[Free] Download New Latest (November) Juniper JN0-332 Actual Tests Topic 5, Volume E part 03

Ensurepass

QUESTION 421  (Topic 5)

 

Referring to the exhibit, which two statements are correct about IPsec configuration? (choose two)

 

A.

IKE Phase 2 establishes when payload traffic flows

B.

IKE Phase 2 establishes immediately

C.

Protocol ESP is used

D.

Protocol AH is used

 

Answer: BC

 

 

QUESTION 422  (Topic 5)

 – Exhibit ?

 

clip_image002

 – Exhibit —

 

Click the Exhibit button.

 

 

 

 

You have configured antispam on your SRX Series device as shown in the exhibit.

 

Assuming the antispam profile has been properly applied, what happens when an e-mail message arrives at the SRX device from bob@domain-xyz.net at IP address 150.10.10.10?

 

A.

The message matches the whitelist and is forwarded to the destination.

B.

The message matches the blacklist and is blocked.

C.

The message matches the blacklist and is forwarded to the destination with “SPAM:” automatically appended to the beginning of the e-mail subject line.

D.

The message matches both lists and is blocked because the SRX device defaults to the more restrictive setting.

 

Answer: B

 

 

QUESTION 423  (Topic 5)

 

Which two types of attacks does the SRX Series device identify using screens? (Choose two)

 

A.

Cross site scripting

B.

Reconnaissance

C.

Phishing

D.

Suspicious packets

 

Answer: BD

 

 

QUESTION 424  (Topic 5)

 

A packet that belongs to an existing session enters your SRX Series device. Your SRX Series device is operating in its default mode. Which two statements about ingress processing are true? (Choose two)

 

A.

The packet is subject to shaping operations.

B.

The packet i
s subject to stateless filters.

C.

The packet is processed through the fast path.

D.

The packet is processed through the first-packet path.

 

Answer: BC

 

 

 

 

 

QUESTION 425  (Topic 5)

 

Which two statements are true regarding security policies on an SRX Series device? (Choose two)

 

A.

Non-global policies have a higher priority than global policies.

B.

Global policies have a higher priority than non-global policies.

C.

You cannot use a mix of global security policies and non-global polices on the same device.

D.

You can use a mix of global polices and non-global policies on the same device.

 

Answer: AD

 

 

QUESTION 426  (Topic 5)

 

To which depth of compressed (Zip) files can the Junos full antivirus feature scan?

 

A.

1 layer of compression

B.

2 layer of compression

C.

3 layer of compression

D.

4 layer of compression

 

Answer: D

 

 

QUESTION 427  (Topic 5)

 

A PC in the trust zone is trying to ping a host in the untrust zone. Referring to the exhibit, which type of NAT is configured?

 

clip_image004

 

A.

source NAT

B.

destination NAT

C.

static NAT

 

 

 

 

D.

NAT pool

 

Answer: A

 

 

QUESTION 428  (Topic 5)

 – Exhibit —

 

[edit security utm]

 

user@host# show

 

custom-objects {

 

url-pattern {

 

permit {

 

value http://www.domain-abc.net;

 

}

 

deny {

 

value http://www.domain-abc.net/movies;

 

}

 

}

 

custom-url-category {

 

whitelist {

 

value permit;

 

}

 

blacklist {

 

value deny;

 

}

 

}

 

}

 

 

 

 

feature-profile {

 

web-filtering {

 

url-whitelist whitelist;

 

url-blacklist blacklist;

 

type juniper-local;

 

juniper-local {

 

profile profileA {

 

default block;

 

custom-block-message “Website access not permitted”;

 

}

 

}

 

}

 

}

 – Exhibit —

 

Click the Exhibit button.

 

Your SRX Series device includes the Web filtering configuration shown in the exhibit.

 

Assuming the Web filtering profile has been properly applied, what hap
pens when a user attempts to access the Web site www.juniper.net through the SRX device?

 

A.

The HTTP request is blocked and the user’s Web browser eventually times out.

B.

The HTTP request is blocked and a message is sent back to the user.

C.

The HTTP request is intercepted and the URL is sent to the Websense server. The SRX device permits or blocks the request based on the information it receives back from the server.

D.

The HTTP request is permitted and forwarded to the Web server.

 

Answer: B

 

 

QUESTION 429  (Topic 5)

 

 

 

 

What are two valid zones available on an SRX Series device? (Choose two)

 

A.

Security zones

B.

Policy zones

C.

Transit zones

D.

Functional zones

 

Answer: AD

 

 

QUESTION 430  (Topic 5)

 

What is an example of single address translation (one-to-one)?

 

A.

Destination NAT with no pools

B.

Source NAT with no pools

C.

Interface source NAT

D.

Static NAT

 

Answer: D

 

Free VCE & PDF File for Juniper JN0-332 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-332 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.