Summer Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

Juniper JN0-232 - Security, Associate (JNCIA-SEC)

Page: 1 / 4
Total 110 questions

Which two security policies are installed by default on SRX 300 Series Firewalls? (Choose two.)

A.

a security policy to allow all traffic from the untrust zone to the trust zone

B.

a security policy to allow all traffic from the trust zone to the untrust zone

C.

a security policy to allow all traffic from the management zone to the trust zone

D.

a security policy to allow all traffic from the trust zone to the trust zone

You want to show the effectiveness of your SRX Series Firewall content filter.

Which operational mode command would you use in this scenario?

A.

show security utm anti-spam status

B.

show security utm anti-virus status

C.

show security web filtering status

D.

show security utm content-filtering statistics

Which two statements are true about the NextGen Web Filtering (NGWF) feature on an SRX Series device? (Choose two.)

A.

The NGWF feature consults the Juniper cloud before consulting your local lists.

B.

The NGWF feature requires a license.

C.

The NGWF feature consults your local lists before consulting the Juniper cloud.

D.

The NGWF feature does not require a license.

You just made a configuration change to a security policy on your SRX Series Firewall. Your users alert you that an application that uses FTP is no longer working.

Referring to the exhibit, what are two ways to solve this problem? (Choose two.)

A.

Enter the rollback 1 command followed by a commit command.

B.

Activate the FTP security policy and commit the configuration.

C.

Insert the FTP security policy before the web-smtp security policy.

D.

Change the destination address in the FTP security policy to any and commit the configuration.

Which two statements are correct about the Junos OS architecture? (Choose two.)

A.

Junos is built using a collection of interdependent software processes.

B.

Junos is built using independent software processes.

C.

Restarting a single software process causes synchronization issues until other processes are restarted.

D.

Individual software processes can be restarted without impacting the others.

Referring to the exhibit, which two statements are correct? (Choose two.)

A.

This security policy is a zone-based security policy.

B.

This security policy uses a non-default inactivity timeout.

C.

This security policy permits HTTPS traffic.

D.

This security policy is the second security policy in the list.

Click the Exhibit button.

Referring to the exhibit, which two statements are correct? (Choose two.)

A.

This security policy uses a non-default inactivity timeout.

B.

This security policy is the second security policy in the list.

C.

This security policy permits HTTPS traffic.

D.

This security policy is a zone-based security policy.

You must ensure that sessions can only be established from the external device.

Referring to the exhibit, which type of NAT is being performed?

A.

static NAT and source NAT

B.

static PAT only

C.

source NAT only

D.

destination NAT only

You are not able to ping an interface on an SRX Series Firewall.

Which two actions should you take to solve this issue? (Choose two.)

A.

Assign the interface to a security zone.

B.

Create a security policy to allow ping traffic.

C.

Assign the interface to the null zone.

D.

Configure the ICMP protocol for host-inbound-traffic.

You are modifying the NAT rule order and you notice that a new NAT rule has been added to the bottom of the list.

In this situation, which command would you use to reorder NAT rules?

A.

top

B.

run

C.

up

D.

insert