Juniper JN0-335 Exam Practice Test Instant Access

Question 1

Which solution enables you to create security policies that include user and group information?

AJIMS

BATP Appliance

CNetwork Director

DNETCONF

Answer : A

Question 2

You are experiencing excessive packet loss on one of your two WAN links route traffic from the degraded link to the working link

Which AppSecure component would you use to accomplish this task?

AAppFW

BAppQoE

CAppQoS

DAPBR

Answer : D

Question 3

Which two sources are used by Juniper Identity Management Service (JIMS) for collecting username and device IP addresses? (Choose two.)

AMicrosoft Exchange Server event logs

BDNS

CActive Directory domain controller event logs

DOpenLDAP service ports

Answer : B, C

Question 4

You are asked to ensure that if the session table on your SRX Series device gets close to exhausting its resources, that you enforce a more aggress.ve age-out of existing flows.

In this scenario, which two statements are correct? (Choose two.)

AThe early-ageout configuration specifies the timeout value, in seconds, that will be applied once the low-watermark value is met.

BThe early-ageout configuration specifies the timeout value, in seconds, that will be applied once the high-watermark value is met.

CThe high-watermark configuration specifies the percentage of how much of the session table is left before disabling a more aggressive age- out timer.

DThe high-watermark configuration specifies the percentage of how much of the session table can be allocated before applying a more aggressive age-out timer

Answer : B, D

Question 5

What are three capabilities of AppQoS? (Choose three.)

Are-write DSCP values

Bassign a forwarding class

Cre-write the TTL

Drate-limit traffic

Ereserve bandwidth

Answer : A, B, E

Question 6

Exhibit

Referring to the exhibit, which two statements are true? (Choose two.)

ANancy logged in to the juniper.net Active Directory domain.

BThe IP address of Nancy's client PC is 172.25.11.

CThe IP address of the authenticating domain controller is 172.25.11.140.

DNancy is a member of the Active Directory sales group.

Answer : C

Question 7

You want to deploy a virtualized SRX in your environment.

In this scenario, why would you use a vSRX instead of a cSRX? (Choose two.)

AThe vSRX supports Layer 2 and Layer 3 configurations.

BOnly the vSRX provides clustering.

CThe vSRX has faster boot times.

DOnly the vSRX provides NAT, IPS, and UTM services

Answer : A, C

Juniper JN0-335 Security, Specialist Exam Practice Test