EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following options belong to the characteristics of the symmetric encryption algorithm? (Multiple choices)

Question2: Which of the following options belong to the default security zone of Huawei Firewall? (multiple choice)

Question3: Which of the following descriptions about symmetric encryption technology is wrong?

Question4: Gratuitous ARP can be used to detect if _____address conflicts, and it can also refresh the MAC address table of the switch.

Question5: Which of the following is not the business scope of the National Internet Emergency Response Center?

Question6: Which of the following are the main implementation methods of gateway anti-virus? (Multiple choice)

Question7: After a network intrusion event occurs, the identity of the intrusion, the source of the attack and other information are obtained according to the plan, and the intrusion behavior is blocked. The above actions belong to PDRR. What are the links in the network security model? (multiple choice)

Question8: Which of the following options are the possible reasons for the problem that users cannot access network resources in the authentication-free two-way binding mode? (multiple choice)

Question9: In the PKI system architecture, _______ is the CA's window to users, and is an extension of CA's certificate issuance and management functions. He is responsible for accepting users' certificate registration and revocation applications, reviewing employees' identity information, and deciding whether to apply for certificate registration and revocation. The CA submits an application to issue or revoke a digital certificate.

Question10: Which of the following options are key elements of information security precautions? (multiple choice)

Question11: When an information security incident occurs, the priority is to adopt _____ emergency response to provide customers with technical technical support.

Question12: Which attack below is not a malformated packet attack?

Question13: After a cyber-attack event occurs, set up an isolation area, summarize data, and estimate losses according to the plan. Which of the above actions belong to the work content of the cyber security emergency response?

Question14: When the company's network administrator is performing dual-system hot backup, due to the possibility of inconsistent round-trip paths, if he wants to enable the session fast backup function, the command that needs to be entered is ______[fill in the blank]*

Question15: SIPprotocol usageSDPmessage to establish a session,SDPThe message contains a remote address or a multicast address

Question16: Regarding the NAT policy processing flow, which of the following options are correct? ( )*

Question17: Which of the following is not a common application scenario of digital certificates? ( )[Multiple choice]*

Question18: To configure a NAT policy in command line mode, you need to use the .command ( ) in the system view to enter the NAT policy configuration view. (all lowercase) (fill in the blank)

Question19: Which of the following attacks is not a network attack?

Question20: Regarding the problem that users with two-way binding in authentication-free mode cannot access network resources, which of the following options are possible reasons? (Multiple choices)

Question21: Regarding the statement of firewall security policy, which of the following options is false?

Question22: Which of the following options is not included aboutHRP in the content of the master/slave configuration consistency check?

Question23: The world's first worm virus-"Morris worm" makes people realize that as people's dependence on computers increases, the possibility of computer networks being attacked is increasing, and it is necessary to establish a complete emergency response system.

Question24: Equipment sabotage attacks are generally not easy to cause information leakage, but usually cause the interruption of network communication services.

Question25: Which of the following mechanisms are used to implement MAC flooding attacks? (Multiple choice)

Question26: Which of the following is not a hash algorithm?

Question27: Which of the following does not belong to the classification of cybersecurity incidents?

Question28: When using the ______ function of SSL VPN, the virtual gateway will assign an intranet IP address to the access user, which is used for the access user to access the P resources of the intranet[fill in the blank]*

Question29: After the company ' s network administrator has configured dual-system hot backup, he can view VRRP and other information through commands, and get the following information
HRP_M<FWA>
Gigabit Ethernet 0/0/3 Virtual Router 1
State: Master
Virtual IP: 10.3.0.3
Master IP: 10.3.0.1
Priority Run: 120
Priority Config: 100
Master Priority: 120
Preempt: YES Delay Time: 0s
Timer Run: 60s
Timer Config: 60s
Auth type: NONE
Virtual MAC: 0000-5e00-0101
Check TIL: YES
Config type: vgmp Vrrp
Backup-forward : disabled
Create time : 2020-03-17 17:35:54UTC+08:02
Last change time: 2020-03-22 16:01:56 UTC+08:02
Type in the blank space to view the command is _____

Question30: Digital envelope refers to the data obtained after the sender uses the receiver's ______ to encrypt the symmetric key.

