Question1: According to different usage scenarios, digital certificates can be divided into local certificates, CA certificates, root certificates and self-signed certificates, etc.
Question2: Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc. These fields have an "and" relationship, that is, only the information in the message matches all fields It is considered that this strategy has been hit by the above.
Question3: ______ is to configure user information (including the user name, password and various attributes of the local user) on the network access server. The advantage is that it is fast.
Question4: When A and B communicate with each other in data communication, if an asymmetric encryption algorithm is used for encryption, when A sends data to B, which of the following keys will be used for data encryption?
Question5: Which of the following is the encryption technology used in the digital envelope?
Question6: Which of the following is false for a description of an intrusion detection system?.
Question7: Regarding the anti-patient response method of firewall gateway for HTTP protocols, which of the following statement is incorrect?
Question8: When configuring user single sign-on, use the receivePCIn message mode, the authentication process has the following steps:
1. visitorPCExecute the login script and send the user login information toADmonitor
2. Firewall extracts user andIPAdd the correspondence to the online user table
3. ADmonitor connected toADThe server queries the login user information and forwards the queried user information to the firewall
4. visitor loginADarea,ADThe server returns a login success message to the user and issues the login script.
Which of the following is the correct order?
Question9: After the company ' s network administrator has configured dual-system hot backup, he can view VRRP and other information through commands, and get the following information
HRP_M<FWA>
Gigabit Ethernet 0/0/3 Virtual Router 1
State: Master
Virtual IP: 10.3.0.3
Master IP: 10.3.0.1
Priority Run: 120
Priority Config: 100
Master Priority: 120
Preempt: YES Delay Time: 0s
Timer Run: 60s
Timer Config: 60s
Auth type: NONE
Virtual MAC: 0000-5e00-0101
Check TIL: YES
Config type: vgmp Vrrp
Backup-forward : disabled
Create time : 2020-03-17 17:35:54UTC+08:02
Last change time: 2020-03-22 16:01:56 UTC+08:02
Type in the blank space to view the command is _____
Question10: Firewall in addition to supporting built-inPortalIn addition to authentication, it also supports customizationPortalauthentication, when using customPortalDuring authentication, there is no need to deploy externalPortalserver.
Question11: Which of the following information is encrypted during the use of digital envelopes? (multiple choice)
Question12: ASPF (Application specific Packet Filter) is a packet filtering technology based on the application layer and implements a special security mechanism through the server-map table. Regarding ASPF and server-map tables, which of the following are correct? (Multiple choice)
Question13: Regarding the firewall security policy, the following items are correct?
Question14: Regarding the description of VGMP group management, which of the following is wrong?
Question15: againstARPDescription of spoofing attack, which of the following is false
Question16: Which of the following options are malicious programs? (Multiple Choices)
Question17: Regarding Client-Initialized L2TP VPN, which of the following statements is wrong?
Question18: Digital envelope technology means that the sender uses the receiver's public key to encrypt the data, and then sends the ciphertext to the receiver ( )[Multiple choice]*
Question19: Information security graded protection is the basic system of national information security assurance work.
Question20: Which of the following options arePKIComponents of the architecture? (multiple choice)
Question21: Which protocols below can guarantee the confidentiality of data transmission? (Multiple Choice)
Question22: Regarding the description of the intrusion detection system, which of the following is wrong?
Question23: After a network attack occurs, set isolation areas, summarize data, and estimate losses according to the plan. Which stage of the cyber security emergency response is the above actions?
Question24: Gratuitous ARP can be used to detect if _____address conflicts, and it can also refresh the MAC address table of the switch.
Question25: Digital envelope technology means that the sender uses the receiver's public key to encrypt the data and then sends the ciphertext to the receiver.
Question26: in deploymentIPSec VPN, which of the following is the main application scenario of tunnel mode?
Question27: When an enterprise establishes its own information system, it checks every operation in accordance with the authoritative standards established internationally, and can check whether its own information system is safe or not.
Question28: want to implement security policy"Anti-virus function", must beLicenseactivation.
