[Free] Download New Latest (November) Juniper JN0-332 Actual Tests Topic 1, Volume A part 02

Ensurepass

QUESTION 11  (Topic 1)

 

Which three components can be leveraged when defining a local whitelist or blacklist for antispam on a branch SRX Series device? (Choose three.)

 

A.

spam assassin filtering score

B.

sender country

C.

sender IP address

D.

sender domain

E.

sender e-mail address

 

 

 

 

 

Answer: CDE

 

 

QUESTION 12  (Topic 1)

 

Which URL database do branch SRX Series devices use when leveraging local Web filtering?

 

A.

The SRX Series device will download the database from an online repository to locally inspect HTTP traffic for Web filtering.

B.

The SRX Series device will use an offline database to locally inspect HTTP traffic for Web filtering.

C.

The SRX Series device will redirect local HTTP traffic to an external Websense server for Web filtering.

D.

The SRX Series administrator will define the URLs and their associated action in the local database to inspect the HTTP traffic for Web filtering.

 

Answer: D

 

 

QUESTION 13  (Topic 1)

 

Which three firewall user authentication objects can be referenced in a security policy? (Choose three.)

 

A.

access profile

B.

client group

C.

client

D.

default profile

E.

external

 

Answer: ABC

 

 

QUESTION 14  (Topic 1)

 

Which three advanced permit actions within security policies are valid? (Choose three.)

 

A.

Mark permitted traffic for firewall user authentication.

B.

Mark permitted traffic for SCREEN options.

 

 

 

 

C.

Associate permitted traffic with an IPsec tunnel.

D.

Associate permitted traffic with a NAT rule.

E.

Mark permitted traffic for IDP processing.

 

Answer: ACE

 

 

QUESTION 15  (Topic 1)

 

The Junos OS blocks an HTTP request due to a Websense server response. Which form of Web filtering is being used?

 

A.

redirect Web filtering

B.

integrated Web filtering

C.

categorized Web filtering

D.

local Web filtering

 

Answer: A

 

 

QUESTION 16  (Topic 1)

 

Which CLI command do you use to block MIME content at the [edit security utm feature- profile] hierarchy?

 

A.

set content-filtering profile <name> permit-command block-mime

B.

set content-filtering profile <name> block-mime

C.

set content-filtering block-content-type <name> block-mime

D.

set content-filtering notifications block-mime

 

Answer: B

 

 

QUESTION 17  (Topic 1)

 

Regarding content filtering, what are two pattern lists that can be configured in the Junos OS? (Choose two.)

 

A.

protocol list

B.

MIME

 

 

 

 

C.

block list

D.

extension

 

Answer: BD

 

 

QUESTION 18  (Topic 1)

 

After applying the policy-rematch statement under the security policies stanza, what would happen to an existing flow if the policy source address or the destination address is changed and committed?

 

A.

The Junos OS drops any flow that does not match the source address or destination address.

B.

All traffic is dropped.

C.

All existing sessions continue.

D.

The Junos OS does a policy re-evaluation.

 

Answer: D

 

 

QUESTION 19  (Topic 1)

 

Click the Exhibit button.

 

clip_image002

 

[A] establishes an IPsec tunnel with [B]. The NAT device translates the IP address 1.1.1.1 to 2.1.1.1.On which port is the IKE SA established?

 

A.

TCP 500

B.

UDP 500

C.

TCP 4500

D.

UDP 4500

 

Answer: D

 

 

 

 

 

QUESTION 20  (Topic 1)

 

Which Web-filtering technology can be used at the same time as integrated Web filtering on a single branch SRX Series device?

 

A.

Websense redirect Web filtering

B.

local Web filtering (blacklist or whitelist)

C.

firewall user authentication

D.

ICAP

 

Answer: B

 

Free VCE &amp
; PDF File for Juniper JN0-332 Actual Tests


Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-332 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.