[Free] Download New Latest (November) Juniper JN0-522 Actual Tests Topic 2, Volume B part 02

Ensurepass

QUESTION 85  (Topic 2)

 

When performing an image upgrade using the CLI, which three locations would be a source for this image? (Choose three.)

 

A.

TFTP Server

B.

PC local disk

C.

FTP Server

D.

Compact Flash Card

E.

Internal Flash

 

Answer: ADE

 

 

QUESTION 86  (Topic 2)

 

 

 

 

Click the Exhibit button.

 

In the exhibit, if you configure NAT-src on interface e0/4, and specify a DIP with address

 

143.45.56.31, which address will be used as the outbound source address of packets destined for the Internet?

 

clip_image002

 

A.

143.45.56.1

B.

143.45.56.31

C.

143.45.56.254

D.

The original source address

 

Answer: B

 

 

QUESTION 87  (Topic 2)

 

Which two statements are accurate about tunnel mode? (Choose two.)

 

A.

In tunnel mode the IPSec header precedes the original IP header.

B.

Tunnel mode is required in IPSec networks where ESP packets are used.

C.

Tunnel mode is the default mode of operation for IPSec in ScreenOS devices.

D.

Tunnel mode can only be used when operating between IPSec security gateways.

 

Answer: AC

 

 

 

 

 

QUESTION 88  (Topic 2)

 

Click the Exhibit button.

 

Which command will allow you to configure the Ethernet interface to have the IP address shown

 

in the exhibit?

 

clip_image004

 

A.

set int e0/0 ip 1.1.1.250

B.

set int e0/0 ip 1.1.1.250/24

C.

set int e0/0 zone untrust ip 1.1.1.250

D.

set int e0/0 zone untrust ip 1.1.1.250/24

 

Answer: B

 

 

QUESTION 89  (Topic 2)

 

Which process describes how an addressed physical interface is moved into a Layer 2 zone?

 

A.

Remove the interface from the L3 zone such as Trust and place it into a L2 zone such as V1-trust

B.

Remove the address from the interface, remove the interface from the L3 zone and then place interface in the L2 zone

C.

Place the required interface into L2 zones such as V1-trust, V1-untrust

D.

Place the required interface into the VLAN zone

 

Answer: B

 

 

 

 

 

QUESTION 90  (Topic 2)

 

What is the purpose of the VLAN1 interface?

 

A.

It provides the ScreenOS device with a routable IP address while operating in route mode

B.

It provides an interface that can be used to remotely manage the ScreenOS device while operating in transparent mode

C.

It provides policy-based NAT for 802.1Q VLANs

D.

It provides an interface that can be used with 802.1Q VLANs in transparent mode

 

Answer: B

 

 

QUESTION 91  (Topic 2)

 

What is the default mode for an interface in the trust zone?

 

A.

Transparent

B.

Layer 3

C.

Layer 2

D.

Nat

E.

Route

 

Answer: D

 

 

QUESTION 92  (Topic 2)

 

Which two configuration components are different when configuring a route-based VPN gateway rather than a policy-based VPN gateway? (Choose two.)

 

A.

Remote IKE gateway IP address

B.

Outgoing interface

C.

Binding a tunnel interface

D.

Proxy-id information

 

Answer: CD

 

 

 

 

 

QUESTION 93  (Topic 2)

 

Click the Exhibit button.

 

Which ScreenOS CLI command would allow all policies in the exhibit to match traffic?

 

clip_image006

 

A.

Set policy 4 before 1

B.

Exec policy 4 before 1

C.

Insert policy 4 before 1

D.

Set policy move 4 before 1

 

Answer: D

 

 

QUESTION 94  (Topic 2)

 

In the flow decision process, the system has found a route entry matching the packet destination

 

IP. Which pair will identify the policy that is applied to this packet?

 

A.

Source and destination MAC

B.

Source and destination interface

C.

Source and destination TCP port

D.

Source and destination IP address

 

Answer: B

 

Free VCE & PDF File for Juniper JN0-522 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-522 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.