HCIP-Routing & Switching-IENP V2.5 New Questions H12-222_V2.5 Updated Exam Questions

Regina2021-11-26T03:41:55+00:00

By Regina Free Questions Online, HCIP-Routing & Switching, Huawei H12-222, H12-222_V2.5, H12-222_V2.5 exam questions, H12-222_V2.5 free questions, H12-222_V2.5 practice exam, H12-222_V2.5 questions and answers 0 Comments

To earn HCIP-Routing & Switching V2.5 certification, you need to complete all the three exams as listed:

H12-221_V2.5 HCIP-Routing & Switching-IERS V2.5
H12-222_V2.5 HCIP-Routing & Switching-IENP V2.5
H12-223_V2.5 HCIP-Routing & Switching-IEEP V2.5

Actually, all the practice exams for these three exams have been updated by ITExamShop, you can get the HCIP-Routing & Switching bundle to have the exam questions for preparation. Among the three exams, HCIP-Routing & Switching-IENP V2.5 New Questions H12-222_V2.5 Updated Exam Questions come with 448 questions and answers. The particular H12-222_V2.5 exam questions frame the real questions and answers that you can expect inside the genuine HCIP-Routing & Switching-IENP V2.5 certification exam.

Check HCIP-Routing & Switching-IENP V2.5 H12-222_V2.5 Free Questions First

Page 1 of 3

1. In the admission control scenario of the Agile Controller, which of the following options about the roles of the RAD IUS server and client is correct?

The Agile Controller integrates all the functions of the RADIUS server and client.

The Agile Controller acts as a RADIUS server, and the user terminal acts as a RADIUS client.

The authentication device (such as an 802.1X switch) acts as a RADIUS server, and the user terminal acts as a RADIUS client.

The Agile Controller acts as a RADIUS server and an authentication device (such as an 802.1X switch) as a RADIUS client.

2. The three elements of the Servermap table of the USG series firewalls do not include:

Destination IP

Destination port number

Agreement number

Source IP

3. Regarding the description about business accompanying of Agile Controller, which of the following is correct? (Multiple Choice)

The administrator should select the appropriate user authentication point and policy enforcement point when configuring the business accompanying.

In business accompanying, you can define user-class security groups. The members of this part of the security group mainly refer to a static network segment or server resource of the network. Their IP needs to be manually bound to the security group.

In business accompanying, a matrix relationship is used to describe the access authority relationship from one security group (such as a user) to another security group (such as a server).

In business accompanying, by specifying the forwarding priority of the security group to which certain VIP users belong, the network experience of these people is guaranteed.

4. Man-in-the-middle attacks or IP/MAC spoofing attacks can cause information leakage and other hazards, and they are more common in intranets.

In order to prevent man-in-the-middle attacks or IP/MAC spoofing attacks, the configuration methods that can be taken are:

Configure Trusted/Untrusted interface.

Limit the maximum number of MAC addresses that can be learned on the switch interface.

Enable DHCP snooping to check the function of CHADDR field in the DHCP REQUEST message.

Configure the linkage between DHCP snooping and DAI or IPSG on the switch.

5. For IPv4 packets, we can perform simple flow classification according to what information in the packet? (Multiple Choice)

DSCP information

IP Precedence Information

Traffic Class information

802.1P information

6. Complex flow classification refers to the classification of messages based on information such as quintuples (source/destination address, source/destination port number, protocol type), etc., and is usually applied at the core of the network.

True

False

7. The traditional packet loss strategy adopts the tail-drop method, which will cause the TCP global synchronization phenomenon.

True

False

8. ASPF (Application Specific Packet Filter) is a packet filter based on the application layer. It checks the application layer protocol information and monitors the connected application layer protocol status, and implements a special security mechanism through the Server MAP table.

Regarding the statement about ASPF and Server map table, which of the following is wrong?

ASPF monitors the messages in the communication process.

ASPF dynamically creates and deletes filtering rules.

ASPF uses Ser; ermak table to dynamically allow multi-channel protocol data to pass.

The five-tuple Server map table entry implements a function similar to the session table.

9. NFV is often deployed in which of the following application environments? (Multiple Choice)

Data Center

Network node

User access side

Client/Server

10. When pinging the IP address of a certain interface of the firewall on the firewall, these messages will be handed over to the internal module of the firewall for processing and will not be forwarded.

