Juniper JN0-231 JNCIA-SEC Exam Practice Test Instant Access

Question 1

Which two statements are true about Juniper ATP Cloud? (Choose two.)

AJuniper ATP Cloud is an on-premises ATP appliance.

BJuniper ATP Cloud can be used to block and allow IPs.

CJuniper ATP Cloud is a cloud-based ATP subscription.

DJuniper ATP Cloud delivers intrusion protection services.

Answer : C, D

Question 2

What is the default value of the dead peer detection (DPD) interval for an IPsec VPN tunnel?

A20 seconds

B5 seconds

C10 seconds

D40 seconds

Answer : B

Question 3

Which feature would you use to protect clients connected to an SRX Series device from a SYN flood attack?

Asecurity policy

Bhost inbound traffic

Capplication layer gateway

Dscreen option

Answer : D

Question 4

You want to verify the peer before IPsec tunnel establishment.

What would be used as a final check in this scenario?

Atraffic selector

Bperfect forward secrecy

Cst0 interfaces

Dproxy ID

Answer : D

Question 5

You have configured a UTM feature profile.

Which two additional configuration steps are required for your UTM feature profile to take effect? (Choose two.)

AAssociate the UTM policy with an address book.

BAssociate the UTM policy with a firewall filter.

CAssociate the UTM policy with a security policy.

DAssociate the UTM feature profile with a UTM policy.

Answer : C, D

Question 6

Which two statements are correct about global policies? (Choose two.)

AGlobal policies are evaluated after default policies.

BGlobal policies do not have to reference zone context.

CGlobal policies are evaluated before default policies.

DGlobal policies must reference zone contexts.

Answer : B, C

Question 7

What are two Juniper ATP Cloud feed analysis components? (Choose two.)

AIDP signature feed

BC&C cloud feed

Cinfected host cloud feed

DUS CERT threat feed

Answer : A, B

Juniper JN0-231 Security, Associate JNCIA-SEC Exam Practice Test