1. Home
  2. Huawei
  3. H12-722

Huawei H12-722 Online Practice Questions and Exam Preparation

H12-722 Exam Details

  • Exam Code
    :H12-722
  • Exam Name
    :Huawei Certified ICT Professional - Constructing Service Security Network (HCIP-Security-CSSN V3.0)
  • Certification
    :Huawei Certifications
  • Vendor
    :Huawei
  • Total Questions
    :210 Q&As
  • Last Updated
    :

Huawei H12-722 Online Questions & Answers

  • Question 141:

    Which of the following technologies can achieve content security? (Choose Four)

    A. Web security protection
    B. Global environment awareness
    C. Sandbox and big data analysis
    D. Intrusion prevention

  • Question 142:

    The analysis and processing capabilities of traditional firewalls at the application layer are weak, and they cannot correctly analyze malicious codes that are mixed in the flow of allowed application teaching: many Attacks or malicious behaviors often use the firewall's open application data flow to cause damage, causing application layer threats to penetrate the firewall.

    A. True
    B. False

  • Question 143:

    Which of the following files can the sandbox detect? (Choose Three)

    A. www file
    B. PE file
    C. Picture file
    D. Mail

  • Question 144:

    Regarding the description of intrusion detection technology, which of the following statements is correct?

    A. It is impossible to detect violations of security policies.
    B. It can detect all kinds of authorized and unauthorized intrusions.
    C. Unable to find traces of the system being attacked.
    D. is an active and static security defense technology.

  • Question 145:

    Since the sandbox can provide a virtual execution environment to detect files in the network, the sandbox can be substituted when deploying security equipment Anti-Virus, IPS, spam detection and other equipment.

    A. True
    B. False

  • Question 146:

    Regarding web application attacks, which of the following statements are correct? (Choose Two)

    A. SQL injection can be prevented by input validation and parameterized queries.
    B. Cross-site scripting (XSS) attacks inject malicious JavaScript code into web pages.
    C. Web application firewalls cannot detect XSS attacks.
    D. CSRF attacks rely on weak authentication mechanisms.

  • Question 147:

    Regarding intrusion detection I defense equipment, which of the following statements are correct? (Choose Three)

    A. It cannot effectively prevent the virus from spreading from the Internet to the intranet.
    B. The number of applications that NIP6000 can recognize reaches 6000+, which realizes refined application protection, saves export bandwidth, and guarantees key business services Experience.
    C. Protect the intranet from external attacks, and inhibit malicious flows, such as spyware, worms, etc. from flooding and spreading to the intranet.
    D. Ability to quickly adapt to threat changes.

  • Question 148:

    Configure the following commands on the Huawei firewall:

    [USG] interface G0/0/1 [USG] ip urpf loose allow-default-route acl 3000 Which of the following options are correct? (Choose Two)

    A. For loose inspection: if the source address of the packet exists in the FIB of the firewall, the packet passes the inspection directly.
    B. In the case where the default route is configured but the parameter allow-default-route is not configured, if the source address of the packet does not exist in the FIB table of the firewall, the packet will be rejected.
    C. When the default route is configured and the parameter allow-default-route is also configured, if the source address of the packet does not exist in the FIB table of the firewall under loose check mode, all packets will pass the URPF check and be forwarded normally.
    D. When the default route is configured and the parameter allow-default-route is also configured, if the source address of the packet does not exist in the FIB table of the firewall under loose check mode, the packet cannot pass the URPF check.

  • Question 149:

    If the Huawei USG6000 product uses its own protocol stack cache for all files passing through the device and then performs a virus scan, the device uses the stream scanning method.

    A. True
    B. False

  • Question 150:

    Which of the following options are correct for the configuration description of the management center ATIC? (Choose Two)

    A. The drainage task needs to be configured on the management center, and when an attack is discovered, it will be issued to the cleaning center.
    B. It is necessary to configure the protection object on the management center to guide the abnormal access flow in etpa.
    C. Port mirroring needs to be configured on the management center to monitor abnormal traffic.
    D. The reinjection strategy needs to be configured on the management center to guide the flow after cleaning.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Huawei exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your H12-722 exam preparations and Huawei certification application, do not hesitate to visit our Vcedump.com to find your solutions here.