Huawei H12-731_V2.0-ENU HCIE-Security (Written) V2.0 Online Training
Huawei H12-731_V2.0-ENU Online Training
The questions for H12-731_V2.0-ENU were last updated at Nov 19,2024.
- Exam Code: H12-731_V2.0-ENU
- Exam Name: HCIE-Security (Written) V2.0
- Certification Provider: Huawei
- Latest update: Nov 19,2024
By default, the firewall authenticates traffic that passes through itself.
- A . TRUE
- B . FALSE
There are many firewall security policies in the data center network, and the administrator enables the policy backup acceleration function, and the source address matching conditions of the security policy are modified It can be effective immediately.
- A . TRUE
- B . FALSE
If a user queries the security log of the AD server using single sign-on through the firewall, the firewall can immediately take the user offline after the user logs out. A5RUE
B. FALSE
If the database O&M workload is much greater than the host O&M workload, you can choose to have an independent department outside the original O&M bastion host. The database bastion host.
- A . TRUE
- B . FALSE
With the following description of the load balancing feature of USG Firewall Server, what are the correct items?
- A . The IP address specified in the security policy should be the IP address of the real server
- B . The IP address specified in the security policy should be the IP address of the virtual server
- C . Modifying the destination IP address and destination port number of a packet occurs after querying the inter-domain security policy
- D . Modifying the destination IP address and destination port number occurs before querying the inter-domain security policy
Control of ping packets to the USG firewall itself. The access control management function of the interface takes precedence over the security policy.
- A . TRUE
- B . FALSE
Which is the more correct number of DNS servers that can be bound to each outbound interface in the USC Firewall DNS Transparent Proxy function?
- A . 2
- B . 3
- C . 4
- D . 1
A description of the following IPv6 Secure Neighbor Discovery feature information for one of the interfaces.
Which one is wrong?
- A . The minimum key length that the interface can accept is 512
- B . The maximum key length that the interface can accept is 2048
- C . The interface does not have strict security mode enabled
- D . The security level of the CGA address is 1
In the following description of the USG firewall security policy, which one is wrong?
- A . When the firewall is equipped with the undo firewall packet-filter basic-protocol enable command, unicast packets are not controlled by security policies
- B . By default… Broadcast packets are not controlled by security policies
- C . In the case of the province, multicast packets are not controlled by security policies
- D . By default… Unicast packets are controlled by security policies
The USG firewall is connected to the corporate intranet through a router After the firewall is configured with the cross-Layer 3 MAC identification feature, then the security policy of the firewall can configure the MAC address as a match condition
- A . TRUE
- B . FALSE
Latest H12-731_V2.0-ENU Dumps Valid Version with 276 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