True

False

Page 2 of 3

11. The methods of data collection are mainly divided into: (Multiple Choice)

Spectroscope physical collection

Collect through port mirroring

NMS centralized collection

Automatic collection

12. In ESIGTH, what conditions can be used to set alarm shielding rules? (Multiple Choice)

Effective time

Effective period

Alarm source

Alarm

13. The main functions of the VIM management module in NFV include resource discovery, resource allocation, resource management and _______.

Resource scheduling

Resource monitoring

Resource recovery

Troubleshooting

14. As shown in the figure, if MPLS LSP is configured in the network and a local LDP session is implemented between SWA and SWB, which of the following statement is correct?

The configuration is correct

The Mpls lsr-id of two devices cannot be configured to be the same

No need to enable MPLS globally

No need to enable MPLS on the port

15. MPLS has the concept of forwarding equivalence class (FEC-Forwarding Equivalence Class), so FEC cannot be allocated based on which of the following standards?

Fragment offset

Destination Access

Application Protocol

Class of Service

16. Which of the following steps are included in the basic working process of SDN? (Multiple Choice)

Topological information collection

Network element resource information collection

One forwarding information collection

Generate internal switching routes

17. In the MPLS system, there are two ways to publish labels, namely: (Multiple Choice)

Free way

Independent

Conservative approach

Orderly approach

18. In the process of the client applying for an IP address through DHCP and assigning an IP address to the DHCP server, which of the following messages are usually unicast? (Multiple Choice)

DHCP OFFER

DHCP REQUEST

DHCP DISCOVER

DHCP ACK

19. The remote alarm notification methods supported by Esight network management include: (Multiple Choice)

Mail

Voice

SMS

WeChat

20. In the TCP/IP v4 version, which of the following security risks exist? (Multiple Choice)

Lack of data source verification mechanism

Lack of confirmation mechanism for data packets

Lack of a verification mechanism for data integrity

Lack and password guarantee mechanism

Page 3 of 3

21. Regarding the description about the VRRP, which of the following is wrong?

The routers in the VRRP group elect a Master based on priority

The master router sends a gratuitous ARP message to notify its virtual MAC address to the device connected to it.

If the Master router fails, the Backup router in the virtual router will re-elect a new Master based on the priority

Because the priority range is 1-255, when the priority value in the VRRP notification message received by the Backup device is 0, Backup will discard the message without any processing.

22. When the host and server in the same security zone communicate with each other, it is not necessary to use NAT for address translation.

True

False

23. In the network shown in the following figure, if you want to realize the remote LAP session between SWA and SWC, which of the following statement is correct?

The configuration in the figure can be achieved

Need to configure the direct connection port to establish a TCP connection

Need to create a remote peer, and then specify the Isr-id of the peer

Specify the Isr-id of the peer in the system view

24. Regarding the following description of the firewall's inter-domain security strategy, which of the following is correct?

The inter-domain security policy is matched according to the order of arrangement, and the first one is matched first

The inter-domain security policy is matched according to the size of the ID number, and the smaller number is matched first.

The inter-domain security policy is matched according to the size of the ID number, and the larger number is matched first.

The inter-domain security policy is automatically arranged according to the size of the serial number. When the arrangement order is changed, the number also changes.

25. The main technical genres of SDN advocate that SDN adopts a layered open architecture, so what is used to advocate, define a centralized architecture and Openflow?

ONF

IEIF

ETSI

ITUa

26. Which of the following is the command to configure the listening address of the SDN controller?

Openflow Listening-ip 1.1.1.1

Sdn controller souce-address 1.1.1.1

controller-ip 1.1.1.1

Sdn Listening-ip 1.1.1.1

27. In the Diff-Serv network, the maximum number of values that can be defined with DSCP is:

28. Single-packet attack means that an attacker controls a zombie host and sends a large number of attack messages to the target network, causing the congestion of the attacked network link and exhaustion of system resources.

True

False

Welcome To Choose Required IT Certification Exams Online

HCIP-Routing & Switching-IENP V2.5 New Questions H12-222_V2.5 Updated Exam Questions

Check HCIP-Routing & Switching-IENP V2.5 H12-222_V2.5 Free Questions First

Author

Leave a Reply Cancel reply