Question31: In the digital signature process, which of the following items are mainly used for HASH algorithm to verify the integrity of data transmission?

Question32: The process of electronic forensics includes: protecting the scene, obtaining evidence, preserving evidence, identifying evidence, analyzing evidence, tracking and presenting evidence.

Question33: Drag the early warning levels of the network security emergency response on the left into the box on the right, and arrange them from top to bottom in order of severity.

Question34: Which of the following descriptions about dual-system hot backup is wrong?

Question35: About the description of the vulnerability scan, which of the following is wrong?

Question36: In the user management of Huawei firewall, which of the following categories are included? (Multiple choice)

Question37: Which of the following is the action to be taken in the summary phase of cybersecurity emergency response? (Multiple Choice)

Question38: Data Analysis Technology is to find, match keywords or key phrases, and analyze the correlation of time in data streams or information streams that have been obtained.
Which of the following does not belong to evidence analysis technology?

Question39: IPThe protocol in the header (protocol) field identifies the protocol used by its upper layer. Which of the following field values indicates that the upper layer protocol isUDPprotocol?

Question40: aboutNATConfiguration statement, which of the following is false?

Question41: When using the ______ function of SSL VPN, the virtual gateway will assign an internal network IP address to the access user, which is used for the access user to access the internal network IP resources

Question42: In a stateful inspection firewall, when the stateful inspection mechanism is enabled, the second packet of the three-way handshake (SYN+ACK) when reaching the firewall, which of the following descriptions is correct if there is no corresponding session table on the firewall?

Question43: About the description of the Windows firewall, which of the following statements are correct? (Multiple Choice)

Question44: DDosWhich of the following attack types is an attack?

Question45: RFC (Request For Comment) 1918 reserves 3 IP addresses for private use, namely 10.0.0.0-10.255.255.255,______, 192.168.0.0-192.168.255.255[fill in the blank]*

Question46: IPSec VPNtechnology adoptionESPSecurity protocol encapsulation is not supportedNATcross becauseESPThe header of the message is encrypted

Question47: When configuring the security policy, ______ can control the flow based on the user.

Question48: After the firewall detects the virus, which of the following will release the virus?

Question49: Which of the following descriptions of the VGMP protocol is wrong?

Question50: According to the management regulations, regular inspections of network security systems and equipment, patch upgrades, and network security emergency response drills are organized. Which aspects of the MPDRR network security model are the above actions belong to? (Multiple choice)

Question51: Security technology has different methods in different technical levels and fields. Which of the following devices can be used for network layer security? (multiple choice)

Question52: Which of the following DDoS attack types is an attack?

Question53: Which of the following options belong to the default security zone of Huawei firewall? (Multiple choice)

Question54: Which of the following traffic matches the authentication policy will trigger authentication?

Question55: Which of the following statements about investigation and evidence collection is correct?

Question56: The administrator wants to create a web configuration administrator, the device web access port number is 20000, and the administrator is at the administrator level, which of the following commands is correct?
A)

B)

C)

D)

Question57: Which of the following protocols does not belong to the protocol type that ASPF can detect?

Question58: Regarding the description of the operating system, which of the following is false?

Question59: hen deploying dual-system hot backup on the firewall, in order to switch the overall state of the VRRP backup group, which of the following protocols is required?

Question60: When an enterprise establishes its own information system, it checks each operation according to the authoritative standards formulated by the international, and can check whether its own information system is safe or not.

Question61: Which of the following is used to encrypt digital fingerprints in digital signature technology?

Question62: In practical applications, asymmetric encryption is mainly used to encrypt user data.

Question63: Which of the following is the action to be taken in the eradication phase in cybersecurity emergency response? (Multiple choice)

Question64: Huawei's Agile-Controller products belong to ______ in the HiSec solution.[fill in the blank]

Question65: Which of the following security measures does the monitor correspond to?

Question66: After an engineer configures the NAT-Server, in order to check the Server-map generated after the configuration, he needs to use the ________ command to query the Server-map.

