[Free] Download New Latest (November) Juniper JN0-522 Actual Tests Topic 1, Volume A part 04

Ensurepass

QUESTION 31  (Topic 1)

 

Which three options allow proper configuration of NAT-dst? (Choose three.)

 

A.

The default address book entry of “any” in the external zone

B.

An address book entry for the address to be translated in the internal zone

C.

A static route to the appropriate subnet using a private interface as the outbound interface

 

 

 

 

D.

The default address book entry of “any” in the internal zone

E.

A secondary address on one of the interfaces in the internal zone

 

Answer: BCE

 

 

QUESTION 32  (Topic 1)

 

See the Exhibit carefully:

 

Exhibit:

 

clip_image002

 

Why the packet is dropped?

 

A.

Route not configured

B.

Policy not configured

C.

Denied by policy 1005

D.

Interface down

 

Answer: B

 

 

QUESTION 33  (Topic 1)

 

By default from which hardware component is the startup copy of the ScreenOS loaded?

 

A.

TFTP Server

B.

Internal Flash

 

 

 

 

C.

PCMCIA card

D.

NVRAM

 

Answer: B

 

 

QUESTION 34  (Topic 1)

 

You are looking at the event log of the responding device and it says ” Rejected an initial Phase 1 packet from un unrecognized peer gateway”. What are three likely reasons for the failure? (Choose three.)

 

A.

The Peer ID is misconfigured

B.

The gateway address is misconfigured

C.

The preshare keys are mismatched

D.

The outgoing interface is misconfigured

E.

The default gateway is missing

 

Answer: ABD

 

 

QUESTION 35  (Topic 1)

 

Assuming factory default settings, which statement describes the minimum requirements for webui management access to the SSG 5?

 

A.

Connect a PC addressed on the 192.168.1.0 subnet to any interface, open a browser and access 192.168.1.1

B.

Connect a PC addressed on the 192.168.1.0 subnet to the highest numbered interface and open a browser and access 192.168.1.1

C.

Terminate the bootup sequence from the console device, open a browser on the console device and access 192.168.1.1

D.

Using the CLI, define an IP address on a physical interface, connect a PC to the interface and open a browser to the interface address

 

Answer: B

 

 

QUESTION 36  (Topic 1)

 

Which two steps are required for MIP configuration? (Choose two.)

 

 

 

 

 

A.

Configure the MIP Policy

B.

Define the MIP

C.

Define the MIP ports

D.

Configure the MIP interface

 

Answer: AB

 

 

QUESTION 37  (Topic 1)

 

Which statement is correct about tunnel interface?

 

A.

They can be unnumbered and used in policy-based translations if the interface is in route mode

B.

They need to be configured in the zone where the protected resources reside

C.

They can be unnumbered from any interface residing on the same virtual router as the protected resources

D.

They can have overlapping IP addresses

 

Answer: C

 

 

QUESTION 38  (Topic 1)< /font>

 

Which parameters can you modify on a predefined service?

 

A.

Source IP, Source port range, destination IP, destination port range and protocol

B.

Source Port, destination port and protocol

C.

Source Port range, destination port range and protocol

D.

Protocol timeout

 

Answer: D

 

 

QUESTION 39  (Topic 1)

 

Which two protocols are defined in the IPSec standard? (Choose two.)

 

A.

ESP

B.

IKE

 

 

 

 

C.

GRE

D.

AH

 

Answer: AD

 

 

QUESTION 40  (Topic 1)

 

Which ScreenOS CLI command is used to verify MIP operation?

 

A.

Get session

B.

Get nat

C.

Get translation

D.

Get mip

 

Answer: A

Free VCE & PDF File for Juniper JN0-522 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-522 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.