← Back to exam page

H12-711_V3.0 HCIA-Security V3.0

Loading demo links...

Showing 1–3 of 20 questions

Question 1 (Exam Pool A)

aboutwindowsFirewall description, which of the following options are correct? (multiple choice)

A. windowsThe firewall can only allow or prohibit preset programs or functions and programs installed on the system, and cannot customize the release rules according to the protocol or port number.

B. windowsThe firewall can not only allow or prohibit preset programs or functions and programs installed on the system, but also support its own custom release rules based on protocols or port numbers.

C. If you are settingwindowsDuring the firewall process, the Internet cannot be accessed. You can use the restore default function to quickly restore the firewall to its initial state.

D. windows the firewall can also change the notification rules in a closed state

Answer: B, C

Explanation:

Select all that apply, then click Submit answer.

  • windowsThe firewall can not only allow or prohibit preset programs or functions and programs installed on the system, but also support its own custom release rules based on protocols or port numbers.

  • If you are settingwindowsDuring the firewall process, the Internet cannot be accessed. You can use the restore default function to quickly restore the firewall to its initial state.

  • windows the firewall can also change the notification rules in a closed state
Question 2 (Exam Pool C)

Which of the following options are available for IPSec VPN peer authentication?

Select all that apply, then click Submit answer.

  • Digital signature

  • Digital certificate

  • Digital envelope

  • asymmetric key
Question 3 (Exam Pool A)

As shown in the figure, aNAT serverapplication scenarios, when usingwebWhen this configuration is performed in the configuration mode. Which of the following statements are correct? (multiple choice)

Select all that apply, then click Submit answer.

  • When configuring the interzone security policy, you need to set the source security zone toUntrust, the target security area isDMZ

  • configureNATServer, the internal address is10.1.1.2, the external address is200.10.10.1

  • When configuring the interzone security policy, set the source security zone toDMZ, the target security area isUntrust

  • configureNATServer, the internal address is200.10.10.1, the external address is10.1.1.2