Question67: Regarding the description of firewall dual-system hot backup, which of the following options are correct? (Multiple Choice)

Question68: Match the following survey methods and descriptions one by one

Question69: NAPT technology can realize a public IP address for multiple private network hosts

Question70: The firewall is divided according to the protection object,windowsfirewall belongs to- ?

Question71: Which of the following is not a requirement for firewall dual-machine hot backup?

Question72: With the development of technology, some new technologies have emerged in electronic forensics. Which of the following items are new forensics technologies?

Question73: Regarding NAT technology, which of the following descriptions is correct?

Question74: As shown in the figure below, the internal user online scene of the enterprise is as follows. The user online process includes:
1. certified,USGallow connection
2.
User accessinternetenterhttp://1.1.1.1 3. USGPush authentication interface
4.
User successfully accessedhttp://1.1.1.1 ,device creationsessionsurface5 User enters correct username and password The following correct sequence of processes should:

Question75: One of the following options for information security management systems (ISMS) Which of the four stages describes the sequence correctly?

Question76: Database operation records can be used as ___ evidence to backtrack security events.[fill in the blank]*

Question77: Which of the following VPNs cannot be used in site-to-Site scenarios?

Question78: In the classification of information security classified protection systems, which of the following levels define if an information system is compromised. Will it cause damage to social order and public interests? ( )[Multiple Choice Questions]

Question79: Which of the following is true about the difference between pre-incident prevention strategies and post-incident recovery strategies? (multiple choice)

Question80: Regarding the description of the operating system, which of the following is wrong?

Question81: Which of the following is false for a description of an intrusion detection system?.

Question82: Which of the following options is correct for the description of a buffer overflow attack?(multiple choice)

Question83: Regarding the firewall security zone, which of the following statements are correct? (Multiple Choice)

Question84: Which of the following statement is wrong about the root CA certificate?

Question85: Both GE1/0/1 and GE1/0/2 ports of the firewall belong to the DMZ zone. If you want to realize that the area connected by GE1/0/1 can access the area connected by GE1/0/2, which of the following is correct?

Question86: Information security precautions include both management and technical measures. Which of the following measures is not a precautionary method for information security technology?

Question87: _______ is a defect in the specific implementation of hardware, software, and protocol or system security strategy, which can enable an attacker to access or destroy the system without authorization.

Question88: In the Linux system, if the user wants to enter the tmp folder in the root directory, the command that needs to be entered is _____/tmp.[fill in the blank]*

Question89: Which of the following options can be operated in the advanced settings of the windows firewall? (Multiple choice)

Question90: aboutwindowsFirewall description, which of the following options are correct? (multiple choice)

Question91: Regarding the comparison between windows and linux, which of the following statements is wrong?

Question92: The protocol number of the transport layer protocol TCP is ( ) (fill in the blank)

Question93: As shown in the following, there are two Server Map entries generated after the NAT Server is configured. Regarding the information presented in the figure, which of the following descriptions is wrong?
Type: Nat Server, ANY -> 1.1.1.1 [192.168.1.1]
Type: Nat Server Reverse, 192.168.1.1 [1.1.1.1] -> ANY

Question94: The world's first worm-"Morris Worm"Make people realize that with the deepening of people's dependence on computers, the possibility of computer network being attacked is also increasing, and it is necessary to establish a sound emergency response system

Question95: In response to network security incidents, remote emergency response is generally taken first. If the problem cannot be solved for the customer through remote access, after the customer confirms, it will be transferred to the local emergency response process.

Question96: In anti-virus software, ( ) technology can analyze compressed files, added flowers, and packaged files. (fill in the blank)

Question97: For the process of forwarding the session of the first packetage in the firewood area, there are several steps:
1. Find the routing table
2. Find the domain package filter rule
3. Find the session table
4. Find the blacklist below
which order below is correct?

Question98: As shown in the figure is an application scenario of a NAT server, when using the web configuration method for this configuration. Which of the following statements is correct? (Multiple choice)

Question99: As shown in the figure, the nat server global 202.106.1.1 inside 10.10.1.1 is configured on the firewall. Which of the following configuration is correct for inter-domain rules?

Question100: Regarding Huawei routers and switches, which of the following statements are correct? (Multiple choice)

Question101: IPSec VPN uses an asymmetric algorithm to calculate the ______ key to encrypt data messages.

