Huawei Certified ICT Professional - Constructing Infrastructure of Security Network H12-721 Question # 63 Topic 7 Discussion
H12-721 Exam Topic 7 Question 63 Discussion:
Question #: 63
Topic #: 7
Is the correct statement about TCP proxy and TCP reverse source probing?
A.
TCP proxy and TCP reverse source probe can prevent SYN Flood
B.
The principle of the TCP proxy is that the device acts as a proxy for the TCP connection between the two ends. When one end initiates the connection, it must first complete the TCP 3 handshake with the device.
C.
Use TCP proxy mode for attack defense, you must enable the state detection mechanism.
D.
TCP reverse source detection detects the source IP by sending a Reset packet.
Note: TCP reverse source detection principle, when the device receives a SYN message, it will detect the existence of the source IP. The TCP reverse source detects the SYN-ACK sequence number that is sent incorrectly. If the source exists, it will send an RST message to request a three-way handshake. Because the reverse source detection mechanism is not affected by the successful establishment of the session table, it is recommended to use the reverse source detection technology to defend against SYN flood attacks. If you use TCP proxy attack defense, you must enable the state detection mechanism.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit