[Free] Download New Latest (November) Juniper JN0-400 Actual Tests Topic 0 part 01

Ensurepass

QUESTION 1  (Topic 0)

 

Click the Exhibit button.

 

In the exhibit, which command would have produced this output?

 

clip_image002

 

A.

sctop “p” option

B.

scio policy list s0

C.

scio policy list vr0

D.

scio agentstats policy list

 

Answer: B

 

 

QUESTION 2  (Topic 0)

 

Which statement is true about packet capture in the IDP sensor?

 

A.

You can only log packets after an attack packet.

B.

Packet capture records all packets flowing through the sensor.

C.

You can configure a particular number of packets to capture before and after an attack.

D.

The Log Viewer has no indication of whether a log message has associated packet captures.

 

Answer: C

 

 

QUESTION 3  (Topic 0)

 

Click the Exhibit button.

 

In the exhibit, which rule base would have generated the log message?

 

 

 

Juniper JN0-541 : Practice Test

 

clip_image004

 

A.

backdoor

B.

SYN protector

C.

traffic anomaly

D.

network honeypot

 

Answer: C

 

 

QUESTION 4  (Topic 0)

 

On a sensor, which command will indicate if log messages are being sent to Security Manager?

 

< tr style="mso-yfti-irow: 2">

A.

scio vr list

B.

scio getsystem

C.

service idp status

D.

scio agentstats display

 

Answer: D

 

 

QUESTION 5  (Topic 0)

 

Assume that Enterprise Security Profiler (ESP) has already captured data for your network. You want to view traffic that does not match the following protocols: HTTP, HTTPS, DNS.

Which steps must you perform?

 

A.

Under the Violation Viewer tab, create a filter to show only tracked hosts.

B.

Under the Violation Viewer tab, create a violation object, select that object, and then click Apply.

C.

Under the Violation Viewer tab, create a permitted object, select that object, and then click Apply.

D.

Under the Application View tab, create a permitted object, select that object, and then click Apply.

 

Answer: C

Juniper JN0-541 : Practice Test

 

 

QUESTION 6  (Topic 0)

 

What does the action “drop packet” instruct the sensor to do?

 

A.

Drop all packets from the attacker’s IP address.

B.

Drop the specific session containing the attack pattern.

C.

Drop only the specific packet matching the attack object.

D.

Drop any packet matching this source IP, destination IP, and service.

 

Answer: C

 

 

QUESTION 7  (Topic 0)

 

Which two statements are true? (Choose two.)

 

A.

A virtual circuit is not a forwarding interface.

B.

A virtual circuit is a communications path in and out of the sensor.

C.

Virtual circuits on a sensor can be listed using the command sctop vc list.

D.

In transparent mode, a virtual circuit maps one-to-one with a physical interface.

 

Answer: BD

 

 

QUESTION 8  (Topic 0)

 

Which two will change the management IP of an IDP sensor? (Choose two.)

 

A.

Use the ACM to change the management IP address.

B.

Use ifconfig to change the management IP address.

C.

Edit the existing IDP sensor object in Security Manager GUI and change the IP address.

D.

Delete the IDP sensor object from Security Manager and re-add the sensor with the new IP address.

 

Answer: AC

 

 

QUESTION 9  (Topic 0)

 

 

 

Juniper JN0-541 : Practice Test

In which three situations would you create a compound attack object? (Choose three.)

 

A.

When attack objects must occur in a particular order.

B.

When one of the attack objects is a protocol anomaly.

C.

You have at least two attack objects that define a single attack.

D.

When the pattern needs to be defined using a stream 256 context.

E.

When the pattern “@@@@@@@@” and context “ftp-get-filename” completely define the attack.

 

Answer: ABC

 

 

QUESTION 10  (Topic 0)

 

Click the Exhibit button.

 

In the exhibit, which SYN protector mode is the IDP using?

 

clip_image006

 

A.

relay

B.

passive

C.

protective

D.

handshake

 

Answer: B

 

Free VCE & PDF File for Juniper JN0-400 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-400 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.