Question102: When configuring the security policy on the firewall, the optional content security options are ( ). (fill in the blank)

Question103: IPS (Intrusion Prevention System) is a defense system that can real-time block during the found invasion.

Question104: According to different usage scenarios, digital certificates can be divided into local certificates, CA certificates, root certificates and self-signed certificates, etc.

Question105: Which of the following is not included in the trigger authentication method for firewall access user authentication?

Question106: In the classification of the information security level protection system, which of the following levels defines if the information system is damaged, it will cause damage to social order and public interests?

Question107: Which of the following is not asymmetric encryption algorithm?

Question108: In the Huawei SDSec solution, which layer of equipment does the firewall belong to?

Question109: In the process of establishing IPSec VPN between the peers FW_A and FW_B, two types of security associations need to be established in two stages. In the first stage, establish ____ to verify the identity of the peers.

Question110: In the USG system firewall, you can use which function to provide well-known application services for non-well-known ports?

Question111: Which of the following options belongs to Tier 2VPNTechnology?

Question112: Compared with IPSec VPN, ( ) has the advantage of good compatibility and can encapsulate IPX, multicast packets, etc., and is widely used. (fill in the blank)

Question113: Social engineering is a kind of harmful means such as deception and harm through psychological traps such as psychological weakness, instinctual reaction, curiosity, trust, and greed of the victim.

Question114: The SSL VPN routing mode determines the routing of the packets sent by the client. In the ______ mode, no matter what resource is accessed, the data will be intercepted by the virtual network card and forwarded to the virtual gateway for processing.[fill in the blank]*

Question115: In the process of using the digital envelope, which of the following information will be encrypted? (Multiple choice)

Question116: Which of the following is not a key technology of anti-virus software?

Question117: The role of antivirus software and host firewall is the same.

Question118: UDP port scanning means that the attacker sends a zero-byte length UDP packet to a specific port of the target host. If the port is open, an ICMP port reachability data packet will be returned.

Question119: Which of the following options arewindowssystem andLINUXThe same features of the system? (multiple choice)

Question120: Which of the following SSL VPN functions can only access all TCP resources?

Question121: After an engineer configures the NAT-Server, in order to check the Server-map generated after the configuration, should he use the _____ command to query the Server-map?[fill in the blank]*

Question122: _____ Authentication is to configure user information (including local user's user name, password and various attributes) on the network access server. The advantage is that it is fast.[fill in the blank]*

Question123: Which of the following descriptions about dual-system hot backup is wrong? ( )[Multiple choice]*

Question124: For the process of forwarding session header packets between firewall domains, there are the following steps:
1, look up the routing table
2, find the inter-domain packet filtering rules
3, lookup session table
4, find the blacklist
Which of the following is in the correct order?

Question125: The goal of ______ is to provide a quick, calm and effective response in an emergency, thereby enhancing the company's ability to immediately recover from a destructive event.

Question126: Which of the following is an encryption technique used in digital envelopes?

Question127: In the _______ view of the firewall, you can use the reboot command to restart the firewall.[fill in the blank]*

Question128: Which one of the options below belong to the component of the PKI architecture? (Multiple Choice)

Question129: Man-in-the-middle attacks are data security threats.

Question130: When connecting to Wi-Fi in public places, which of the following is relatively safer?

Question131: The attacker searches the ports currently open by the attacked object by scanning the ports to determine the attack mode. In port scanning attacks, attackers usually use Port Scan attack software to initiate a series of TCP/UDP connections, and determine whether the host uses these ports to provide services according to the response packets. Such network probing is called _____ scanning.[fill in the blank]*

Question132: in configurationNATDuring the process, in which of the following situations, the device will generateServer-maptable entry? (multiple choice)

Question133: Which of the following statements about the PKI life cycle is correct?

Question134: Which of the following are the response actions of gateway anti-virus after detecting email virus? (multiple choice)

Question135: Regarding the description of IP Spoofing, which of the following is wrong?

Question136: Which of the following descriptions about the characteristics of the HWTACACS protocol is wrong?

