[Free] Download New Latest (November) Juniper JN0-521 Actual Tests Topic 0 part 03

Ensurepass

QUESTION 21  (Topic 0)

 

What is the purpose of the “Manage-IP” address on a ScreenOS device?

 

A.

It defines a list of addresses that are trusted to perform management on the ScreenOS device.

B.

It is used in policy rules to determine which device is allowed to manage the ScreenOS device.

C.

It is the address that an external device uses to gain management access to a ScreenOS device.

D.

It defines a list of device addresses that can manage the ScreenOS device without being authenticated prior to session establishment.

 

Answer: C

 

 

QUESTION 22  (Topic 0)

 

Which ScreenOS CLI policy statement keyword would be used to enable traffic counters?

 

A.

count

B.

traffic

C.

counter

D.

counters

 

Answer: A

 

 

QUESTION 23  (Topic 0)

 

You have created a route-based VPN in your ScreenOS device. When the remote device

 

 

 

 

tries to connect you see the following message in your event log, “No policy exists for the proxy id received”. Which two would cause this to occur? (Choose two.)

 

A.

a proxy-id conflict

B.

an unbound tunnel interface

C.

the remote device is a policy-based VPN

D.

the tunnel interface is configured in a different zone than the physical interface

 

Answer: AC

 

 

QUESTION 24  (Topic 0)

 

Which ScreenOS CLI commands would be used to enable traffic logging in policy edit mode?

 

A.

set log

B.

set logging

C.

set traffic-log

D.

set policy traffic-log

 

Answer: A

 

 

QUESTION 25  (Topic 0)

 

What are three major concerns when sending private data over a public medium? (Choose three.)

 

A.

integrity

B.

authority

C.

capacity

D.

confidentiality

E.

authentication

 

Answer: ADE

 

 

QUESTION 26  (Topic 0)

 

While looking at your policies using the WebUI, you notice that the green permit policy has turned blue. What would cause this?

 

 

 

 

 

A.

The policy is currently inactive.

B.

The policy is configured to support a MIP.

C.

The policy is configured for unidirectional NAT.

D.

The policy is currently passing traffic beyond its traffic limits and is in alarm state.

 

Answer: C

 

 

QUESTION 27  (Topic 0)

 

Click the Exhibit button.

 

In the exhibit, which interface would be used to forward traffic to host 1.1.7.5?

 

clip_image002

 

A.

e0/1

B.

e0/2

C.

e0/3

D.

e0/4

 

Answer: C

 

 

QUESTION 28  (Topic 0)

 

Your server at 10.1.2.50 is behind the ScreenOS device. You want to allow access to users from the Internet, but not allow the server to initiate sessions. The interface connected to the network is on a /30 subnet and is in the “Internet” zone. Your ISP has provided you with

 

 

 

 

another /30 public subnet you can use for NAT. Which form of NAT would you use?

 

A.

VIP

B.

MIP

C.

NAT-dst

D.

NAT-src

 

Answer: C

 

 

QUESTION 29  (Topic 0)

 

Which ScreenOS CLI policy statement keyword would enable a policy only during specified times, days, and/or dates?

 

A.

at

B.

calendar

C.

schedule

D.

scheduler

 

Answer: C

 

 

QUESTION 30  (Topic 0)

 

What is the default mode for an interface in the trust zone?

 

A.

NAT

B.

route

C.

Layer 2

D.

Layer 3

E.

transparent

 

Answer: A

 

Free VCE & PDF File for Juniper JN0-521 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-521 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.