Huawei H12-724 Dumps

Virus

Buffer overflow ρ

System vulnerabilities

Port scan

File content filtering

Voice content filtering

Apply content filtering..

The source of the video content

abcde

abcdde

abclde

abc+de

Double click on the desktop"Start Server"The shortcut starts.

choose"Start>all programs> Huawei> MCServer> StartServer.

choose"Start>all programs> Huawei> Agile Controller> Server Startup Config"To manually start the required components.

choose"Start 3 all programs> Huawei> MCServer> Sever Startup Conig",Manually start the required components

True

False

When deploying NAC Agent, can use scanner to scan and assess the number of installed and non-installed agent.

When the terminal NAC Agent uninstall, the scanner can send alarm information.

the scanner by the SNMP protocol to obtain network equipment resources information.

scanner and Policy Center controller linkage scan tasks.

1812

1813

8443

8080

First package detection technology

Heuristic detection technology

Decryption technology

File reputation detection technology 5

AP Certification

Link authentication

User access authentication

data encryption

SACG The equipment requires Layer 3 intercommunication with the terminal.

SACG It is usually connected to the core switch equipment and uses policy routing to divert traffic.

SACG Support hanging on non-Huawei devices.

SACG Equipment requirements and Agile Controller-Campus Interoperability on the second floor.

192.168.1.0 definitely is Agile Controller-Campus Manager IP address

if 192.126.200.11 Is the server of the post-authentication domain, then IP Address is 192.18.0.1 If your terminal has not passed the authentication, it is possible to access the server.

192.168.100.1 definitely is Agile Controller-Campus Controller IP address.

If in 6 Within minutes of the conversation 192.168.0.19 154->/192.162.0.11: 15080 Not refreshed,IP Address is 192.168.0.119 If the device wants to IP Address is 192.168.200.11 For device communication, the session must be re-established.

True

False

1-3-4-2-5-6-7-8

1-3-2-4-6-5-7-8

1-3-4-2-6-5-8-7

1-3-24-6-5-8-7

When the file source is an internal data source, when distributing software, the business manager will only send the path of the data source of the software to be distributed to Any Office

When the file source is an external data source, Any 0fce will obtain the software to be distributed.

External data sources cannot distribute files from FTP-type file servers.

The Microsoft Windows file sharing server uses the UNC (Universal Naming Conversion) path (beginning with "\\") to provide waiting. The path to distribute the software.

True

False

Patching the system can completely solve the virus intrusion problem

Computer viruses are latent, they may be latent for a long time, and only when they encounter certain conditions will they begin to carry out sabotage activities

Computer viruses are contagious. They can spread through floppy disks and CDs, but they will not spread through the Internet.

All computer viruses must be parasitic in files and cannot exist independently

Mail with source address 10.17.1.0/24 will be blocked

Mail with source address 10.18.1.0/24 will be blocked

Mail with source address 10.17.1.0/24 will be released

Mail with source address 10.18.1.0/24 will be released

The detection rate is higher than the flow scanning method

System overhead will be relatively small

Cache all files through the gateway's own protocol stack

More advanced operations such as decompression, shelling, etc. can be performed

Dual machine hot backup

Power supply. 1+1 redundant backup

Hardware Bypass

Link-group

PDF heuristic sandbox

ja$

PE heuristic sandbox

Web heuristic sandbox

Heavyweight sandbox (virtual execution)

Block

Declare

Alarm

Execution

HTTP Flood source authentication

HTTP source statistics

URI source fingerprint learning function

Baseline learning

Complete virus sample

Complete Trojan Horse

Specific behavior patterns

Security Policy

Only packets in one direction pass through the firewall

The same message passes through the firewall multiple times

IPS underreporting

Excessive traffic causes the Bypass function to be enabled

User isolation between groups means that users in different groups cannot communicate, but internal users in the same group can communicate

Isolation within a user group means that users within the same group cannot communicate with each other.

The user isolation function is related to the same AP Layer 2 packets between all wireless users on the Internet cannot be forwarded to each other

Intra-group isolation and inter-group isolation cannot be used at the same time

True

False

True

False

router

switch

Firewall

IPS

The biggest difference between the two is MAC Bypass authentication belongs to 802 1X Certification, while MAC Certification does not belong to 802 1X Certification.