Question29: For the description of buffer overflow attacks, which of the following options are correct? (Multiple choice)
Question30: Which of the following options belong to the certification field of ISO27001? (Multiple choice)
Question31: Which of the following is not part of the digital certificate?
Question32: Which of the following options are suitable for business travelers to access the corporate intranet in the public network environment? ( )*
Question33: "Caesar Password" is mainly encrypted by using a stick of specific specifications.
Question34: aboutVGMPDescription of the managed preemption function, which of the following is false?
Question35: Data analysis technology is to find and match keywords or key phrases in the acquired data stream or information stream, and analyze the correlation of time. Which of the following is not an evidence analysis technique?
Question36: The content of intrusion detection covers authorized and unauthorized intrusion behaviors. Which of the following behaviors does not belong to the scope of intrusion detection?
Question37: Regarding the command to view the number of security policy matches, which of the following is correct?
Question38: Please match the following malicious code categories and descriptions[fill in the blank]
Question39: Which of the following is not the business scope of the National Internet Emergency Response Center?
Question40: aboutL2TP VPNstatement, which of the following is false?
Question41: aboutVRRP/VGMP/HRPWhich of the following statements is correct? (multiple choice)
Question42: If internal employees access the Internet through the firewall and find that they cannot connect to the Internet normally, what viewing commands can be used on the firewall to troubleshoot the interface, security zone, security policy and routing table? (Write any viewing command, requiring: the words on the command line must be complete and correct to score, and cannot be omitted or abbreviated)[fill in the blank]*
Question43: The triggering methods of the built-in Portal authentication of the firewall include pre-authentication and ______ authentication
Question44: When the FW is deployed at the network egress, if a fault occurs, it will affect the Zaonet service. to enhance the network Reliability, need to deploy two FWs and form ______[fill in the blank]*
Question45: Which of the following options belong to the default security zone of Huawei firewall? (Multiple choice)
Question46: whenUSGWhich of the following logs can be viewed when the series firewall hard disk is in place? (multiple choice)
Question47: aboutwindowsDescription of the firewall advanced settings, which of the following options is wrong?
(multiple choice)
Question48: at HuaweiSDSecIn the solution, which of the following is an analysis layer device?
Question49: Which of the following options does not belong to the five-tuple range?
Question50: againstIPspoofing attack (IP Spoofing), which of the following is an error?
Question51: Regarding GRE encapsulation and decapsulation, which of the following descriptions is wrong?
Question52: DDoS attack belongs to which attack type?
Question53: Which of the following is the default backup mode for dual-system hot standby?
Question54: Which of the following descriptions about the function of the iptables table is wrong?
Question55: Which of the following are remote authentication methods? (Multiple choice)
Question56: Which of the following is the core part of the P2DR model?
Question57: Which of the following options is not included in the processing method adopted by the firewall for the matched authentication data flow?
Question58: The initial priority of the USG9500VGMP group is related to which of the following factors ( )? *
Question59: Usually we divide servers into two categories: general-purpose servers and functional servers. Which of the following options meets this classification standard?
Question60: As shown in the figure, two Server Map entries are generated after configuring NAT Server. Regarding the information presented in this figure, which of the following descriptions is wrong?[Multiple choice]* Type: Nat Server. ANY1.1.1.1[192.168.1.1] Type: Nat Server Reverse. 192.168.1.1[1.1.1.1] ANY
Question61: existClient-Initiated VPNDuring the configuration, it is generally recommended to plan the address pool and the headquarters network address as different network segments. Otherwise, the proxy forwarding function needs to be enabled on the gateway device.
Question62: Which of the following options areISO27001the field of certification? (multiple choice)
Question63: UDP port scanning means that the attacker sends a zero-byte length UDP packet to a specific port of the target host. If the port is open, an ICMP port reachability data packet will be returned.
Question64: After the firewall detects a virus, which of the following will release the virus?
Question65: Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc.
"and"That is to say, this policy is hit only if the information in the packet matches all fields.
Question66: User authentication is the authentication of the client's identity by the SSL virtual gateway, including: ________, server authentication, certificate anonymous authentication and certificate challenge authentication.
