EMT Practice Test

1. Question Content...


Question List

Question1: Both digital envelopes and digital signatures guarantee data security and verify the origin of data.

Question2: In the authentication policy of the firewall, _____ allows the user to not need to enter the user name and password, but can obtain the corresponding relationship between the user and the IP, so as to carry out policy management based on the user[fill in the blank]*

Question3: The trigger authentication method for firewall access user authentication does not include which of the following? ( )[Multiple choice]*

Question4: The RADIUS protocol specifies how to pass user information, billing information, authentication and billing results between the NAS and the RADIUS server, and the RADIUS server is responsible for receiving the user's connection request, completing the authentication, and returning the result to the NAS.

Question5: The keys used by the IPSec encryption and authentication algorithms can be configured manually or dynamically negotiated via the ____ protocol. (abbreviation, all uppercase).

Question6: When the Layer 2 switch receives a unicast frame and the MAC address table entry of the switch is empty, the switch discards the unicast frame.

Question7: Huawei Firewall only supports the inter-domain persistent connection function for TCP packets.

Question8: The initial priority of the USG9500VGMP group is related to which of the following factors ( )? *

Question9: According to the level protection requirements, which of the following behaviors belong to the scope of information security operation and maintenance management? ( )*

Question10: Which of the following are the backup items that HRP can provide?

Question11: An enterprise wants to build a server system and requires the following functions: 1. The enterprise needs to have its own dedicated mailbox, and the sending and receiving of emails needs to go through the enterprise's server; 2. The server must provide file transfer and access services. Users in different departments of the enterprise provide accounts with different permissions: 3. When the enterprise accesses the internal webpage of the enterprise, the enterprise can directly enter the domain name in the browser to access. To meet the above requirements, which of the following servers do enterprises need to deploy? ( )*

Question12: During the process of establishing IPSec VPN between peers FW_A and FW_B, two types of security associations need to be established in two stages. In the first stage, _____ is established to verify the identity of the peers.[fill in the blank]*

Question13: Which of the following is not an advantage of symmetric encryption algorithms?

Question14: What is correct in the following description of Security Alliance in IPSec?
There are two ways to set up an IPSec SA

Question15: Which of the following characteristics does a denial-of-service attack include?

Question16: IP packets using the AH+ESP protocol? ( )[Multiple choice]*

Question17: For which of the following parameters can the packet filtering firewall filter?

Question18: Drag the phases of the cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution. 1. Inhibition stage, 2. recovery phase, 3. Detection stage, 4. eradication phase[fill in the blank]*

Question19: Among the various aspects of the risk assessment of IS027001, which of the following does not belong to the system design and release process?

Question20: We should choose the encryption algorithm according to our own use characteristics. When we need to encrypt a large amount of data, it is recommended to use the ____ encryption algorithm to improve the encryption and decryption speed.[fill in the blank]*

Question21: IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.[fill in the blank]

Question22: Please order the following steps in the PKI life cycle correctly, 1. Issued, 2. storage, 3. Update, 4. verify[fill in the blank]*

Question23: An engineer needs to back up the firewall configuration. Now he wants to use a command to view all the current configurations of the firewall. May I ask the command he uses is ____[fill in the blank]*

Question24: As shown in the figure, the administrator needs to test the network quality of the 20.0.0/24 CIDR block to the 40.0.0/24 CIDR block on Device B, and the device needs to send large packets for a long time to test the network connectivity and stability.

Question25: In the Linux system, which of the following is the command to query the P address information? ( )[Multiple choice]*

Question26: Which of the following attack methods is to construct special SQL statements and submit sensitive information to exploit program vulnerabilities

Question27: In the TCP/P protocol core, which of the following protocols works at the application layer? ( )[Multiple choice]*

Question28: Please order the following steps in the PKI life cycle correctly, 1. Issued, 2. storage, 3. Update, 4. verify[fill in the blank]*

Question29: As shown in the figure, what is the range of the AH protocol authentication range in transmission mode?

Question30: The network environment is becoming more and more complex, and network security incidents occur frequently. While accelerating the construction of informatization, enterprises must not only resist external attacks, but also prevent internal management personnel from being involved in data leakage and operation and maintenance accidents due to operational errors and other issues. Which of the following options might reduce operational risk?

Question31: Digital envelope technology means that the sender uses the receiver's public key to encrypt the data, and then sends the ciphertext to the receiver ( )[Multiple choice]*

Question32: Compared with the software architecture of C/S, B/S does not need to install a browser, and users are more flexible and convenient to use.

Question33: Which of the following zones is not the firewall default security zone?

Question34: What is the protocol number of the GRE protocol?

Question35: Which of the following is the correct sequence for incident response management
1. Detection 2 Report 3 Mitigation 4 Lessons learned 5 Fix 6 Recovery 7 Response

Question36: Match each of the following application layer service protocols with the correct transport layer protocols and port numbers.