[Free] Download New Latest (November) Juniper JN0-532 Actual Tests 41-50

Ensurepass

QUESTION 41

Click the Exhibit button.

 

clip_image002

 

In the exhibit, you need to provide communication from the hosts connected to the SSG 5 to the servers connected to the SSG 550 using a VPN, but the sites use the same

 

 

 

 

RFC1918 address space.

 

Which three configuration elements will allow this communication? (Choose three.)

 

A.

Configure a DIP on e0/0 on the SSG 5.

B.

Configure a policy from trust to untrust on the SSG 5.

C.

Configure a DIP on the tunnel interface on the SSG 5.

D.

Configure a policy from trust to untrust on the SSG 550 using a MIP.

E.

Configure a policy from untrust to trust on the SSG 550 using a MIP.

 

Answer: BCE

 

 

QUESTION 42

Click the Exhibit button.

 

clip_image004

 

In the exhibit, the hub and spoke VPN uses route-based VPNs.

 

What is the minimum number of policy rules required to establish full, bi-directional communications between all locations?


 

A.

0

B.

3

C.

4

D.

6

 

Answer: A

 

 

 

 

 

QUESTION 43

Click the Exhibit button.

 

clip_image006

 

In the exhibit, what would correct the proxy-ID mismatch?

 

A.

The 10.1.0.0 address book entry on the initiator needs to be changed to a 32-bit mask.

B.

The 10.50.0.0 address book entry on the initiator needs to be changed to a 30-bit mask.

C.

The 10.50.0.0 address book entry on the responder needs to be changed to a 24-bit mask.

D.

The 10.50.0.0 address book entry on the responder needs to be changed to a 32-bit mask.

 

Answer: C

 

 

QUESTION 44

Click the Exhibit button.

 

 

 

 

 

clip_image008

 

In the exhibit, the SSG 5 is using a route-based VPN configuration.

 

Which two are required on the SSG 5 to successfully establish a VPN? (Choose two.)

 

A.

proxy-id

B.

peer-id of 1.1.2.5

C.

local-id of 1.1.1.10

D.

IKE Phase 1 aggressive mode

 

Answer: AB

 

 

QUESTION 45

Click the Exhibit button.

 

clip_image010

 

 

 

 

In the exhibit, what are two explanations for the output shown? (Choose two.)

 

A.

The nsp card needs reseating.

B.

The routing protocol is in holddown.

C.

The next hop device is failing to respond.

D.

The routing table requires reconfiguration.

 

Answer: CD

 

 

QUESTION 46

Which statement about integrated Web filtering is true?

 

A.

You must configure a category profile.

B.

You must add categories to the black list and white list.

C.

User-defined categories are searched after pre-defined categories.

D.

The local cache contains the black list, white list, and all URLs in the user-defined categories.

 

Answer: D

 

 

QUESTION 47

When enabling OSPF over a hub and spoke VPN, what must you configure on the hub device tunnel interface to allow spokes to receive routing updates?

 

A.

Point to multipoint

B.

Disable split-horizon

C.

Enable demand circuit

D.

Enable passive interface

 

Answer: A

 

 

QUESTION 48

Which two are valid actions for policy-based routing? (Choose two.)

 

 

 

 

 

A.

next hop only

B.

next interface only

C.

next hop gateway only

D.

next hop virtual router only

 

Answer: AB

 

 

QUESTION 49

Click the Exhibit button.

 

clip_image008[1]

 

In the exhibit, which two must you configure on the SSG 550 to successfully establish a VPN?

 

A.

Default route

B.

Local-id of 1.1.2.5

C.

Peer-id of 1.1.1.10

D.

Tunnel interface associated with VLAN1

 

Answer: AC

 

 

QUESTION 50

Which two methods can the ScreenOS device use to assign traffic to a VSYS? (Choose two.)

 

A.

IP-based classification

B.

policy-based classification

C.

interface-based classification

D.

VLAN tag-based classification

 

 

 

 

 

Answer: AC

 

Free VCE & PDF File for Juniper JN0-532 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-532 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.