[Free] Download New Latest (November) Juniper JN0-522 Actual Tests Topic 2, Volume B part 04

Ensurepass

QUESTION 105  (Topic 2)

 

In the packet forwarding decision process, how is the second packet handled differently than the first in a series of allowed interzone packets?

 

A.

The second packet is forwarded without a sanity check

B.

The second packet is checked against the policy table

C.

The second packet causes an ARP query

D.

The second packet is forwarded without checking the route table

 

Answer: D

 

 

QUESTION 106  (Topic 2)

 

Which command can you use to view the log of IKE negotiations and results?

 

A.

get event type 536

B.

get ike cookie

C.

get sa active

D.

debug ike basic

 

Answer: A

 

 

QUESTION 107
 (Topic 2)

 

 

 

 

Which two statements are correct regarding tasks that can be performed only by the root administrator? (Choose two.)

 

A.

Create Virtual systems

B.

Reset command

C.

Create local administrators

D.

Deactivate asset recovery

 

Answer: CD

 

 

QUESTION 108  (Topic 2)

 

A ScreenOS firewall has one interface in the user zone and one interface in the server zone. Both interfaces are addressed and active. The configured policy allows user traffic from the user zone to the FTP server in the servers zone but the traffic does not cross the firewall from the client to the server. What is the most likely problem with the firewall?

 

A.

The ScreenOS firewall does not have a route defined to the FTP server’s subnet

B.

The ALG option on the ScreenOS firewall has not been enabled for FTP traffic

C.

The ScreenOS firewall has no physical connection to the fTP server

D.

The ScreenOS firewall does not have a route defined to the FTP client’s subnet

 

Answer: A

 

 

QUESTION 109  (Topic 2)

 

Which three must a policy contain? (Choose three.)

 

A.

Service

B.

Policy name

C.

Application

D.

Address

E.

Action

 

Answer: ADE

 

 

QUESTION 110  (Topic 2)

 

 

 

 

By default, where are changes stored when a save command is issued from the CLI during a management session?

 

A.

NVRAM

B.

internal flash

C.

PCMCIA card

D.

Compact Flash Card

 

Answer: B

 

 

QUESTION 111  (Topic 2)

 

Which three describe a loopback interface? (Choose three.)

 

A.

It is always on.

B.

It is always in the null zone.

C.

It is used for device management.

D.

It can only have private IP addresses.

E.

It is reachable using any physical interface.

 

Answer: ACE

 

 

QUESTION 112  (Topic 2)

 

Click the Exhibit button.

 

In the exhibit, which routing command would allow host A to communicate with host D? (Note:

 

Assume a route from the SSG 20 to host A’s subnet already exists.)

 

 

 

 

 

clip_image002

 

A.

set route 200.5.5.0/24 interface e0/4

B.

set route 143.45.56.0/24 interface e0/4

C.

set route 0.0.0.0/0 int e0/4 gateway 143.45.56.254

D.

set route 200.5.5.0/24 gateway 143.45.56.254 int e0/4

 

Answer: C

 

 

QUESTION 113  (Topic 2)

 

Which three are part of the configuration of an IKE Phase 1 gateway? (Choose three.)

 

A.

Preshare key

B.

Security zone

C.

Negotiation mode

D.

Outgoing interface

E.

Diffie-Hellman group number for PFS

 

Answer: ACD

 

 

QUESTION 114  (Topic 2)

 

What is the purpose of the “Permitted IP” address on a ScreenOS device?

 

 

 

 

 

A.

It is used in policy rules to determine which user traffic is allowed through the ScreenOS device

B.

It defines a list of addresses that are trusted to perform management on the ScreenOS device

C.

It is the address that an external device uses to gain management access to a ScreenOS device

D.

It defines which range of addresses that can access devices connected to the ScreenOS device

 

Answer: B

 

Free VCE & PDF File for Juniper JN0-522 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-522 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.