Juniper JN0-336 - Security, Specialist (JNCIS-SEC) Exam
Page: 1 / 13
Total 64 questions
Question #1 (Topic: Exam A)
In Juniper high availability (HA) SRX Series device implementations, which interface will be used to exchange session state, configuration files, and ensure session continuity across nodes using the proprietary Trivial Network Protocol?
A. fab
B. fxp0
C. fxp1
D. swfab
Answer: A
Question #2 (Topic: Exam A)
What are two ways that Juniper Secure Connect provides flexibility in connection and authentication methods while ensuring that remote users are able to securely access company servers and cloud resources? (Choose two.)
A. It uses a persistent agent.
B. It uses Kerberos authentication.
C. It uses external authentication.
D. It uses an SSL VPN.
Answer: CD
Question #3 (Topic: Exam A)
What are three policy types available in Junos Space Security Director? (Choose three.)
A. device
B. local
C. group
D. universal
E. global
Answer: BDE
Question #4 (Topic: Exam A)
You are asked to configure a cluster between SRX1 and SRX2.
Which two commands must be used to accomplish this task? (Choose two.)
Which two commands must be used to accomplish this task? (Choose two.)
A. user@SRX2# set chassis cluster cluster-id 0 node 1
B. user@SRXl> set chassis cluster cluster-id 1 node 0
C. user@SRX2> set chassis cluster cluster-id 1 node 1
D. user@SRXl# set chassis cluster cluster-id 0 node 2
Answer: BC
Question #5 (Topic: Exam A)
You need to secure communications from a mobile command center which uses a 5G mobile ISP behind CGNAT to an SRX Series Firewall at headquarters.
Which two actions should be performed on the SRX Series Firewall in this scenario? (Choose two.)
Which two actions should be performed on the SRX Series Firewall in this scenario? (Choose two.)
A. Configure the IPsec VPN to use NAT-T.
B. Configure the IPsec VPN to use IKEv1 aggressive mode.
C. Configure the IPsec VPN to use IKEv2 aggressive mode.
D. Configure the IPsec VPN to use DPD.
Answer: AD