Question67: The administrator wishes to clear the current session table. Which of the following commands is correct? ( )[Multiple choice]*
Question68: at HuaweiSDSecIn the solution, which layer of equipment does the firewall belong to?
Question69: Please match the following information security risks with information security incidents one by one.

Question70: The preservation of electronic evidence is directly related to the legal validity of the evidence, and the authenticity and reliability of the preservation in compliance with legal procedures can be guaranteed. Which of the following is not an evidence preservation technique?
Question71: Regarding the actions of the security policy and the description of the security configuration file, which of the following options are correct? (Multiple choice)
Question72: Please order the following steps about the PKI life cycle correctly

Question73: In the security assessment method, the purpose of security scanning is to scan the target system with scanning analysis and assessment tools in order to find relevant vulnerabilities and prepare for attacks.
Question74: Please sort from large to small according to the table processing priority of iptables.[fill in the blank]*
Question75: When using passive mode to establish an FTP connection, the control channel uses port 20 and the data channel uses port 21. ( )[Multiple choice]*
Question76: Which of the following is the action to be taken in the eradication phase in cybersecurity emergency response? (Multiple choice)
Question77: The IDS is usually installed on the switch to detect intrusion, and at the same time, it can avoid the single point of failure affecting the normal operation of the network.
Question78: The company administrator uses the ping command to test the connectivity of the network. If he needs to specify the source address of the ehco-request message, what are the additional parameters he needs?
Question79: ASPF (Application Specific Packet Filter) is a packet filtering technology based on the application layer and implements a special security mechanism through the server-map table.
Regarding ASPF and server-map tables, which of the following are correct? (Multiple choice)
Question80: Configure authentication options If you use web push page authentication, you also need to configure a corresponding security policy to allow the data flow with the default port number ( ) to reach the firewall itself. (fill in the blank)
Question81: Which of the following is an "information sabotage incident" in the classification of network security incidents?
Question82: Information security precautions include both management and technical measures. Which of the following measures is not a precautionary method for information security technology?
Question83: Divide the firewall according to the protection subject, Windows firewall belongs to ______.
Question84: Clients in the Trust zone of the firewall can log in to the FTP server in the Untrust zone, but cannot download files. Which of the following methods can solve the problem? (Multiple Choice)
Question85: Database operation records can be used as evidence of _______ for retrospective security incidents.
Question86: As shown in the figure, a TCP connection is established between client A and server B.
Which of the following should be the serial number of the "?" message in the two places in the figure?

Question87: About the rootCACertificate, which of the following descriptions is incorrect?
Question88: Man-in-the-middle attacks are data security threats.
Question89: After an engineer completes the source NAT configuration, the internal network still cannot access the external network. The engineer wants to query the detailed information of the address translation by using the command to query the session table, so the engineer directly uses the ( ) command in the user view to query the address translation. information. (fill in the blank)
Question90: After the firewall detects an intrusion, the administrator can view the intrusion log information in the firewall business log or ( ) log. (fill in the blank)
Question91: Which of the following is not an asymmetric encryption algorithm?
Question92: DHCP SnoopingWhich of the following attacks can be prevented? (multiple choice)
Question93: In the user management of Huawei firewall, which of the following categories are included? (Multiple choice)
Question94: Which of the following is true about the command to view the number of times security policy matches?
Question95: Which of the following statements about OSPF is correct?
Question96: Which of the following configurations can achieveNAT ALGFeatures?
Question97: NAPT technology can implement a public IP address for multiple private network hosts.
Question98: Which of the following does not belong to the log format of the firewall? ( )[Multiple choice]
Question99: aboutClient-InitializedofL2TP VPN, which of the following statements is false?
Question100: Business Impact Analysis (BIA) does not include which of the following?
Question101: Regarding Client-Initiated VPN, which of the following statements are correct? (Multiple choice)
Question102: Which of the following is false about scanning for vulnerabilities?
Question103: Which of the following belong to the encapsulation mode supported by IPSec VPN? (Multiple choice)
Question104: Which of the following options belong to the same characteristics of windows system and LINUX system? (Multiple choice)
Question105: The content of intrusion detection covers all kinds of authorized and unauthorized intrusion behaviors. Which of the following behaviors does not belong to the scope of intrusion detection?
