Free Access Huawei.H12-722-ENU.v2022-05-30.q126 Practice Test (Page 16)

Question 71

For SYIN Flood attacks, TCP source authentication and TCP proxy can be used for defense. Which of the following descriptions is correct?

A.TCP proxy means that the firewall is deployed between the client and the server. When the SYI packet sent by the client to the server passes through the firewall, the The firewall replaces the server and establishes a three-way handshake with the client. Generally used in scenarios where the back and forth paths of packets are inconsistent.

B.TCP source authentication has the restriction that the return path must be consistent, so the application of TCP proxy is not common. State "QQ: 9233

C.During the TCP proxy process, the firewall will proxy and respond to each SYN message received, and maintain a semi-connection, so when the SYN message is When the document flow is heavy, the performance requirements of the firewall are often high.

D.TCP source authentication is added to the whitelist after the source authentication of the client is passed, and the SYN packet of this source still needs to be verified in the future.

Question 72

AntiDDoS 7-layer defense works from the interface-based defense, global-based defense, and defense-based defense dimension.

A.False

B.True

Question 73

Regarding the enhanced mode in HTTP Flood source authentication, which of the following descriptions are correct? Multiple choices

A.Enhanced mode supports all HTTP Flood source authentication fields. " WWQQ: 922333

B.Some bots have a redirection function, or the free proxy used during the attack supports the redirection function, which leads to the failure of the basic mode of defense Effective, enhanced mode can effectively defend.

C.Enhanced mode refers to the authentication method using verification code.

D.The enhanced mode is superior to the basic mode in terms of user experience.

Question 74

Which of the following options are correct for the description of URPF technology? (Multiple Choices)

A.Use the loose mode of URPF in an environment where route symmetry is not guaranteed.

B.The main function is to prevent network attacks based on source address spoofing.

C.Does not check whether the interfaces match in the strict mode. As long as there is a route to the source address, the packets can pass.

D.In loose mode, not only the corresponding entries in the forwarding table are required, but also the interfaces must match to pass the URPF check.

Question 75

Misuse detection discovers intrusion activity in system by detecting similar behaviors of user intrusions, or by detecting violations of system security rules indirectly by exploiting system flaws.
Which of the following is not misuse detection feature?

A.Easy to upgrade

B.Easy to implement

C.Effective detection of impersonation of legitimate users

D.Accurate detection

Other Version: 2919Huawei.H12-722-ENU.v2022-04-22.q112; 56Huawei.Exams4sures.H12-722-ENU.v2021-10-04.by.tim.60q.pdf

Latest Upload: 282PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 412Nokia.4A0-113.v2026-05-01.q69; 440EC-COUNCIL.312-49v11.v2026-04-30.q214; 403Microsoft.MB-820.v2026-04-30.q101; 274Salesforce.MC-202.v2026-04-30.q57; 322BICSI.INSTC_V8.v2026-04-29.q53; 457NMLS.MLO.v2026-04-28.q82; 299NCARB.Project-Management.v2026-04-28.q27; 546EMC.D-AV-DY-23.v2026-04-27.q184; 1388ServiceNow.CSA.v2026-04-27.q483

Question 71

Question 72

Question 73

Question 74

Question 75

Download PDF File