If a network can connect to dumb terminals(printer,IP telephone), The text may be connected to a portable computer, please use MAC Bypass authentication:First try 802 1X Authentication, try again if authentication fails MAC Certification

If a network will only connect to dumb terminals(printer,IP telephone),please use MAC Certification in order to shorten the certification time.

MAC Authentication MAC One more bypass authentication 802 In the instrument certification process, the open time is longer than MAC The bypass authentication time is long.

After user 1 is authenticated, user 2 can access network resources without authentication

User 1 and User 2 must be individually authenticated before they can access network resources

GE0/0/1 does not need to enable dot1X

Neither user 1 nor user 2 can pass the authentication and access network resources.

Set local blacklist and whitelist: Both blacklist and whitelist can be configured at the same time, or only one of them can be configured.

In the "Whitelist" text box, enter the P address and mask of the SMTP Server to be added to the whitelist. You can enter multiple IP addresses, one IP address

Address one line. v

Enter the IP address and mask of the SMITP Server to be added to the blacklist in the "Blacklist" text box, you can enter multiple IP addresses, one IP

Address one line.

The priority of the blacklist is higher than that of the whitelist.

Enhanced mode refers to the authentication method using verification code.

Some bots have a redirection function, or the free proxy used during the attack supports the redirection function, which leads to the failure of the basic mode of defense

Effective, enhanced mode can effectively defend.

The enhanced mode is superior to the basic mode in terms of user experience.

Enhanced mode supports all HTTP Flood source authentication fields. "

WWQQ: 922333

Basic networking includes deploying one SM Server, one SC Server, one DB and a AE server.

AE In addition to the deployment of basic networking components, the reliability of the network also requires the deployment of an additional backup SC server.

SC In addition to the deployment of basic networking components, the reliability of the network also requires the deployment of an additional backup SM server.

DB In addition to the deployment of basic networking components, the reliability of the network also requires the deployment of an additional backup DB..

Exemption from approval

Administrator approval

Receptionist approval

Self-approved by visitors

Portal server IP

Portal page URL

shared-key

Portal Protocol version

Create new account

Use existing social media accounts

No authentication, no account required

Scan public QR code

all Ad-hoc The device will be directly judged as an illegal device

Not this AC Access AP Is illegal AP

Not this AC Access STA Is illegal STA

Not this AC Access STA,Also need to check access AP Does it contain law

Disclosure of personal information

Threats to the internal network

Leaking corporate information

Increasing the cost of enterprise network operation and maintenance

Ordinary account

Guest account

Anonymous account

Mobile certificate account

True

False

The file filtering configuration file is not referenced in the security policy

File filtering configuration file is incorrect

License is not activated.

The action configuration of the file extension does not match is incorrect

8021X Certification

SACG Certification p2-

Bypass authentication

Portal Certification

default ACL The rule group number can be arbitrarily specified.

default ACL The rule group number can only be 3999.

due to SACG Need to use ACL3099-3999 To pick TSM The rules issued by the system, so in the configuration TSM Before linkage, you need to ensure these ACL Not referenced by other functions.

The original group number is 3099-3999 of ACL Even if it is occupied, it can be successfully activated TSM Linkage.

True

False

ARP Message

DHCP Message P

DHCPv6 Message

ICMP Message

True

False

Common_ user Users can access Internet www H.

VIP Users can access Internet w H.

VIP Can visit Mail Server H.

Common user Users can access Mail_ Sever resource.

It is impossible to detect violations of security policies.

It can detect all kinds of authorized and unauthorized intrusions.

Unable to find traces of the system being attacked.

is an active and static security defense technology.

155955cc-666171a2-20fac832-0c042c0425

Primary IP: 10.1.3.6 on behalf of SM Manager IP address.

Primary IP: 10.1.3.6 on behalf of Policy Center linkage firewall interface IP address, the standby IP can enter another interface IP address of the firewall.

Primary IP: 10.1.3.6 on behalf of Policy Center linkage firewall interface IP address, the standby IP can enter another alternate firewall interface IP address.

Main IP is the Policy Center reaches the next-hop firewall device interface address

Centralized deployment

Distributed deployment

Hierarchical deployment

Both centralized deployment and distributed deployment are possible

technology

Process

organization

plan

The mobile office platform is safe and reliable and goes online quickly.

Users can access the network safely and quickly.

Unified terminal management and fine control.

Network gateway deployment

MAC Certification

Password authentication

Not certified:

SN Certification

True

False