Question106: RFC (Request For Comment) 1918 reserves 3 IP addresses for private use, namely 10.0.0.0-10.255.255.255,______, 192.168.0.0-192.168.255.255[fill in the blank]*
Question107: Which of the following NAT technologies can implement a public network address to provide source address translation for multiple private network addresses?
Question108: Which of the following is the status information that can be backed up by the HRP (Huawei Redundancy Protocol) protocol? (Multiple Choice)
Question109: Which types of the following can the encryption technology be divided into? (Multiple Choice)
Question110: On the surface, threats such as viruses, loopholes, and Trojan horses are the causes of information security incidents, but at the root, information security incidents are also closely related to people and the information system itself.
Question111: ( ) means that the computer system has defects and deficiencies in the specific matters of hardware, software, protocols or system security policies. (Chinese Standard Terminology) (fill in the blank)
Question112: The tunnel addresses at both ends of the GRE tunnel can be configured as addresses of different network segments.
Question113: Regarding Huawei routers and switches, which of the following statements are correct? (Multiple choice)
Question114: ASPF (Application specific Packet Filter)It is a packet filtering technology based on the application layer, andserver-mapTables implement special security mechanisms. aboutASPFandserver-mapWhich of the following statements is correct? (multiple choice)
Question115: HTTP packets are carried by UDP, and the HTTPS protocol is based on the TCP three-way handshake, so HTTPS is more secure, and HTTPS is more recommended.
Question116: The world's first worm-"Morris Worm"Make people realize that with the deepening of people's dependence on computers, the possibility of computer network being attacked is also increasing, and it is necessary to establish a sound emergency response system
Question117: When we use digital signature technology, the receiver needs to use the sender's ( ) to unlock the digital signature to get the digital fingerprint. (fill in the blank)
Question118: Social engineering is a means of harm such as deception, harm, etc. through psychological traps such as psychological weaknesses, instinctive reactions, curiosity, trust, and greed of victims ( )
Question119: Which of the following are the main implementation methods of gateway anti-virus? (Multiple choice)
Question120: Digital envelope technology means that the sender encrypts the data with the receiver's public key, and then sends the ciphertext to the receiver.
Question121: aboutClient-Initiated VPN, which of the following statements is true? (multiple choice)
Question122: Which of the following security measures does the monitor correspond to?
Question123: If internal employees access the Internet through a firewall and find that they cannot connect to the Internet normally, which view commands can be used on the firewall to troubleshoot the interface state security zone, security policy, and routing table? (Write any view command, require: command line The words must be complete and correct to score, and cannot be omitted or abbreviated)
Question124: Digital signature is to generate a digital fingerprint by using a hash algorithm to ensure the integrity of data transmission
Question125: After a network intrusion event occurs, the identity of the intrusion, the source of the attack and other information are obtained according to the plan, and the intrusion behavior is blocked. The above actions belong to PDRR. What are the links in the network security model? (multiple choice)
Question126: Regarding L2TP VPN, which of the following is wrong?
Question127: Which of the following is not a common application scenario of digital certificates? ( )[Multiple choice]*
Question128: Digital envelope refers to the data obtained after the sender uses the receiver's ______ to encrypt the symmetric key.
Question129: Which of the following VPNs cannot be used in a Site to-Site scenario? ( )[Multiple choice]*
Question130: Which of the following options are key elements of information security precautions? (multiple choice)
Question131: existUSGOn the series firewall, configurewebAfter the redirection function is enabled, the authentication page cannot pop up. Which of the following is not the cause of the failure?
Question132: In the future development trend of information security, terminal detection is an important part. Which of the following methods fall under the category of endpoint detection? (multiple choice)
Question133: Regarding the problem that users with two-way binding in authentication-free mode cannot access network resources, which of the following options are possible reasons? (Multiple choices)
Question134: RFC (Request For Comment) 1918 sets aside 3 IP address ends for private use, namely 10.0.0.0-10.255.255.255, _______, 192.168.0.0-192.168.255.255
Question135: Please match the following NAT technologies and realized functions one by one

Question136: Which of the following is the basic function of anti-virus software? (Multiple Choice)
Question137: Drag the stages of cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution.

