Juniper JN0-335 Exam Practice Test Instant Access

Question 1

Which two statements are correct when considering IPS rule base evaluation? (Choose two.)

AIPS evaluates rules concurrently.

BIPS applies the most severe action to traffic matching multiple rules,

CIPS evaluates rules sequentially

DIPS applies the least severe action to traffic matching multiple rules.

Answer : A, B

The Intrusion Prevention System (IPS) is a feature that provides protection against network-based threats. The IPS uses a rule base to evaluate network traffic and apply actions based on the rules that match the traffic.

When evaluating the rule base, the IPS evaluates the rules concurrently (option A). This means that the IPS can apply multiple rules to the same traffic simultaneously.

If multiple rules match the same traffic, the IPS applies the most severe action (option B). This means that if there are conflicting actions specified in different rules, the IPS will apply the action that has the highest severity. For example, if one rule specifies a 'drop' action and another rule specifies a 'log' action for the same traffic, the IPS will drop the traffic because dropping has a higher severity than logging.

Question 2

Exhibit

Referring to the exhibit, which two statements are true? (Choose two.)

ANancy logged in to the juniper.net Active Directory domain.

BThe IP address of Nancy's client PC is 172.25.11.

CThe IP address of the authenticating domain controller is 172.25.11.140.

DNancy is a member of the Active Directory sales group.

Answer : C

Question 3

Which two statements are correct about JSA data collection? (Choose two.)

AThe Event Collector collects information using BGP FlowSpec.

BThe Flow Collector can use statistical sampling

CThe Flow Collector parses logs.

DThe Event Collector parses logs

Answer : B, D

The Flow Collector can use statistical sampling to collect and store network flow data in the JSA database. The Event Collector collects information from various sources including syslog, SNMP, NetFlow, and BGP FlowSpec. Both the Flow Collector and the Event Collector parse logs to extract useful information from the logs.

Question 4

Exhibit

You are trying to create a security policy on your SRX Series device that permits HTTP traffic from your private 172 25.11.0/24 subnet to the Internet You create a policy named permit-http between the trust and untrust zones that permits HTTP traffic. When you issue a commit command to apply the configuration changes, the commit fails with the error shown in the exhibit.

Which two actions would correct the error? (Choose two.)

AIssue the rollback 1 command from the top of the configuration hierarchy and attempt the commit again.

BExecute the Junos commit full command to override the error and apply the configuration.

CCreate a custom application named http at the [edit applications] hierarchy.

DModify the security policy to use the built-in Junos-http applications.

Answer : C, D

The error message indicates that the Junos-http application is not defined, so you need to either create a custom application or modify the security policy to use the built-in Junos-http application. Doing either of these will allow you to successfully commit the configuration.

Question 5

You want to deploy a virtualized SRX in your environment.

In this scenario, why would you use a vSRX instead of a cSRX? (Choose two.)

AThe vSRX supports Layer 2 and Layer 3 configurations.

BOnly the vSRX provides clustering.

CThe vSRX has faster boot times.

DOnly the vSRX provides NAT, IPS, and UTM services

Answer : A, C

The vSRX supports both Layer 2 and Layer 3 configurations, while the cSRX is limited to Layer 3 configurations. Additionally, the vSRX has faster boot times, which is advantageous in certain scenarios. The vSRX and cSRX both provide NAT, IPS, and UTM services.

Question 6

You are asked to implement IPS on your SRX Series device.

In this scenario, which two tasks must be completed before a configuration will work? (Choose two.)

ADownload the IPS signature database.

BEnroll the SRX Series device with Juniper ATP Cloud.

CInstall the IPS signature database.

DReboot the SRX Series device.

Answer : A, C

The two tasks that must be completed before a configuration for IPS on an SRX Series device will work are downloading the IPS signature database and installing the IPS signature database. The Security, Specialist (JNCIS-SEC) Study guide provides further information on how to download and install the IPS signature database. Enrolling the SRX Series device with Juniper ATP Cloud is not necessary to make a configuration work, and rebooting the SRX Series device is not required either.

Question 7

Exhibit

Referring to the exhibit, what do you determine about the status of the cluster.

ABoth nodes determine that they are in a primary state.

BNode 1 is down

CNode 2 is down.

DThere are no issues with the cluster.

Answer : C

Juniper JN0-335 Security, Specialist Exam Practice Test