1. Home
  2. Huawei
  3. HC-711-ENU

HCNA Huawei Certified Network Associate - Constructing Basic Security Network (HCNA-CBSN) - ENU

Exam Details

  • Exam Code
    :HC-711-ENU
  • Exam Name
    :HCNA Huawei Certified Network Associate - Constructing Basic Security Network (HCNA-CBSN) - ENU
  • Certification
    :Huawei Certifications
  • Vendor
    :Huawei
  • Total Questions
    :363 Q&As
  • Last Updated
    :Jul 08, 2025

Huawei Huawei Certifications HC-711-ENU Questions & Answers

  • Question 301:

    IPSec if want to do a new IP packet header validation, you need to use what IPSec security protocol?

    A. AH

    B. ESP

    C. MD5

    D. SHA1

  • Question 302:

    Digital certificates do not include which of the following section?

    A. Name of the certificate holder

    B. The certificate is valid

    C. Public key certificate

    D. Certificate private key

  • Question 303:

    Network extensions that do not support the following access modes:

    A. Separation mode (Split Tunnel)

    B. Full routing mode (Full Tunnel)

    C. Fixed Mode (Fixed Tunnel)

    D. Manual mode (Manual Tunnel)

  • Question 304:

    Note that when the Clear to clear ISAKMP SA SA Stage 1, and then remove IPSEC SA Phase 2.

    A. True

    B. False

  • Question 305:

    Which of the following components are optional TSM system?

    A. TMC (TSM Management Center)

    B. SM Security Manager

    C. SC safety controller

    D. SA Security Agent

  • Question 306:

    Here on Client-Initialized the L2TP VPN, right there saying? (Choose three)

    A. L2TP tunnel connection request initiated remote users via PSTN / ISDN access to NAS, to get permission to access the Internet directly to the remote LNS.

    B. L2TP LNS device receives user connection requests,based on the user name and password to authenticate the user

    C. LNS assigns a private IP address for the remote user.

    D. VPN remote dial-up users do not need to install software

  • Question 307:

    Which of the following products can be achieved on NAT audit log management?

    A. TSM

    B. DSM

    C. eLog

    D. VSM

  • Question 308:

    Source address, destination address, protocol type, IP bearer senior ACL2000 ~ 2999 can use the packet (such as TCP source port, destination port, ICMP protocol type, message code, etc.) defined rules.

    A. True

    B. False

  • Question 309:

    In the inter- domain packet filtering firewall, the following is not a direction (Outbound)?

    A. Data from the DMZ zone to the Untrust zone flow

    B. Data from the Trust zone to the DMZ zone flow

    C. Data from the Trust zone to the Untrust zone flow

    D. Data from the Trust zone to the Local area streams

  • Question 310:

    View l2tp command -line user information?

    A. display l2tp session

    B. display l2tp tunnel

    C. display access-user

    D. display right-manager online-users

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Huawei exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your HC-711-ENU exam preparations and Huawei certification application, do not hesitate to visit our Vcedump.com to find your solutions here.