Question137: The HRP (Huawei Redundancy Protocol) protocol is used to synchronize the key configuration and connection status of the firewall to the standby firewall. Which of the following options does not belong to the scope of synchronization?

Question138: We should choose the encryption algorithm according to our own characteristics. When we need to encrypt a large amount of data, it is recommended to use the _____ encryption algorithm to improve the speed of encryption and decryption.

Question139: aboutHRPWhich of the following options is not included in the content of the master/slave configuration consistency check?

Question140: Which of the following is true about the command to view the number of times security policy matches?

Question141: Based on the HiSec solution, please drag the device on the left into the logical architecture layer on the right.[fill in the blank]

Question142: When deploying the IPSec VPN tunnel mode, the AH protocol is used for packet encapsulation. In the header field of the new IP packet, which of the following parameters does not require data integrity verification?

Question143: As shown in the figure, a TCP connection is established between client A and server B.
Which of the following should be the serial number of the "?" message in the two places in the figure?

Question144: Which of the following options are suitable for business travelers to access the corporate intranet in the public network environment? ( )*

Question145: some applications such asOracleFor database applications, the firewall session connection is interrupted due to no data flow transmission for a long time, resulting in service interruption. Which of the following is the optimal solution?

Question146: The content of intrusion detection covers authorized and unauthorized intrusion behaviors. Which of the following behaviors does not belong to the scope of intrusion detection?

Question147: Regarding the description of the buffer overflow attack, which of the following options are correct? (Multiple choice)

Question148: in deploymentIPSec VPN, which of the following is the main application scenario of tunnel mode?

Question149: Information security graded protection is the basic system of national information security assurance work.

Question150: existUSGConfiguration on the series firewallNAT Server, will produceserver-mapTable, which of the following is not part of this representation?

Question151: aboutVPN, which of the following statements is false?

Question152: Which of the following isP2DRThe core part of the model?

Question153: Regarding the investigation and evidence collection, which of the following statement is correct?

Question154: Regarding the description of the GRE VPN tunnel configuration, which of the following options are correct?

Question155: About the packet iniptablesDescription of the transfer process, which of the following options is incorrect?

Question156: Please sort from large to small according to the table processing priority of iptables.[fill in the blank]*

Question157: Which of the following options is not part of the quintuple range?

Question158: Which of the following options are technical characteristics of an intrusion prevention system? (multiple choice)

Question159: Regarding the firewall security policy, the following items are correct?

Question160: When the FW is deployed at the network egress, if a fault occurs, it will affect the Zaonet service. to enhance the network Reliability, need to deploy two FWs and form ______[fill in the blank]*

Question161: Using the ___ method of the Web proxy, the virtual gateway will encrypt the real URL that the user wants to access, and can adapt to different terminal types.[fill in the blank]*

Question162: Which of the following is not the business scope of the National Internet Emergency Response Center?

Question163: Which of the following is the status information that can be backed up by the HRP (Huawei Redundancy Protocol) protocol? (Multiple choice)

Question164: After the firewall uses the hrp standby config enable command to enable the standby device configuration function, all the information that can be backed up can be directly configured on the standby device, and the configuration on the standby device can be synchronized to the active device

Question165: An employee of a company accesses the company's internal Web server through a firewall. The web page of the website can be opened using a browser, but the Pina command is used to test the reachability of the Web server, and it is displayed as unreachable.
What is the possible reason? ()

Question166: An employee of a company accesses the internal web server of the company through the firewall, and can open the web page of the website by using a browser, but the accessibility of the web server is tested by using the Pina command, and it shows that it is unreachable. What are the possible reasons? ( )[Multiple choice]

Question167: Which of the following factors are related to the initial priority of the USG9500 VGMP group? (Multiple choice)

Question168: According to the level protection requirements, which of the following behaviors belong to the scope of information security operation and maintenance management? ( )*

Question169: Which of the following are multi-user operating systems? (Multiple choice)

Question170: Which of the following are multi-user operating systems? (Multiple choice)

Question171: Which of the following attacks is not a cyber attack?

Question172: In the IPSec VPN transmission mode, which part of the data message is encrypted?

Question173: Please match the following NAT technologies and realized functions one by one

Question174: In the Linux system, which of the following commands is used to query IP address information?

