Page: 1
/ 13
Total 65 questions
Click the Exhibit button.
While configuring the SRX345, you review the MACsec connection between devices and note that it is not working.
Referring to the exhibit, which action would you use to identify problem?
- A. Verify that the formatting settings are correct between the devices and that the software supports the version of MACsec in use
- B. Verify that the connectivity association key and the connectivity association key name match on both devices
- C. Verify that the transmission path is not replicating packets or correcting frame check sequence error packets
- D. Verify that the interface between the two devices is up and not experiencing errors
Answer : B
Reference:
https://www.juniper.net/documentation/en_US/junos/topics/reference/command-summary/show-security-mka-statistics.html
Click the Exhibit button.
You have recently committed the IPS policy shown in the exhibit. When evaluating the expected behavior, you notice that you have a session that matches all the rules in your IPS policy.
In this scenario, which action would be taken?
- A. drop packet
- B. no-action
- C. close-client-and-server
- D. ignore-connection
Answer : B
Reference:
https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-idp-policy-rules-and-rulebases.html
Your organization has multiple Active Directory domains to control user access. You must ensure that security policies are passing traffic based upon the usersג€™ access rights.
What would you use to assist your SRX Series devices to accomplish this task?
- A. JATP Appliance
- B. JIMS
- C. JSA
- D. Junos Space
Answer : B
Reference:
https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-user-auth-intergrated-user-firewall-overview.html
You are asked to set up notifications if one of your collector traffic feeds drops below 100 kbps.
Which two configuration parameters must be set to accomplish this task? (Choose two.)
- A. Set a traffic SNMP trap on the JATP appliance
- B. Set a logging notification on the JATP appliance
- C. Set a general triggered notification on the JATP appliance
- D. Set a traffic system alert on the JATP appliance
Answer : BD
You have configured static NAT for a webserver in your DMZ. Both internal and external users can reach the webserver using the webserverג€™s IP address.
However, only internal users can reach the webserver using the webserverג€™s DNS name. When external users attempt to reach the webserver using the webserverג€™s DNS name, an error message is received.
Which action would solve this problem?
- A. Disable Web filtering
- B. Use DNS doctoring
- C. Modify the security policy
- D. Use destination NAT instead of static NAT
Answer : B
Reference:
https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-dns-algs.html
31 days access 