Juniper JN0-1332 Security Design, Specialist Exam Practice Test

You are asked to perform a risk assessment for a core layer switch in your data center. After analyze the Annual loss Expectancy (ALE) for this switch, you conclude that the risk remediation strategy involves purchasing insurance to protect against losses due to compromise or failure.

This scenario describes which risk remediation strategy?

What are two reasons for using a cSRX instance over a vSRX instance? (Choose two )

When designing the security for a service provider core router, you are asked to add a firewall fitter on the to0 interface in this scenario, which two protocols would you want to allow through the filter? (Choose two.)

You arc designing a high availability firewall solution You select an off-path design instead of an mime design. What arc two reasons for this decision? (Choose two.)

You are asked to provide a network design proposal for a service provider As part of this design you must provide a solution that allows the service provider to mitigate DDoS attacks on their customers Which two features will satisfy this requirement? (Choose two)

You must design a separate network within your trust network with added security and separation. What is the common name for this type of network?

As part of a design requirement you are asked to allow users in a specific department to authenticate only on their laptops and no other devices on the same network port. Which mode of 802 .1X authentication will you use to satisfy this requirement?