Huawei H12-725_V4.0 問題集

質問 1：
In the figure, enterprise A and enterprise B need to communicate securely, and an IPsec tunnel is established between firewall A and firewall B. Which of the following security protocols and encapsulation modes can meet the requirements of this scenario?
A. ESP; tunnel mode
B. ESP; transport mode
C. AH; tunnel mode
D. AH+ESP; transport mode
正解：A

質問 2：
Which of the following statements is false about web rewriting in web proxy?
A. Internet Explorer controls are required.
B. The intranet server addresses can be hidden, ensuring high security.
C. Images may be misplaced.
D. The fonts may be incomplete.
正解：A
解説: (Topexam メンバーにのみ表示されます)

質問 3：
iMaster NCE-Campus has a built-in LDAP module that enables it to function as an LDAP server to interconnect with access devices through LDAP.
A. FALSE
B. TRUE
正解：A
解説: (Topexam メンバーにのみ表示されます)

質問 4：
Which of the following statements is true about the incoming traffic in the firewall virtualsystem?
(Select All that Apply)
A. Traffic from the private network interface to the public network interface is limited by the outbound bandwidth.
B. Traffic from the public network interface to the private network interface is limited by the inbound bandwidth.
C. Traffic from the public network interface to the private network interface is limited by the outbound bandwidth.
D. Traffic from the private network interface to the public network interface is limited by the inbound bandwidth.
正解：A,B
解説: (Topexam メンバーにのみ表示されます)

質問 5：
Sort the intrusion prevention steps in sequence based on the working mechanism of the firewall device.

正解：

Explanation:
Intrusion Prevention Systems (IPS) in firewalls follow amulti-step processto detect and mitigate threats. The steps occur in a logical sequence:
1##Step 1: Identifies and Parses Application-Layer Protocols
* The firewall firstidentifies the protocol being used(e.g., HTTP, FTP, DNS, SMTP).
* Parsing the protocol helps the IPS engineunderstand how the data is structuredand what types of attacks might be embedded.
* This step is crucial for detectingprotocol-based attackslike SQL injection or cross-site scripting (XSS).
2##Step 2: Reassembles IP Fragments and TCP Flows
* Attackers oftensplit malicious payloads across multiple packetsto evade detection.
* The firewallreassembles fragmented packets and TCP flowsto reconstruct the full data stream.
* This step is critical for detectingevasion techniques such as fragmented attacks or out-of-order packet attacks.
3##Step 3: Performs Signature Matching
* Once the full data stream is reassembled, the IPScompares it against known attack signatures.
* Signature matching helps detect:
* Malware patterns(e.g., botnets, Trojans).
* Exploits targeting vulnerabilitiesin software and operating systems.
* Firewalls usepredefined signature databasesthat are regularly updated.
4##Step 4: Performs the Response Action Based on the IPS Profile
* If an attack is detected, the firewall takes anaction based on the IPS policy:
* Block the traffic(drop malicious packets).
* Alert the administrator(generate logs and alerts).
* Rate-limit traffic(slow down potential attack sources).
* Theresponse mechanism is customizablebased on security requirements.