EMT Practice Test

1. Question Content...


Question List

Question1: When the session authentication mode is used to trigger the firewall's built-in Portal authentication, the user does not actively perform identity authentication, advanced service access, and device push "redirect" to the authentication page.

Question2: Regarding the AH and ESP security protocols, which of the following options is correct? (Multiple Choice)

Question3: In the current network it has deployed other authentication system, device registration function by enabling a single point, reducing the user to re-enter the password.
What are correct about single sign-on statements? (Multiple choice)

Question4: The process of electronic forensics includes: protecting the site, obtaining evidence, preserving evidence, identifying evidence, analyzing evidence, tracking and presenting evidence.

Question5: About the description about the preemption function of VGMP management, which of the following statements is wrong?

Question6: Which of the following statement about the NAT is wrong?

Question7: Which of the following are the necessary configurations of IPSec VPN? (Multiple Choice)

Question8: Which of the following is not part of the LINUX operating system?

Question9: For the description of ARP spoofing attacks, which the following statements is wrong?

Question10: The single-point login function of the online user, the user authenticates directly to the AD server, and the device does not interfere with the user authentication process. The AD monitoring service needs to be deployed on the USG device to monitor the authentication information of the AD server.

Question11: Which of the following information will be encrypted during the use of digital envelopes? (Multiple Choice)

Question12: Which of the following types are included in Huawei firewall user management? (Multiple Choice)

Question13: Electronic evidence preservation is directly related to the legal effect of evidence, in line with the preservation of legal procedures, and its authenticity and reliability are guaranteed. Which of the following is not an evidence preservation technology?

Question14: Which of the following are correct about configuring the firewall security zone? (Multiple Choice)

Question15: Some applications, such as Oracle database application, there is no data transfer for a long time, so that firewall session connection is interrupted, thus resulting in service interruption, which of the following technology can solve this problem?

Question16: IPS (Intrusion Prevention System) is a defense system that can block in real time when intrusion is discovered.

Question17: Digital certificates can be divided into local certificates, CA certificates, root certificates and self-signed certificates according to different usage scenarios.

Question18: Which of the following are the versions of the SNMP protocol? (Multiple choice)

Question19: Regarding SSL VPN technology, which of the following options is wrong?

Question20: Which of the following is an action to be taken during the summary phase of the cybersecurity emergency response? (Multiple Choice)

Question21: Which of the following is correct about firewall IPSec policy?

Question22: Which of the following options does not include the respondents in the questionnaire for safety assessment?

Question23: Which of the following is not the identity of the IPSec SA?

Question24: HRP (Huawei Redundancy Protocol) Protocol to back up the connection state of data include: (Multiple Choice)

Question25: Which of the following are the status information that can be backed up by the HRP (Huawei Redundancy Protocol) protocol? (Multiple choice)

Question26: Which of the following attacks can DHCP Snooping prevent? (Multiple Choice)

Question27: Execute the command on the firewall and display the following information. which of the following description is correct? (Multiple Choice) HRP_A [USG_A] display vrrp interfaceGigabitEthernet 0/0/1 GigabitEthernet0/0/1 | Virtual Router 1 VRRP Group: Active state: Active Virtual IP: 202.38.10.1 Virtual MAC: 0000-5e00-0101 Primary IP: 202.38.10.2 PriorityRun: 100 PriorityConfig: 100 MasterPriority: 100 Preempt: YES Delay Time: 10

Question28: The administrator wants to know the current session table. Which of the following commands is correct?

Question29: Which of the following description is wrong about the intrusion detection system?

Question30: Use iptables to write a rule that does not allow the network segment of 172.16.0.0/16 to access the device. Which of the following rules is correct?

Question31: Which of the following does the encryption technology support for data during data transmission? (Multiple choice)

Question32: Which of the following attacks is not a special packet attack?

Question33: In the VRRP (Virtual Router Redundancy Protocol) group, the primary firewall periodically sends advertisement packets to the backup firewall. The backup firewall is only responsible for monitoring advertisement packets and will not respond.

Question34: In the USG series firewall system view, the device configuration will be restored to the default configuration after the reset saved-configuration command is executed. No other operations are required.

Question35: UDP port scanning means that the attacker sends a zero-byte UDP packet to a specific port of the target host. If the port is open, it will return an ICMP port reachable data packet.

Question36: During the configuration of NAT, which of the following will the device generate a Server-map entry? (Multiple Choice)?

Question37: Which of the following is true about the description of SSL VPN?

Question38: A company employee account authority expires, but can still use the account to access the company server.
What are the security risks of the above scenarios? (Multiple Choice)

Question39: In the USG series firewall, you can use the ______ function to provide well-known application services for non-known ports.

Question40: The SIP protocol establishes a session using an SDP message, and the SDP message contains a remote address or a multicast address.

Question41: After the network intrusion event occurs, according to the plan to obtain the identity of the intrusion, the attack source and other information, and block the intrusion behavior, which links of the above actions are involved in the PDRR network security model? (Multiple Choice)

Question42: When the USG series firewall hard disk is in place, which of the following logs can be viewed? (Multiple Choice)

Question43: Regarding the HRP master and backup configuration consistency check content, which of the following is not included?

Question44: In the construction of information security system, the security model is needed to accurately describe the relationship between important aspects of security and system behavior.

Question45: When the user single sign-on is configured, the receiving PC message mode is adopted. The authentication process has the following steps: 1 The visitor PC executes the login script and sends the user login information to the AD monitor. 2 The firewall extracts the correspondence between the user and the IP from the login information. Add to the online user table 3 AD monitor connects to the AD server to query the login user information, and forwards the queried user information to the firewall. 4 The visitor logs in to the AD domain. The AD server returns the login success message to the user and delivers the login script. which of the following order is correct?

Question46: Through display ike sa to see the result as follows, which statements are correct? (Multiple choice)

Question47: In stateful inspection firewall, when opening state detection mechanism, three-way handshake's second packet (SYN + ACK) arrives the firewall. If there is still no corresponding session table on the firewall, then which of the following statement is correct?

Question48: OSPF is more commonly used than RIP because OSPF has device authentication and is more secure.

Question49: NAPT technology can implement a public network IP address for multiple private network hosts.

Question50: Which of the following descriptions about the action and security profile of the security policy are correct? (Multiple choice)

Question51: Intrusion Prevention System (IPS) is a defense system that can block in real time when an intrusion is discovered.

Question52: Which of the following is true about firewall security policies?