Juniper JN0-335 - Security, Specialist (JNCIS-SEC) Exam
Page: 1 / 21
Total 103 questions
Question #1 (Topic: Exam A)
Regarding static attack object groups, which two statements are true? (Choose two.)
A. Matching attack objects are automatically added to a custom group.
B. Group membership automatically changes when Juniper updates the IPS signature database.
C. Group membership does not automatically change when Juniper updates the IPS signature database.
D. You must manually add matching attack objects to a custom group.
Answer: CD
Question #2 (Topic: Exam A)
You are deploying a new SRX Series device and you need to log denied traffic.
In this scenario, which two policy parameters are required to accomplish this task? (Choose two.)
In this scenario, which two policy parameters are required to accomplish this task? (Choose two.)
A. session-init
B. session-close
C. deny
D. count
Answer: AC
Question #3 (Topic: Exam A)
You are asked to reduce the load that the JIMS server places on your corporate domain controller.
Which action should you take in this situation?
Which action should you take in this situation?
A. Connect JIMS to the RADIUS server.
B. Connect JIMS to the domain Exchange server.
C. Connect JIMS to the domain SQL server.
D. Connect JIMS to another SRX Series device.
Answer: A
Question #4 (Topic: Exam A)
Which two statements about unified security policies are correct? (Choose two.)
A. Unified security policies require an advanced feature license.
B. Unified security policies are evaluated after global security policies.
C. Traffic can initially match multiple unified security policies.
D. APPID results are used to determine the final security policy match.
Answer: CD
Question #5 (Topic: Exam A)
Click the Exhibit button.
Referring to the exhibit, which two statements describe the type of proxy used? (Choose two.)
Referring to the exhibit, which two statements describe the type of proxy used? (Choose two.)
A. forward proxy
B. client protection proxy
C. server protection proxy
D. reverse proxy
Answer: AB
