[Free] Download New Latest (November) Juniper JN0-541 Actual Tests Topic 0 part 02

Ensurepass

QUESTION 11  (Topic 0)

 

Which statement about the Enterprise Security Profiler (ESP) is true?

 

A.

The ESP is started by default in IDP version 4.0 or newer.

B.

The ESP must be configured and started using the IDP sensor CLI before it is used.

 

 

 

 

C.

The administrator must manually initiate Security Manager to sensor polling to retrieve ESP data.

D.

The ESP must be configured and started on each IDP sensor manually, using the Security Manager GUI.

 

Answer: D

 

 

QUESTION 12  (Topic 0)

 

Which rule base would detect netcat?

 

A.

exempt

B.

backdoor

C.

SYN protector

D.

traffic anomalies

 

Answer: B

 

 

QUESTION 13  (Topic 0)

 

Click the Exhibit button.

 

In the exhibit, which sensor command would have produced this display?

 

clip_image002

 

A.

scio getsystem

B.

sctop “t” option

C.

sctop “s” option

D.

scio policy list s0

 

Answer: C

 

 

 

QUESTION 14  (Topic 0)

 

Which type of cable do you use for a console connection to an IDP sensor?

 

A.

CAT 5 cable

B.

null-modem cable

C.

Juniper proprietary cable

D.

straight-through serial cable

 

Answer: B

 

 

QUESTION 15  (Topic 0)

 

After you enable alerts for new hosts that are detected by the Enterprise Security Profiler, where do you look in Security Manager to see those alerts?

 

A.

Log Viewer > Profiler Log

B.

Security Monitor > Profiler > Violation Viewer tab

C.

Security Monitor > Profiler > Network Profiler tab

D.

Security Monitor > Profiler > Application Profiler tab

 

Answer: A

 

 

QUESTION 16  (Topic 0)

 

Within the SYN protector rule base, what is the function of relay action?

 

A.

It will not monitor incoming SYN requests.

B.

It will relay all SYN connections to a fake IP.

C.

It will monitor new connections to a protected server, but not prevent them.

D.

It will create a session with the server only if the client completes the three-step TCP handshake with the sensor.

 

Answer: D

 

 

QUESTION 17  (Topic 0)

 

 

 

 

How does the IDP sensor emulate a honeypot?

 

A.

When the sensor receives a TCP SYN request, the sensor will reply with a SYN/ACK.

B.

The sensor will reply to TCP connection requests, and emulate the requested protocol.

C.

The sensor will reply to TCP and UDP connection requests, but will not perform any further protocol emulation.

D.

The sensor will prompt the user for user names and passwords, but does not provide further protocol emulation.

 

Answer: A

 

 

QUESTION 18  (Topic 0)

 

How can you monitor real-time IP flows through the IDP sensor?

 

A.

Use the sensor command sctop.

B.

Use the Security Manager GUI traffic logs.

C.

Use the Security Manager GUI dashboard.

D.

Enable debug flow basic on the sensor.

 

Answer: A

 

 

QUESTION 19  (Topic 0)

 

Which three devices support clustering? (Choose three.)

 

A.

IDP 10

B.

IDP 50

C.

IDP 200

D.

IDP 600

E.

IDP 1100

 

Answer: CDE

 

 

QUESTION 20  (Topic 0)

 

Which sensor command will capture packets on a particular interface?

 

A.

sctop

B.

tcpdump

 

 

 

 

C.

netstat

D.

tcpreplay

 

Answer: B

 

Free VCE & PDF File for Juniper JN0-541 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-541 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.