H12-721 Exam Details

  • Exam Code
    :H12-721
  • Exam Name
    :HCIP-Security-CISN V3.0
  • Certification
    :Huawei Certifications
  • Vendor
    :Huawei
  • Total Questions
    :245 Q&As
  • Last Updated
    :Nov 05, 2023

Huawei H12-721 Online Questions & Answers

  • Question 231:

    In the Enterprise netowrk shown below, Server A and Server B can not access Web services. Troubleshooting has found that there is firewall routing module and that there is a problem with the routing table in USG_A.

    An enterprise network follows, then Server A Server B can not access Web services, administrators troubleshoot and found no firewall routing module A problem has been to establish the appropriate routing table, but Firewall A firewall module is provided with wrong.

    What troubleshooting method should be used?

    A. stratification
    B. Break Law
    C. substitution method
    D. Block Method

  • Question 232:

    SSL VPN authentication is successful, but it can not access the Web-link resources. Which statement is correct? (Choose three answers)

    A. The server is not open Web services.
    B. Strategies to limit user access.
    C. The equipment and network server is unreachable.
    D. SSL VPN users have reached the maximum limit.

  • Question 233:

    Virtual firewall technology does not include which of the following characteristics?

    A. Provides multi-instance routing, security, multi-instance, multi-instance configuration, NAT multi-instance, VPN multi-instance application flexibility to meet a variety of networking needs.
    B. Each virtual firewalls can support four separate security zones TRUST, UNTRUST, DMZ, etc., flexible interface partitioning and allocation.
    C. It guarantee that every virtual system and a separate firewall instance, and can be safely implement access between each virtual system.
    D. Each virtual system provides independent administrator privileges.

  • Question 234:

    About BFD detection mechanism, the following statement is correct? (Choose two answers)

    A. BFD control packets are encapsulated in TCP packets
    B. BFD provides two detection modes: asynchronous and synchronous mode
    C. After the establishment of a BFD session, both systems periodically send BFD control packets
    D. At the beginning of the session, the two sides negotiate through the control system carried in the packet parameters

  • Question 235:

    When using manual IPsec negotiation, if there is a NAT device on the network then we need to use NAT traversal.

    A. TRUE
    B. FALSE

  • Question 236:

    When a Haiwei Secure VPN client connection initializes using L2TP, the L2TP packet uses a source port of 1710, and a destination port of 1710.

    A. TRUE
    B. FALSE

  • Question 237:

    Which of the following VPN protocols do not provide encryption? (Choose three answers)

    A. ESP
    B. AH
    C. L2TP
    D. GRE

  • Question 238:

    From the branch offices, servers are accessed from the Headquarters via IPsec VPN. An IPSEC tunnel can be established at this time, but communication to the servers fails. What are the possible reasons? (Choose three answers)

    A. Packet fragmentation, the fragmented packets are discarded on the link.
    B. Presence opf dual-link load balancing, where the path back and forth may be inconsistent.
    C. Route flapping.
    D. Both ends of the DPD detection parameters are inconsistent.

  • Question 239:

    The server health monitoring mechanisms detects the backend server on a company's true USG firewall (three servers to Server A, Server B, and Server C) is running. When the USG repeatedly receives server B's response packet, it will prohibit the use of server B and follow configured policies assigned to other servers.

    A. TRUE
    B. FALSE

  • Question 240:

    The below information indicates that the real server is forced to USG unhealthy state and the real server 4.4.4.4 is currently in unhealthy state.

    A. TRUE
    B. FALSE

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Huawei exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your H12-721 exam preparations and Huawei certification application, do not hesitate to visit our Vcedump.com to find your solutions here.