Question138: The administrator connects to the firewall through the G 1/0/0 interface (the interface has been added to the Trust Zone). If the administrator is allowed to log in to the firewall through G1/0/0 for configuration management, how to configure the direction of traffic released in the security policy?
Question139: Which of the following are multi-user operating systems? (Multiple choice)
Question140: Which of the following options arePKIentity orientationCAHow to apply for a local certificate? (multiple choice)
Question141: The SSL VPN routing mode determines the route of the message sent by the client. In the _______ mode, no matter what resource is accessed, the data will be intercepted by the virtual network card and forwarded to the virtual gateway for processing.
Question142: at HuaweiSDSecIn the solution, which of the following options belong to the device of the executive layer?
(multiple choice)
Question143: Which of the following categories are included in Huawei Firewall User Management? (multiple choice)
Question144: Both the firewall GE1/0/1 and GE1/0/2 are in the DMZ area. If the area to achieve GE1/0/1 can access the area connected in GE1 / 0/2, which of the following is correct?
Question145: IPv6 supports configuring router authorization function on the device, verifying peer identity through digital certificate, and selecting legal device. ( )[Multiple choice]*
Question146: Regarding the vulnerability scan, which of the following is wrong?
Question147: Digital certificate technology solves the problem that the owner of the public key cannot be determined in digital signature technology
Question148: In the process of establishing IPSec VPN between the peers FW_A and FW_B, two types of security associations need to be established in two stages. In the first stage, establish ____ to verify the identity of the peers.
Question149: aboutNATPolicy processing flow, which of the following options are correct? (multiple choice)
Question150: Which of the following is an encryption technique used in digital envelopes?
Question151: In which of the following scenarios does the firewall generate the Server-map table?
Question152: When the firewall hard disk is on the throne, which of the following statement about the firewall log is correct?
Question153: Which of the following statements is true about business continuity plans? (multiple choice)
Question154: Regarding the description of firewall dual-system hot backup, which of the following options are correct? (Multiple Choice)
Question155: Which of the following protocols does not belong to the protocol type that ASPF can detect?
Question156: Use the Ping command on the firewall to test the reachability to the server (the security zone where the server is located is the DMZ). If a security policy is configured to allow the test traffic, the source security zone is _____.[fill in the blank]*
Question157: The leakage of personal information belongs to the destruction of the ________ characteristics of the information.
Question158: Which of the following options is notIPSec SAlogo?
Question159: The main reason why NAPT can achieve one-to-many address translation is that ______ is also converted while addressing, so multiple private addresses can share the same public address.
Question160: Regarding the description of the operating system, which of the following is false?
Question161: The process of electronic evidence collection includes: protecting the scene, obtaining evidence, preserving evidence, identifying evidence, analyzing evidence, tracking and presenting evidence.
Question162: For the process of forwarding the session of the first packetage in the firewood area, there are several steps:
1. Find the routing table
2. Find the domain package filter rule
3. Find the session table
4. Find the blacklist below
which order below is correct?
Question163: aboutTCP/IPDescription of protocol stack packet decapsulation, which of the following is correct? (multiple choice)
Question164: Which of the following descriptions about digital fingerprints in digital signatures is wrong? ( )[Multiple choice]*
Question165: HTTPmessage usageUDPcarry, andHTTPSprotocol based onTCPthree-way handshake, soHTTPSSafer and more recommendedHTTPS.
Question166: Which of the following options is correct regarding the actions of the security policy and the description of the security profile? (multiple choice)
Question167: The TCP/IP protocol stack packet encapsulation includes: Which of the following describes the encapsulation order (sort order: ABDC)
Question168: When the user uses the session authentication method to trigger the firewall built-inPortalDuring authentication, users do not actively perform identity authentication, advanced service access, and device push"redirect"to the certification page
Question169: Which of the following is true about the firewall log when the firewall hard drive is in place?
