Juniper JN0-1332 Exam Practice Test Instant Access

Question 1

A new virus is sheading across the Internet, with the potential to affect your customer's network

Which two statements describe how Policy Enforcer interacts with other devices to ensure that the network is protected in this scenario? (Choose two.)

APolicy Enforcer pulls security intelligence feeds from Juniper ATP Cloud to apply to SRX Series devices

BPolicy Enforcer pulls security policies from Juniper ATP cloud and apples them to SRX Series devices

CPolicy Enforcer automates the enrollment of SRX Series devices with Jumper ATP Cloud

DSecurity Director pulls security intelligence feeds from Juniper ATP Cloud and applies them to Policy Enforcer

Answer : B

Question 2

What are two considerations when performing a risk assessment for assets in a data center? (Choose two.)

AInsurance is a viable mitigation strategy when performing risk assessment calculations

BExposure of assets could have larger economic impact man loss of assets

CMigration of a data center to a cloud prouder increases economic impact of asset loss

DMigration of a data center to a cloud provider reduces the economic impact of asset exposure

Answer : C

Question 3

You are asked to implement Jumper AppSecure to increase application security. You want to analyze specific application usage In this scenario. which AppSecure feature would accomplish this task?

AAppQoS

BAppTrack

CAppFW

DIDP/IP

Answer : D

Question 4

You are asked to provide a security solution to secure corporate traffic across the Internet between sites. This solution must provide data integrity, confidentiality and encryption Which security feature will accomplish this task?

AIPsecVPN

BIP-IP tunnel

CLayer 3 VPN

DIGRE tunnel

Answer : A

Question 5

What are two reasons for using a cSRX instance over a vSRX instance? (Choose two )

AcSRX instances launch faster than vSRX instances

BcSRX instances share the host OS unlike vSRX instances.

CA cSRX instance uses more memory but uses less disk space than a vSRX instance

DA cSRX instance supports more features than a vSRX instance

Answer : C

Question 6

When designing the security for a service provider core router, you are asked to add a firewall fitter on the to0 interface in this scenario, which two protocols would you want to allow through the filter? (Choose two.)

ALLDP

BSSH

CBGP

DSTP

Answer : A, C

Question 7

You arc designing a high availability firewall solution You select an off-path design instead of an mime design. What arc two reasons for this decision? (Choose two.)

AThe off-path design is less complex

BThe off-path design is more flexible

CThe off-path design uses fewer interfaces at the adjacency layer

DThe off-path design requires a proper routing configuration for selecting traffic

Answer : B

Juniper JN0-1332 Security Design, Specialist Exam Practice Test