HCIP-Security H12-722_V3.0 Syllabus Exam Questions Answers

Page: 3 / 7

Question 12

Regarding the file filtering technology in the USG6000 product, which of the following options is wrong?

Options:

It can identify the application that carries the file, the file transfer direction, the file type and the file extension.

Even if the file type is modified, it can also identify the true type of the file

It can identify the type of files transmitted by itself, and can block, alert and announce specific types of files.

It supports filtering the contents of compressed files after decompression. "

Question 13

Regarding the anti-spam local black and white list, which of the following statements is wrong?

Options:

The black and white list is matched by extracting the destination IP address of the SMTP connection

The black and white list is matched by the sender's dns suffix

The black and white list is matched by extracting the source IP address of the SMTP connection

155955cc-666171a2-20fac832-0c042c0419

If the source IP address of the SMTP connection matches the blacklist, the connection will be blocked

Question 14

In order to protect the security of data transmission, more and more websites or companies choose to use SSL to encrypt transmissions in the stream. About using Huawei NIP6000

The product performs threat detection on (SSL stream boy, which of the following statements is correct?

Options:

NIP0OO does not support SSL Threat Detection.

The traffic after threat detection is sent directly to the server without encryption

NIP can directly crack and detect SSL encryption.

After the process of "decryption", "threat detection", and "encryption"

Question 15

Huawei's USG000 product can identify the true type of common files and over-check the content. Even if the file is hidden in a compressed file, or change the extension

The name of the exhibition can't escape the fiery eyes of the firewall.