Question170: Database operation records can be used as ___ evidence to backtrack security events.[fill in the blank]*
Question171: Security policy conditions can be divided into multiple fields, such as source address, destination address, source port, destination port, etc. These fields have an "and" relationship, that is, only the information in the message and all fields If they all match, it is considered to have hit this strategy.
Question172: Regarding the sequence of call establishment procedures for L2TP corridors, which of the following descriptions is correct?
1. Establish L2TP tunnel
2. Establish a PPP connection
3. LNS authenticates users
4. User access to intranet resources
5. Establish an L2TP session
Question173: aboutHRPWhich of the following options is not included in the content of the master/slave configuration consistency check?
Question174: ASPF(Application Specific Packet Filter) is a packet filtering technology based on the application layer and is passed throughserver-mapTables implement special security mechanisms.
aboutASPFandserver-mapWhich of the following statements is correct? (multiple choice)
Question175: Which of the following is not asymmetric encryption algorithm?
Question176: The preservation of electronic evidence is directly related to the legal effect of evidence. The authenticity and reliability of the preservation in accordance with legal procedures can be guaranteed. Which of the following is not an evidence preservation technology?
Question177: If the company network administrator needs to check the status of the heartbeat interface after configuring the company's dual-system hot backup, the command he needs to type is ( ) The system view has been entered by default) (fill in the blank)
Question178: DDosWhich of the following attack types is an attack?
Question179: Information security level protection is the basic system of national information security work
Question180: Gratuitous ARP can be used to detect whether the ______ address conflicts, and it can also refresh the switch MAC address table.[fill in the blank]*
Question181: Which of the following is not a symmetric encryption algorithm?
Question182: When an information security incident occurs, the priority is to adopt _____ emergency response to provide customers with technical technical support.
Question183: When an access user uses Client-InitiatedVPN to establish a tunnel with the LNS, how many PPP connections can a tunnel carry?
Question184: Which of the following types of attacks are DDos attacks?
Question185: Which of the following optionsVPNDoes technical support encrypt data packets? (multiple choice)
Question186: Which of the following options belong to the function of SSL VPN? (Multiple choice)
Question187: The trigger modes of the built-in Portal authentication in the firewall include pre-authentication and ____ authentication[fill in the blank]*
Question188: OSPFCompareRIPThe more commonly used reason isOSPFWith device authentication function, it is more secure
Question189: existIPSec VPNIn the transmission mode, which part of the encrypted data packet is?
Question190: Which of the following items belong to the information security prevention method in the dimension of operation and maintenance management?
Question191: Which of the following options arewindowssystem andLINUXThe same features of the system? (multiple choice)
Question192: Which of the following statement is wrong about the root CA certificate?
Question193: Which of the following descriptions about symmetric encryption technology is wrong?
Question194: Use the Ping command on the firewall to test the reachability of the server (the security zone where the server is located is the DMZ). If the security policy is configured to allow the test traffic, the source security zone is ______.
Question195: When configuring the security policy on the firewall, the optional content security options are ( ). (fill in the blank)
Question196: Which of the following VPNs cannot be used in Site to-Site scenarios?
Question197: Which of the following is the port number used by L2TP packets?
Question198: According to the requirements of level protection, which of the following behaviors belong to the scope of information security operation and maintenance management? (Multiple choice)
Question199: in configurationNATDuring the process, in which of the following situations, the device will generateServer-maptable entry? (multiple choice)
Question200: Which of the following does not fall into the category of cybersecurity incidents?
Question201: Using the _____ method of the web proxy, the virtual gateway encrypts the real URL that the user wants to access and can adapt to different terminal types.
Question202: In information security protection, commonly used security products include firewalls, Anti-DDos equipment, and IPS/IDS equipment
Question203: Which of the following behavior is needed in the "Check" section in the construction management cycle of the information security system?
Question204: Intrusion Prevention System (IPS) is a defense system that can block intrusions in real time
Question205: EuropeTCSECThe guidelines are divided into two modules, functional and evaluation, and are mainly used in the military, government and commercial fields
Question206: In the authentication policy of the firewall, _____ allows the user to not need to enter the user name and password, but can obtain the corresponding relationship between the user and the IP, so as to carry out policy management based on the user[fill in the blank]*
Question207: If there is no hard disk installed on the firewall, when a network intrusion event is found, the event will be recorded in the () log. (fill in the blank)
Question208: In the classification of the information security level protection system, which of the following levels defines if the information system is damaged, it will cause damage to social order and public interests?
