Juniper JN0-232 - Security, Associate (JNCIA-SEC) Exam
Page: 2 / 13
Total 64 questions
Question #6 (Topic: Exam A)
Which two settings does the host-inbound-traffic zone configuration parameter control? (Choose two.)
A. transit traffic
B. protocols on the zone's physical interfaces
C. exception traffic
D. protocols on the zone's logical interfaces
Answer: BD
Question #7 (Topic: Exam A)
Which two statements are correct about the Junos OS architecture? (Choose two.)
A. Junos is built using a collection of interdependent software processes.
B. Junos is built using independent software processes.
C. Restarting a single software process causes synchronization issues until other processes are restarted.
D. Individual software processes can be restarted without impacting the others.
Answer: BD
Question #8 (Topic: Exam A)
You plan to use unified security policies to identify and control nested HTTP applications.
In this scenario, which two actions must you perform on your SRX Series Firewall? (Choose two.)
In this scenario, which two actions must you perform on your SRX Series Firewall? (Choose two.)
A. Install the application identification (AppID) feature license on the SRX Series Firewall.
B. Include dynamic application objects in your security policies.
C. Create all the unified security policies in the global zone.
D. Disable the default security policy.
Answer: AB
Question #9 (Topic: Exam A)
What must also be enabled when using source NAT if the address pool is in the same subnet as the interface?
A. proxy ARP
B. dynamic DNS
C. static NAT
D. destination NAT
Answer: A
Question #10 (Topic: Exam A)
Which statement is correct about security policies?
A. Security policies are evaluated before screen in first path processing.
B. Zone-based security policies reference both source and destination zones.
C. Security policies are evaluated in both first path and fast path processing.
D. Zone-based security policies only apply to intra-zone traffic.
Answer: B
