If the user’s FTP operation matches the FTP filtering policy, which actions can be performed? (Multiple choice)
- A . Blocking
- B . Announcement
- C . Alerts
- D . Execution
About firewalls and IDS, which of the following is true?
- A . Firewall is a bypass device for fine-grained detection
- B . IDS is a straight-path device and can’t perform depth detection
- C . Firewall is unable to detect insider malicious operation or misoperation
- D . IDS can’t interact with the firewall
Which of the following attack types is DDoS attack?
- A . Single package attack
- B . Traffic attack
- C . Malformed packet attack
- D . Snooping scanning attack
Why APT attacks are difficult to defend? Part of the reason is that they use zero-day loopholes to attack. This zero-day loopholes usually takes a lot of time to research and analyze and make corresponding defense methods.
- A . True
- B . False
The following figure shows the configuration of the URL filtering configuration file. Which of the following statements is true about this configuration?
- A . The firewall will check the blacklist first and then check the whitelist.
- B . Assume that user visit www.exzample.com, which is part of Humanities and Social Networking category. At this time, the user cannot access the site.
- C . The user visit the website www.exzample.com. When there is no black and white list of hits, the predefined URL category entry is next queried.
- D . The default action means that all websites allow access. Therefore, this configuration error.
The whitelist rule of the firewall antivirus module is configured as *example*. Which of the following matches is used in this configuration?
- A . Prefix matching
- B . Suffix matching
- C . Keyword matching
- D . exact match
UDP is a connectionless protocol. A large number of UDP flood attacks cause the performance of network devices that rely on session forwarding to be degraded and even the session table is exhausted, causing network congestion.
Which of the following options does not prevent UDP flood attacks?
- A . UDP fingerprint learning
- B . Associated defense
- C . Current limiting
- D . First packet discarded
Regarding the process of file filtering, which of the following statements is wrong?
- A . After the file extraction fails, the file will still be filtered.
- B . The application identification module can identify the type of application hosting the file.
- C . Protocol decoding is responsible for parsing the file data and file transfer directions in the data stream.
- D . The file type identification module is responsible for identifying the real type of the file and the extension of the file based on the file data
Huawei WAF products mainly consist of implementing front-end, back-end central systems and databases. The database mainly stores the front-end detection rules and black and white list configuration files.
- A . True
- B . False
Misuse detection discovers intrusion activity in system by detecting similar behaviors of user intrusions, or by detecting violations of system security rules indirectly by exploiting system flaws.
Which of the following is not misuse detection feature?
- A . Easy to implement
- B . Accurate detection
- C . Effective detection of impersonation of legitimate users
- D . Easy to upgrade
Huawei NIP6000 products have zero-setting network parameters and plug-and-play functionality because interfaces pairs only work on Layer 2 and do not need to set IP address.
- A . True
- B . False
During the infiltration phase of APT attack, which of the following attack behaviors will the attacker generally have?
- A . Long-term latency and key data collection.
- B . Leaks key data information to interested third parties.
- C . By phishing emails, attachments carrying a 0day vulnerability cause the user’s terminal to become a springboard for attacks.
- D . The attacker sends C&C attack or other remote command to the infected host, cause the attack to spread horizontally across the intranet.
What are the risks to information security caused by unauthorized access? (Multiple choices)
- A . Confidentiality
- B . Integrity
- C . Availability
- D . recoverability
Network attacks are classified into two types: single-packet attacks and traffic-based attacks. Single-packet attacks include scanning and snooping attacks, malformed packet attacks and special packet attacks.
- A . True
- B . False
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Which of the following attacks are belong to attacks against Web servers? (Multiple choices)
- A . Website fishing fraud
- B . Website Trojan
- C . SQL injection
- D . Cross-site scripting attacks
Submit
- A . 3 -> 1 -> 4 -> 2 -> 5
- B . 3 -> 2 -> 4 -> 1 -> 5
- C . 3 -> 2 -> 1 -> 4 -> 5
- D . 3 -> 1 -> 2 -> 4 -> 5
In the security protection system of cloud era, reforms must be carried out in advance, in the event, and afterwards, and continuous improvement and development of closed loops must be formed.
Which of the following key points should be fulfilled in "in the matter"? (Multiple choices)
- A . Vulnerability information
- B . Defense in depth
- C . Offensive and defensive situation
- D . Counterattacks Hackers
Huawei NIP6000 products provide carrier-grade high-reliability mechanisms at multiple levels to ensure the stable operation of the equipment.
Which of the following options belong to the reliability of the network? (Multiple choices)
- A . Hot Standby
- B . Power 1+1 redundancy backup
- C . Hardware Bypass
- D . Link-group
Which of the following are the common causes of IPS detection failures? (Multiple choices)
- A . IPS policy is not submitted for compilation
- B . Policy IDs with incorrect associations between IPS policy domains
- C . IPS function is not enabled
- D . Bypass function in IPS is turned off
About the description of the file filtering technology in the USG6000, which statement is wrong?
- A . It can identify the application hosting the file, the file transfer direction, the file type, and the file extension.
- B . Even if the file type is modified, it can recognize the true type of the file.
- C . It can identify the types of files transmitted by itself and can block, alert and announce specific type of files.
- D . It supports the filtering of the decompressed contents of the compressed file.