Question209: aboutClient-InitializedofL2TP VPN, which of the following statements is false?
Question210: In the VRRP (Virtual Router Redundancy Protocol) group, the main firewall regularly sends notification messages to the backup firewall, and the backup firewall is only responsible for monitoring notification messages and will not respond
Question211: Want to implement "anti-virus function" in the security policy, you must perform license activation.
Question212: In the digital signature process, which of the following items are mainly used for HASH algorithm to verify the integrity of data transmission?
Question213: in configurationGRE Tunnelinterface,DestinationThe address generally refers to which of the following parameters?
Question214: The interface on the firewall cannot forward traffic until it is added ( ). (fill in the blank)
Question215: Which of the following options is not included aboutHRP in the content of the master/slave configuration consistency check?
Question216: Please correspond to the following protocols and their TCP/IP protocol stack level

Question217: Which of the following is a remote authentication method? (Multiple Choice)
Question218: Drag the stages of cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution.

Question219: As shown in the figure is an application scenario of a NAT server, when using the web configuration method for this configuration. Which of the following statements is correct? (Multiple choice)

Question220: Please sort the following digital envelope encryption and decryption process correctly.
Question221: On Huawei USG series devices, the administrator wants to erase the configuration file. Which of the following commands is correct?
Question222: Firewall usagehrp standby config enableAfter the command to enable the configuration function of the standby device, all the information that can be backed up can be configured directly on the standby device, and the configuration on the standby device can be synchronized to the active device.
Question223: The preservation of electronic evidence is directly related to the legal validity of the evidence. Only when the preservation conforms to legal procedures, can its authenticity and reliability be guaranteed. Which of the following is not an evidence preservation technology?
Question224: which of the followingIPSec VPNnecessary configuration? (multiple choice)
Question225: existUSGConfigure on the system firewallNAT Server, will produceserver-mapTable, which of the following is not part of this representation?
Question226: Which of the following is an encryption technique used in digital envelopes?
Question227: Evidence preservation is directly related to the legal effect of evidence. Which of the following is not an evidence preservation technique?
Question228: About SSL VPN technology, which of the following statement is wrong?
Question229: Regarding the description of the preemption function managed by VGMP, which of the following is wrong?
Question230: Regarding the description of the ARP spoofing attack, which of the following is wrong?
Question231: Which of the following statements are true about port mirroring? (multiple choice)
Question232: aboutGREEncapsulation and decapsulation, which of the following descriptions is false?
Question233: Regarding the business continuity plan, which of the following statements is correct? (Multiple choice)
Question234: Regarding port mirroring, which of the following descriptions are correct? (Multiple Choice)
Question235: Common information security standards and regulations mainly include the national level protection system (GB), ____, the American standard TCSEC and the European Union standard IT SEC.
Question236: firewallGE1/0/1andGE1/0/2mouth belongs toDMZarea, if you want to implementGE1/0/1The connected area is accessibleGE1/0/2Connected area, which of the following is correct?
Question237: The HRP (Huawei Redundancy Protocol) protocol is used to synchronize the key configuration and connection status of the firewall to the standby firewall. Which of the following options does not belong to the scope of synchronization?
Question238: Which of the following descriptions about the patch is wrong?
Question239: Digital certificates can be divided into local certificates, CA certificates, root certificates, and self-signed certificates depending on the use scenario.
Question240: As shown in the figure, nat server global202.106.1.1 inside10.10.1.1 is configured on the firewall. Which of the following is the correct configuration for interzone rules? ( )[Multiple choice]*

Question241: "Caesar Cipher"Data is mainly encrypted by using a specific specification of stick.
Question242: Please classify the following servers and their functions correctly

Question243: Social engineering is a kind of harmful means such as deception and harm through psychological traps such as psychological weakness, instinctual reaction, curiosity, trust, and greed of the victim.