Question175: If users from the external network (where the security zone is Untrust) are allowed to access the intranet server (where the security zone is DMZ), the destination security zone selected when configuring the security policy is ______.[fill in the blank]*

Question176: When dual-system hot backup is deployed on the firewall,VRRPWhich of the following protocols should be used to switch the overall status of a backup group?

Question177: Which of the following is the default backup mode of dual-machine hot backup?

Question178: The preservation of electronic evidence is directly related to the legal validity of the evidence. Only when the preservation conforms to legal procedures, can its authenticity and reliability be guaranteed. Which of the following is not an evidence preservation technology?

Question179: Using the _____ method of the web proxy, the virtual gateway encrypts the real URL that the user wants to access and can adapt to different terminal types.

Question180: IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.[fill in the blank]

Question181: Evidence preservation is directly related to the legal effect of evidence. Which of the following is not an evidence preservation technique?

Question182: Which of the following about the difference between pre-accident prevention strategies and post-accident recovery strategies is correct? (Multiple choice)

Question183: Which is the order of the four stages of the Information Security Management System (ISMS) in the following options?

Question184: MACWhich of the following mechanisms are used by flood attacks? (multiple choice)

Question185: Common information security standards and specifications mainly include the national level protection system (GB), _______, the American standard TCSEC and the European Union standard ITSEC.[fill in the blank]

Question186: When the command is executed on the firewall and the following information is displayed, which of the following descriptions is correct? (Multiple choice)
HRP_A [USG A] display vrrp interfaceGigabitEthernet 1/0/1
GigabitEthernet1/0/1 | Virtual Router 1
VRRP Group: Active
state: Active
Virtual IP: 202.38.10.1
Virtual MAC: 0000-5e00-0101
Primary IP: 202.38.10.2
PriorityRun :100
PriorityConfig:100
MasterPriority :100
bbs.hh010.com
Preempt: YES Delay Time: 10

Question187: Manual audit is a supplement to tool assessment. It does not require any software to be installed on the target system being assessed, and has no effect on the operation and status of the target system. Which of the following is not included in the manual audit?

Question188: Which of the following options is correct regarding the matching conditions of a security policy? (multiple choice)

Question189: _____ Mode: Two devices, one master and one backup. Under normal circumstances, service traffic is handled by the active device. When the active device fails, the standby device replaces the active device to process service traffic to ensure that services are not interrupted.[fill in the blank]*

Question190: Heartbeat message (He11o message): The two FWs send heartbeat messages to each other periodically (the default period is ( ) seconds) to check whether the peer device is alive. (fill in the blank)

Question191: In the process of using the digital envelope, which of the following information will be encrypted? (Multiple choice)

Question192: Intrusion Prevention System (IPS,intrusion prevention system) is a defense system that can block in real time when an intrusion is detected

Question193: What is the corresponding warning level for major network security incidents?

Question194: Please match the whole worm virus attack process and attack description.

Question195: When configuring security policies, you can control traffic based on the user's______.[fill in the blank]*

Question196: which of the followingIPSec VPNnecessary configuration? (multiple choice)

Question197: When one of the following situations occurs in the VGMP group, the VGMP group will not actively send VGMP messages to the opposite end?

Question198: Network administrators can collect data that needs to be analyzed on network devices through packet capture, port mirroring or logs.

Question199: Please sort by iptables table processing priority from largest to smallest.

Question200: Which of the following options is not a hash algorithm?

Question201: aboutVGMPDescription of the managed preemption function, which of the following is false?

Question202: Which of the following information is not the backup content included in the status information backup in dual-system hot backup?

Question203: Which of the following is not part of a digital certificate?

Question204: Which of the following protocols cannot be encrypted by SSL VPN?

Question205: SNMPWhat versions of the protocol are there? (multiple choice)

Question206: Social engineering is a means of harm such as deception, harm, etc., through psychological traps such as psychological weaknesses, instinctive reactions, curiosity, trust, and greed of victims.

Question207: IPSec VPN uses an asymmetric encryption algorithm to encrypt the transmitted data.

