Juniper JN0-231 JNCIA-SEC Exam Practice Test Instant Access

Question 1

When creating a site-to-site VPN using the J-Web shown in the exhibit, which statement is correct?

AThe remote gateway is configured automatically based on the local gateway settings.

BRIP, OSPF, and BGP are supported under Routing mode.

CThe authentication method is pre-shared key or certificate based.

DPrivately routable IP addresses are required.

Answer : D

Question 2

A security zone is configured with the source IP address 192.168.0.12/255.255.0.255 wildcard match.

In this scenario, which two IP packets will match the criteria? (Choose two.)

A192.168.1.21

B192.168.0.1

C192.168.1.12

D192.168.22.12

Answer : C, D

Question 3

You are investigating a communication problem between two hosts and have opened a session on the SRX Series device closest to one of the hosts and entered the show security flow session command.

What information will this command provide? (Choose two.)

AThe total active time of the session.

BThe end-to-end data path that the packets are taking.

CThe IP address of the host that initiates the session.

DThe security policy name that is controlling the session.

Answer : C, D

Question 4

What are three Junos UTM features? (Choose three.)

Ascreens

Bantivirus

CWeb filtering

DIDP/IPS

Econtent filtering

Answer : B, C, E

Question 5

Which order is correct for Junos security devices that examine policies for transit traffic?

Azone policies
global policies
default policies

Bdefault policies
zone policies
global policies

Cdefault policies
global policies
zone policies

Dglobal policies
zone policies
default policies

Answer : A

Question 6

You want to prevent other users from modifying or discarding your changes while you are also editing the configuration file.

In this scenario, which command would accomplish this task?

Aconfigure master

Bcli privileged

Cconfigure exclusive

Dconfigure

Answer : C

Question 7

What are two features of the Juniper ATP Cloud service? (Choose two.)

Asandbox

Bmalware detection

CEX Series device integration

Dhoneypot

Answer : A, B

Juniper JN0-231 Security, Associate JNCIA-SEC Exam Practice Test