Question244: Which of the following options are correct regarding configuring firewall security zones? (multiple choice)
Question245: Firewall usagehrp standby config enableAfter the standby device configuration function is enabled by the command, all information that can be backed up can be configured directly on the standby device, and the configuration on the standby device can be synchronized to the active device.
Question246: Which of the following types of encryption technology can be divided into? (multiple choice)
Question247: The results seen through display ike sa are as follows. Which of the following statements is wrong?

Question248: IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.[fill in the blank]
Question249: After an engineer configures the NAT-Server, in order to check the Server-map generated after the configuration, he needs to use the ________ command to query the Server-map.
Question250: When configuring user single sign-on, if the mode of querying the security log of the AD server is adopted, please sort the following authentication processes:

Question251: aboutNATAddress translation, which of the following statements is false?
Question252: When configuring NAT Server on the USG Series Firewall, a Server-Map table is generated. Which item below does not belong to content in this performance?
Question253: User authentication is the authentication of the client identity by the SSL virtual gateway, including: ______, server authentication, certificate anonymous authentication and certificate challenge authentication.[fill in the blank]
Question254: Which of the following is the default backup mode of dual-machine hot backup?
Question255: Which of the following does not belong toP2DRin the modelDetectionThe method used in the link?
Question256: We should choose the encryption algorithm according to our own characteristics. When we need to encrypt a large amount of data, it is recommended to use the _____ encryption algorithm to improve the speed of encryption and decryption.
Question257: Which of the following options are technical characteristics of an intrusion prevention system? (multiple choice)
Question258: When an access user uses Client-InitiatedVPN to establish a tunnel with the LNS, how many PPP connections can one tunnel carry?
Question259: Which of the following options are characteristic of symmetric encryption algorithms? (multiple choice)
Question260: If we do not want to generate a reverse Server Mapi entry when configuring NAT Server, we need to add a parameter when configuring NATServerE. This parameter is ( ) (fill in the blank)
Question261: Drag the steps of electronic forensics on the left into the box on the right to summarize, and arrange them from top to bottom in the order of execution.

Question262: Please classify the main functions of the following operating systems correctly.

Question263: Which configuration below can implement NAT ALG function?
Question264: Regarding the statement of firewall security policy, which of the following options is false?
Question265: In which of the following scenarios does the firewall generate the Server map table? ( )
Question266: Which of the following is not a Layer 2 VPN technology?
Question267: Which of the following options is correct for the description of a buffer overflow attack?(multiple choice)
Question268: Which of the following options are suitable for business travelers to access the corporate intranet in the public network environment? (Multiple choice)
Question269: Which items are the encryption techniques used by digital envelopes? (Multiple Choice)
Question270: In the USG series firewall system view, the device configuration will be restored to the default configuration after the reset saved-configuration command is executed, and it will take effect without other operations.
Question271: After a cyber-attack event occurs, set up an isolation area, summarize data, and estimate losses according to the plan. Which of the above actions belong to the work content of the cyber security emergency response?
Question272: When the administrator upgrades the USG firewall software version, which of the following operations are necessary? (Multiple choice)
Question273: ( ) Can block discovered network intrusions in real time. (fill in the blank)
Question274: Which of the following options are included in the encryption technology to protect data during data transmission? (Multiple choice)
Question275: existL2TPconfiguration, for the commandTunnel Name, which of the following statements is true? (multiple choice)
Question276: In the VGMP group state, if the device's own VGMP group priority is equal to the peer device's VGMP group priority, the device's VGMP group state is ( ). (answer in letters) (fill in the blank)
Question277: In the Huawei SDSec solution, which of the following belong to the execution layer equipment? (Multiple choice)
Question278: The default policy on the firewall defaults to ( ) all traffic. (fill in the blank)
Question279: Which of the following are functions of address translation technology?(multiple choice)
Question280: Both GE1/0/1 and GE1/0/2 ports of the firewall belong to the DMZ zone. If you want to realize that the area connected by GE1/0/1 can access the area connected by GE1/0/2, which of the following is correct?
Question281: In the process of using the digital envelope, which of the following information will be encrypted? (Multiple choice)