×
Detail Form
We will send your result on your email id and phone no. please fill detail
1.
HRP technology can achieve an alternate configuration of the firewall that does not need any kind of information, all the configuration information are synchronized to the primary firewall HRP prepared by a firewall, and configuration information is not lost after restart.
2.
A USG standby scenario is shown in Figure. The service interface works in three steps, down the line connecting the router through an administrator to view,
USG_A status is H RP_M [USG A],
USG_B state HRP_S [USG_B ], but all the traffic is not completely passing through USG_A, half of the traffic also passes via USG_B.
Which of the following configuration command can solve this problem?
[USG_A] interface GigabitEthernet 0/0/1
[USG_A-GigabitEthernet 0/0/1] hrp track master
[USG_A] interface GigabitEthernet 0/0/3
[USG_A-GigabitEthernet 0/0/3] hrp track master
[USG_A] ospf 101
[USG_A-ospf -101] area 0
[USG_A-ospf-101-area-0.0.0.0] network 10.104.10.0 0.0.0.255
[USG_A-ospf-101-area-0.0.0.0] network 10.104.30.0 0.0.0.255
[USG_A] hrp interface GigabitEthernet 0/0/2
[USG_B] interface GigabitEthernet 0/0/1
[USG_B-GigabitEthernet 0/0/1] hrp track slave
[USG_B] interface GigabitEthernet 0/0/3
[USG_B-GigabitEthernet 0/0/3] hrp track slave
[USG_B] ospf 101
[USG_B] ospf 101
[USG_B-ospf -101] area 0
[USG_B-ospf-101-area-0.0.0.0] network 10.104.10.0 0.0.0.255
[USG_B-ospf-101-area-0.0.0.0] network 10.104.30.0 0.0.0.255
[USG_B] hrp interface GigabitEthernet 0/0/2
USG_A status is H RP_M [USG A],
USG_B state HRP_S [USG_B ], but all the traffic is not completely passing through USG_A, half of the traffic also passes via USG_B.
Which of the following configuration command can solve this problem?
[USG_A] interface GigabitEthernet 0/0/1
[USG_A-GigabitEthernet 0/0/1] hrp track master
[USG_A] interface GigabitEthernet 0/0/3
[USG_A-GigabitEthernet 0/0/3] hrp track master
[USG_A] ospf 101
[USG_A-ospf -101] area 0
[USG_A-ospf-101-area-0.0.0.0] network 10.104.10.0 0.0.0.255
[USG_A-ospf-101-area-0.0.0.0] network 10.104.30.0 0.0.0.255
[USG_A] hrp interface GigabitEthernet 0/0/2
[USG_B] interface GigabitEthernet 0/0/1
[USG_B-GigabitEthernet 0/0/1] hrp track slave
[USG_B] interface GigabitEthernet 0/0/3
[USG_B-GigabitEthernet 0/0/3] hrp track slave
[USG_B] ospf 101
[USG_B] ospf 101
[USG_B-ospf -101] area 0
[USG_B-ospf-101-area-0.0.0.0] network 10.104.10.0 0.0.0.255
[USG_B-ospf-101-area-0.0.0.0] network 10.104.30.0 0.0.0.255
[USG_B] hrp interface GigabitEthernet 0/0/2
3.
If the two sides wish to establish an IPsec VPN tunnel and using just one of the IP addresses, which of the following configuration methods can not be applied in the gateway?
4.
As shown in Figure, firewall is in stateful failover networking environment, the firewall interfaces are in the business routing mode, and up and down are the router with OSPF configured. Assuming the OSPF protocol convergence Recovery time is 30s, following best configuration management is to seize on the HRP?
5.
Under preemption and the default.VGMP management group is enabled, the preemption delay is 60s.
6.
In Client-initial mode, it can be seen from the following debug information that L2TP dial husband is lost. What is most likely cause of failure of dial-up?
7.
Which statement is incorrect about IPsec NAT traversal?
8.
When configured behind a firewall stateful failover, in the Web configuration interface, select System> High Reliability> hot standby, click Check HRP configuration consistency corresponding check button. Pop-up window, as shown, which of the following configurations can solve the problem (assuming heartbeat interface is added to the DMZ zone)?
9.
As shown below, for the L2TP over IPsec scenarios, the following configuration shows how to protect data on the IPsec flow. Which one is correct?
10.
Corporate network administrator for a large data flow, when the USG is out of memory or CPU processing capacity limit is reached, in order to ensure that forwards packets do not carry a threat, USG dropped over the device throughput traffic. Which of the following commands can achieve this kind of functionality?