[Free] Download New Latest (November) Juniper JN0-522 Actual Tests Topic 1, Volume A part 01

Ensurepass

QUESTION 1  (Topic 1)

 

Which statement about multi-cell policies is true?

 

A.

You can apply the negate option to services

B.

You can only use the WebUI to configure multi-cell policies

C.

You can apply the negate option to a source address

D.

You can add up to 32 different addresses or services per cell

 

Answer: C

 

 

QUESTION 2  (Topic 1)

 

When configuration a ScreenOS device in transparent mode, what is required to forward traffic?

 

A.

The VLAN1 interface must have a manage-ip value set

B.

The ScreenOS device must have the transparent option set under Admin options

C.

There must be at least one policy configured

D.

The VLAN1 interface must have an IP address configured

 

Answer: C

 

 

QUESTION 3  (Topic 1)

 

See the Exhibit:

 

Exhibit:

 

 

 

 

 

clip_image002

 

For the SSG 20 to have full reachability to all host in the network, how many static routes need to be added?

 

A.

5

B.

3

C.

4

D.

2

 

Answer: C

 

 

QUESTION 4  (Topic 1)

 

Which three options allow proper configuration of NAT-dst? (Choose three.)

 

A.

The default address book entry of “any” in the external zone

B.

A static route to the appropriate subnet using a private interface as the outbound interface

C.

An address book entry for the address to be translated in the internal zone

D.

The default address book entry of “any” in the internal zone

E.

A secondary address on one of the interfaces in the internal zone

 

Answer: BCE

 

 

 

 

 

QUESTION 5  (Topic 1)

 

Your VPN tunnel does not pass traffic. You run the get ike cookie command and discover that there is no cookie. Which two should be verified? (Choose two.)

 

A.

Selected quick mode encryption algorithms

B.

Routes

C.

Phase 1 configuration options

D.

Phase 2 configuration options

 

Answer: BC

 

 

QUESTION 6  (Topic 1)

 

While looking at your policies using the WebUI, you notice that the green permit policy has turned blue what would cause this?

 

A.

The policy is currently passing traffic beyond its traffic limits and is in alarm state

B.

The policy is currently inactive

C.

The policy is configured for unidirectional NAT

D.

The policy is configured to support a MIP

 

Answer: C

 

 

QUESTION 7  (Topic 1)

 

Which statement accurately describes the “config rollaback” feature?

 

A.

Once the “Config rollback” feature is enabled, it allows the administrator to re-apply a locked configuration file from a separate area in flash

B.

Once the “Config rollback” feature is enabled, it allows the administrator to re-apply a previously saved configuration file from the flash

C.

The “Config rollback” feature is enabled by default, it allows the administrator to re-reply a previously saved configuration file from flash

D.

Once the “Config rollback” feature is enabled, it allows the administrator to revert to the prior ScreenOS image or configuration file in event an upgrade operation aborts

 

Answer: A

 

 

 

 

 

QUESTION 8  (Topic 1)

 

What is the purpose of the “Permitted IP” address on a ScreenOS device?

 

A.

It is used in policy rules to determine which user traffic is allowed through the ScreenOS device

B.

It defines a list of addresses that are trusted to perform management on the ScreenOS device

C.

It is the address that an external device uses to gain management access to a ScreenOS device

D.

It defines which range of addresses that can access devices connected to the ScreenOS device

 

Answer: B

 

 

QUESTION 9  (Topic 1)

 

Which command is used to avoid IP fragmentation when configuration IPSec on a ScreenOS device?

 

A.

Set flow

B.

Set mss-flow size

C.

Set tcp-mss flow

D.

Set flow tcp-mss

 

Answer: D

 

 

QUESTION 10  (Topic 1)

 

See the Exhibit:

 

Exhibit:

 

clip_image004

 

Which command generated the output shown in the exhibit?

 

 

 

 

 

A.

Get route

B.

Get route ip

C.

Trace-rotue

D.

Get interface

 

Answer: B

 

Free VCE & PDF File for Juniper JN0-522 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-522 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.