a false positive of the intrusion detection system?

  • A. The process of trying to log in to the system is recorded
  • B. Unable to detect new types of worms
  • C. Use Ping to perform network detection and be alerted as an attack
  • D. Web-based attacks are not detected by the system

Answer: C

 

NEW QUESTION 77
Which of the following options does not belong to the security risk of the application layer of the TCP/IP protocol stack?

  • A. Port scan
  • B. Buffer overflow
  • C. System vulnerabilities
  • D. Virus

Answer: A

 

NEW QUESTION 78
For SYIN Flood attacks, TCP source authentication and TCP proxy can be used for defense. Which of the following descriptions is correct?

  • A. TCP source authentication is added to the whitelist after the source authentication of the client is passed, and the SYN packet of this source still needs to be verified in the future.
  • B. TCP source authentication has the restriction that the return path must be consistent, so the application of TCP proxy is not common. State "QQ: 9233
  • C. TCP proxy means that the firewall is deployed between the client and the server. When the SYI packet sent by the client to the server passes through the firewall, the The firewall replaces the server and establishes a three-way handshake with the client. Generally used in scenarios where the back and forth paths of packets are inconsistent.
  • D. During the TCP proxy process, the firewall will proxy and respond to each SYN message received, and maintain a semi-connection, so when the SYN message is When the document flow is heavy, the performance requirements of the firewall are often high.

Answer: D

 

NEW QUESTION 79
For the description of the principles of HTTP Flood and HTTPS Flood blow defense, which of the following options are correct? (multiple choice)

  • A. HTTPS Flood defense can perform source authentication by limiting the request rate of packets.
  • B. The principle of HTTPS Flood attack is to request URIs involving database operations or other URIs that consume system resources, causing server resource consumption.
    Failed to respond to normal requests.
  • C. HTTPS Flood defense modes include basic mode, enhanced mode and 302 redirection.
  • D. The principle of HTTPS Flood attack is to initiate a large number of HTTPS connections to the target server, causing the server resources to be exhausted and unable to respond to regular requests.
    begging.

Answer: A,B,D

 

NEW QUESTION 80
Which of the following statements about IPS is wrong?

  • A. The priority of the coverage signature is higher than that of the signature in the signature set.
  • B. When the "source security zone" is the same as the "destination security zone", it means that the IPS policy is applied in the domain.
  • C. The signature set can contain either predefined signatures or custom signatures. 832335
  • D. Modifications to the PS policy will not take effect immediately. You need to submit a compilation to update the configuration of the IPS policy.

Answer: C

 

NEW QUESTION 81
The IPS function of Huawei USG6000 supports two response methods: blocking and alarming.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 82
SACG query right-manager information as follows, which options are correct? (Select 2 answers)

  • A. master controller IP address is 1.1.1.2.
  • B. SACG linkage success with controller.
  • C. SACG and IP address 2.1.1.1 server linkage is not successful
  • D. master controller IP address is 2.1.1.1.

Answer: B,C

 

NEW QUESTION 83
If the regular expression is "abc. de", which of the following will not match the regular expression?

  • A. abc+de
  • B. abcdde
  • C. abcde
  • D. abclde

Answer: C

 

NEW QUESTION 84
......

New Real H12-722_V3.0 Exam Dumps Questions: https://www.passreview.com/H12-722_V3.0_exam-braindumps.html

Related Articles

more
Huawei H12-722_V3.0 Certification Practice Exam

Copyright © 2026 PassReview NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy