Juniper JN0-231 Security, Associate JNCIA-SEC Exam Practice Test

Page: 1 / 14
Total 105 questions
Question 1

What is the default timeout value for TCP sessions on an SRX Series device?



Answer : D

By default, TCP has a 30-minute idle timeout, and UDP has a 60-second idle timeout. Additionally, known IP protocols have a 30-minute timeout, whereas unknown ones have a 60-second timeout. Setting the inactivity timeout is very useful, particularly if you are concerned about applications either timing out or remaining idle for too long and filling up the session table. According to the Juniper SRX Series Services Guide, this can be configured using the 'timeout inactive' statement for the security policy.


Question 2

A security zone is configured with the source IP address 192.168.0.12/255.255.0.255 wildcard match.

In this scenario, which two IP packets will match the criteria? (Choose two.)



Answer : C, D


Question 3

You are investigating a communication problem between two hosts and have opened a session on the SRX Series device closest to one of the hosts and entered the show security flow session command.

What information will this command provide? (Choose two.)



Answer : C, D


Question 4

What are three Junos UTM features? (Choose three.)



Answer : B, C, E


Question 5

Which order is correct for Junos security devices that examine policies for transit traffic?



Answer : A


Question 6

What information does the show chassis routing-engine command provide?



Answer : B


Question 7

Which statement is correct about global security policies on SRX Series devices?



Answer : D


Page:    1 / 14   
Total 105 questions