CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Huawei
  5. H12-821_V1.0

Free H12-821_V1.0 Exam Braindumps (page: 14)

Page 13 of 56
PDF with 219 Questions

When multiple access channels are set for the same access requirement, the insecure access channels are not used and secure access channels are selected in normal cases.
Which of the following are secure access channels?

  1. HTTPS
  2. Telnet
  3. SNMPv2
  4. SFTP

Answer(s): A,D

Explanation:

Secure access channels include protocols that encrypt the transmitted data to protect against interception or unauthorized access. HTTPS (HyperText Transfer Protocol Secure) ensures data encryption over web communications, while SFTP (Secure File Transfer Protocol) provides secure file transfer by utilizing SSH for data encryption. Telnet and SNMPv2, on the other hand, lack robust encryption and are considered insecure. Huawei security standards highlight the importance of encrypted communication to prevent data leaks .



An enterprise administrator wants to configure single-hop BFD to implement fast detection of direct links.
Which of the following configurations are mandatory?

  1. Configure the remote discriminator of a BFD session.
  2. Configure the local discriminator of a BFD session.
  3. Configure a multicast IP address for BFD.
  4. Enable BFD globally.

Answer(s): A,B

Explanation:

For single-hop BFD (Bidirectional Forwarding Detection), the configuration must include the local and remote discriminators to uniquely identify the session endpoints. Additionally, enabling BFD globally is a prerequisite for initiating BFD sessions. Configuring multicast IP addresses is unnecessary for single-hop BFD, as it operates over direct links. Huawei's configuration guidelines specify these requirements to ensure effective deployment and operation of BFD.

Understanding BFD (Bidirectional Forwarding Detection):

BFD is a protocol used to detect link faults quickly between two routers.

Single-hop BFD operates on directly connected links and is commonly used for fast fault detection in routing protocols like OSPF and BGP.


Reference:

HCIP-Datacom-Core Technology Training Material (BFD Basics and Configuration).

Mandatory Configurations for Single-Hop BFD:

A . Configure the remote discriminator of a BFD session:
The remote discriminator is used to uniquely identify the BFD session at the remote end. This is essential for session establishment.
B . Configure the local discriminator of a BFD session:
The local discriminator uniquely identifies the BFD session at the local end. This is required to establish a BFD session.
D . Enable BFD globally:
BFD must be enabled globally on the router for the protocol to operate and for session configurations to take effect.

Optional Configuration:
C . Configure a multicast IP address for BFD:
This is not required for single-hop BFD, as it operates over direct links using unicast communication. Multicast is used in other scenarios, like multi-hop BFD.

Conclusion:
The correct configurations for single-hop BFD are A, B, and D.



As shown in the figure, VRRP is associated with a BFD session.
When a backup device detects a fault through BFD, the backup device immediately assumes the master role after the Master_Down_Timer timer expires.

  1. TRUE
  2. FALSE

Answer(s): B

Explanation:

VRRP and BFD Association:

VRRP (Virtual Router Redundancy Protocol) is used to provide gateway redundancy by electing a master and backup router.

Associating VRRP with BFD (Bidirectional Forwarding Detection) allows faster detection of faults on the master device or the link between the master and the backup.


Reference:

HCIP-Datacom-Core Technology Training Material (VRRP and BFD Association).

Master_Down_Timer Behavior:

Normally, when a VRRP backup device detects that the master is down (through missed VRRP advertisements), the Master_Down_Timer dictates the failover timing.

However, when VRRP is associated with BFD:

BFD detects faults immediately (sub-second detection).

The backup device does not wait for the Master_Down_Timer to expire. Instead, it immediately assumes the master role upon fault detection by BFD.


HCIP-Datacom-Core Technology Training Material (VRRP Failover Mechanism).

Why the Statement is FALSE:

The statement claims that the backup device assumes the master role after the Master_Down_Timer expires when a fault is detected by BFD.

This is incorrect because BFD bypasses the need for the Master_Down_Timer to expire. The backup device transitions to the master role immediately upon BFD detecting a fault.

Conclusion:

The correct behavior of VRRP when associated with BFD is immediate role assumption by the backup device upon fault detection, bypassing the Master_Down_Timer.

Therefore, the statement is FALSE.



Which of the following statements is false about BFD?

  1. The asynchronous mode is the primary BFD operating mode.
  2. In asynchronous mode, two systems periodically exchange BFD Control packets at the negotiated interval. If one system does not receive any BFD Control packets from the other within the detection interval, the BFD session is declared down.
  3. The asynchronous mode does not support the echo function.
  4. In demand mode, after a BFD session is set up, the system does not periodically send BFD Control packets.

Answer(s): C

Explanation:

In asynchronous mode, two devices exchange BFD Control packets to monitor connectivity. However, this mode does support the echo function, which tests bidirectional paths by sending packets that loop back to the origin. This statement is incorrect. Demand mode, on the other hand, minimizes the control packet exchange, relying on periodic echo packets if configured. Huawei's BFD configuration guides emphasize these distinctions .






Post your Comments and Discuss Huawei H12-821_V1.0 exam with other Community members:

H12-821_V1.0 Exam Discussions & Posts