Vendor: Huawei
Exam Code: HC-711-ENU
Exam Name: HCNA Huawei Certified Network Associate
- Constructing Basic Security Network (HCNA-CBSN) -
ENU
Version: Demo
,QUESTION NO: 1
After using the vpn client user Wang l2tp vpn dial from outside the network normally get the
address and found able to access all the resources within the network, but it cannot open the page
on the internet, possible reasons for the?
A. vpn device software version is incorrect
B. vpn client software version is incorrect
C. Misconfigured firewall l2tp
D. After the dial-in l2tp vpn, default route points to the local computer dial-up access to the
address
Answer: D
Explanation:
QUESTION NO: 2
In tunnel mode, AH security protocol, which of the following new IP packet header fields without
data integrity check?
A. TTL
B. Source IP address
C. Destination IP address
D. The source IP address and destination IP address
Answer: A
Explanation:
QUESTION NO: 3
SSL VPN file sharing applications in use need to enter a user name, password, and domain
information, in order not to enter a user name and password, you can set the permissions on the
file sharing server.
A. True
B. False
Answer: A
Explanation:
2
,QUESTION NO: 4
Which of the following is an IETF industry standard VPN protocols?
A. PPTP
B. L2F
C. L2TP
D. PP2F
Answer: C
Explanation:
QUESTION NO: 5
Difference IPSEC security protocol that AH AH and ESP can achieve data encryption, data
validation to support a wider range of ESP?
A. True
B. False
Answer: B
Explanation:
QUESTION NO: 6
ASPF makes firewall to support multiple data channels of a control on the channel protocol, but
also to facilitate the formulation of policies in various security applications are very complex
situation.
A. True
B. False
Answer: A
Explanation:
3
, QUESTION NO: 7
SVN3000 network expansion in the application, the client obtains an IP address in two ways: the
virtual gateway address pool and DHCP server within the network.
A. True
B. False
Answer: A
Explanation:
QUESTION NO: 8
Network Address Port Translation (NAPT) and Network Address Translation (NAT) what is the
difference? (Choose two)
A. After NAPT conversion for users outside the network,all packets from the same IP address or
IP address of a few
B. NAT only supports application layer protocol address translation
C. NAPT only supports network layer protocol address translation
D. NAT support network layer protocol address translation
Answer: A,D
Explanation:
QUESTION NO: 9
In the GRE configuration environment, under the Tunnel interface mode, destination address
generally refers to?
A. The end of the Tunnel interface IP address
B. The end of the IP address outside the network outlet
C. Peer IP address outside the network entry
D. Remote Tunnel Interface IP address
Answer: C
Explanation:
4
Exam Code: HC-711-ENU
Exam Name: HCNA Huawei Certified Network Associate
- Constructing Basic Security Network (HCNA-CBSN) -
ENU
Version: Demo
,QUESTION NO: 1
After using the vpn client user Wang l2tp vpn dial from outside the network normally get the
address and found able to access all the resources within the network, but it cannot open the page
on the internet, possible reasons for the?
A. vpn device software version is incorrect
B. vpn client software version is incorrect
C. Misconfigured firewall l2tp
D. After the dial-in l2tp vpn, default route points to the local computer dial-up access to the
address
Answer: D
Explanation:
QUESTION NO: 2
In tunnel mode, AH security protocol, which of the following new IP packet header fields without
data integrity check?
A. TTL
B. Source IP address
C. Destination IP address
D. The source IP address and destination IP address
Answer: A
Explanation:
QUESTION NO: 3
SSL VPN file sharing applications in use need to enter a user name, password, and domain
information, in order not to enter a user name and password, you can set the permissions on the
file sharing server.
A. True
B. False
Answer: A
Explanation:
2
,QUESTION NO: 4
Which of the following is an IETF industry standard VPN protocols?
A. PPTP
B. L2F
C. L2TP
D. PP2F
Answer: C
Explanation:
QUESTION NO: 5
Difference IPSEC security protocol that AH AH and ESP can achieve data encryption, data
validation to support a wider range of ESP?
A. True
B. False
Answer: B
Explanation:
QUESTION NO: 6
ASPF makes firewall to support multiple data channels of a control on the channel protocol, but
also to facilitate the formulation of policies in various security applications are very complex
situation.
A. True
B. False
Answer: A
Explanation:
3
, QUESTION NO: 7
SVN3000 network expansion in the application, the client obtains an IP address in two ways: the
virtual gateway address pool and DHCP server within the network.
A. True
B. False
Answer: A
Explanation:
QUESTION NO: 8
Network Address Port Translation (NAPT) and Network Address Translation (NAT) what is the
difference? (Choose two)
A. After NAPT conversion for users outside the network,all packets from the same IP address or
IP address of a few
B. NAT only supports application layer protocol address translation
C. NAPT only supports network layer protocol address translation
D. NAT support network layer protocol address translation
Answer: A,D
Explanation:
QUESTION NO: 9
In the GRE configuration environment, under the Tunnel interface mode, destination address
generally refers to?
A. The end of the Tunnel interface IP address
B. The end of the IP address outside the network outlet
C. Peer IP address outside the network entry
D. Remote Tunnel Interface IP address
Answer: C
Explanation:
4