Question208: In symmetric encryption algorithms, the algorithm is generally used on data communication channels, browsers or network links (). (fill in the blank)

Question209: Which of the following are remote authentication methods? (Multiple choice)

Question210: In the _______ view of the firewall, you can use the reboot command to restart the firewall.

Question211: about Internet users andVPNIn the description of access user authentication, which of the following is false?

Question212: After the firewall detects a virus, which of the following will release the virus?

Question213: Which of the following NAT technologies can implement a public network address to provide source address translation for multiple private network addresses?

Question214: aboutNATPolicy processing flow, which of the following options are correct? (multiple choice)

Question215: Which of the following items belong to the information security prevention method in the dimension of operation and maintenance management?

Question216: The SIP protocol uses SDP messages to establish a session, and the SDP message contains a remote address or multicast address

Question217: Which of the following NAT technologies is a destination NAT technology?

Question218: Which of the following is the user name/password for the first login of the USG series firewall?

Question219: Which of the following options are harmful to traffic-based attacks? (Multiple choices)

Question220: If foreign criminals use the Internet to steal my country's state secrets, what kind of early warning will the state initiate?

Question221: About firewall fragmentationWhich of the following options is correct? (multiple choice)

Question222: Which of the following options are included in the encryption technology to protect data during data transmission? (Multiple choice)

Question223: "Implement security monitoring and management of information and information systems to prevent illegal use of information and information systems", in order to achieve which feature in information security?

Question224: Which of the following options is not a passive means of obtaining information? ( )[Multiple choice]*

Question225: existUSGIn the series firewalls, which of the following commands can be used to queryNATconversion result?

Question226: Under normal circumstances, the Emai1 protocols we often talk about include ____, POP3, and SMTP.[fill in the blank]*

Question227: The trigger modes of the built-in Portal authentication in the firewall include pre-authentication and ____ authentication[fill in the blank]*

Question228: GREThe tunnel addresses at both ends of the tunnel can be configured as addresses on different network segments

Question229: Which of the following traffic matches the authentication policy will trigger authentication?

Question230: VGMPIn which of the following situations occurs in the group, the group will not actively send the message to the peerVGMPmessage/

Question231: Which of the following is the default backup mode for dual-system hot standby?

Question232: Which of the following descriptions about the patch is wrong?

Question233: What are the correct options for the following description of the basic concepts of LDAP?

Question234: Digital signature is to generate a digital fingerprint by using a hash algorithm to ensure the integrity of data transmission

Question235: Write a rule with iptables that does not allow 172.16.0.0.0/16 to access this device, which rule is correct?

Question236: Regarding the matching conditions of the security policy, which of the following options are correct? (Multiple Choice)

Question237: Regarding the source of electronic evidence, which of the following descriptions is wrong?

Question238: _________ Mode: Two devices, one active and one standby. Under normal circumstances, business traffic is handled by the main device. When the main equipment fails, the backup equipment takes over the main equipment to process business traffic to ensure uninterrupted business.

Question239: Which of the following statements about Internet user management is false?

Question240: Digital certificate technology solves the problem that the public key owner cannot be determined in digital signature technology

Question241: Which item below is not a Linux operating system?

Question242: Which of the following descriptions about the main implementation of single sign-on is wrong? ( )[Multiple choice]*

Question243: Manual auditing is a supplement to tool evaluation, it does not require any software to be installed on the target system being evaluated, and has no impact on the operation and status of the target system. Which of the following options is not included in the content of a manual audit?

Question244: If there is a practical change in the company structure, it is necessary to re-test whether the business continuity plan is feasible.

Question245: When configuring user single sign-on, if the mode of querying the security log of the AD server is adopted, please sort the following authentication processes:

Question246: useiptablesWrite a rule that doesn't allow172.16.0.0/16Which of the following rules is correct?

Question247: In the construction of information security system, it is necessary to accurately describe the relationship between important aspects of security and system behavior through security models.

Question248: In tunnel encapsulation mode, there is no need to have the routing to the destination private network segment, because the data will reseal using the new IP header to find routing table.

Question249: After a network intrusion event occurs, according to the plan to obtain the identity of the intrusion, the source of the attack and other information, and block the intrusion behavior, which links in the PDRR network security model do the above actions belong to? (Multiple choice)