The principle of HTTPS Flood source authentication defense is that the Anti-DDoS device replaces the SSL server with the client to complete the TCP three-way handshake. If the TCP three-way handshake is complete, the HTTPS flood source authentication check is successful.

• A.TRUE
• B.FALSE

Comment: *

Name: *

Email: *

Verification: *

About BFD detection mechanism, the following statement is correct? (Choose two answers)

• A.At the beginning of the session, the two sides negotiate through the control system carried in the packet parameters
• B.BFD control packets are encapsulated in TCP packets
• C.BFD provides two detection modes: asynchronous and synchronous mode
• D.After the establishment of a BFD session, both systems periodically send BFD control packets

Comment: *

Name: *

Email: *

Verification: *

Network attacks include flood attacks, scanning and sniffing attacks, malformed-packet attacks, and special-packet attacks.

• A.TRUE
• B.FALSE

Comment: *

Name: *

Email: *

Verification: *

When there are a large number of BFD sessions in a system, what mode can be used to prevent BFD detection when the cost of sending BFD control packets periodically affects the normal operation of the system?

• A.sync mode
• B.detection mode
• C.asynchronous mode
• D.query mode

Comment: *

Name: *

Email: *

Verification: *

Two endpoints cannot build a successful IPsec VPN session. Which of the following firewall configuation errors could be the problem? (Choose three answers)

• A.A gateway configuration on both ends with the referenced ACL security policy
• B.A device does not have a route to the peer within the network.
• C.The gateway configuration on both ends of the IPsec proposal is inconsistent.
• D.Both ends are not configured for DPD.

Comment: *

Name: *

Email: *

Verification: *