JN0-335無料問題集「Juniper Security, Specialist (JNCIS-SEC)」

質問 1

You are preparing a proposal for a new customer who has submitted the following requirements for a vSRX deployment:
-- globally distributed,
-- rapid provisioning,
-- scale based on demand,
-- and low CapEx.
Which solution satisfies these requirements?

（A）AWS

（B）VMWare ESXi

（C）Network Director

（D）Juniper ATP Cloud

正解：A 解答を投票する

質問 2

Referring to the exhibit, you want to deploy Sky ATP with Policy Enforcer to block infected hosts at the access layer.

To complete this task, where should you configure the default gateway for the User-1 device?

（A）the interface of QFX-1 that connects to User-1

（B）the irb interface on QFX-1

（C）the interface on SRX-1 that connects to QFX-2

（D）the irb interface on QFX-2

正解：B 解答を投票する

質問 3

What is the maximum number of supported interfaces on a vSRX hosted in a VMware environment?

（A）12

（B）3

（C）10

（D）4

正解：C 解答を投票する

質問 4

Which default protocol and port are used for JIMS to SRX client communication?

（A）RPC over TCP, port 135

（B）ADSI over TCP; port 389

（C）WMI over TCP; port 389

（D）HTTPS over TCP: port 443

正解：D 解答を投票する

質問 5

Which of the following lists the correct order that the Sky ATP pipeline evaluates traffic?

（A）Static Analysis. Cache lookup. Antivirus Scanning, Dynamic Analysis

（B）Cache lookup. Antivirus Scanning, Static Analysis, Dynamic Analysis

（C）Cache lookup. Static Analysis. Dynamic Analysis. Antivirus Scanning

正解：B 解答を投票する

質問 6

What are two types of collectors for the JATP core engine? (Choose two.)

（A）e-mail

（B）Web

（C）SNMP

（D）telemetry

正解：A、B 解答を投票する

質問 7

A routing change occurs on an SRX Series device that involves choosing a new egress interface.
In this scenario, which statement is true for all affected current sessions?

（A）The current sessions might change based on the corresponding security policy.

（B）The current session are torn dowm only if the policy-rematch option has been enabled.

（C）The current sessions are torn down and go through first path processing based on the new route.

（D）The current sessions do not change.

正解：C 解答を投票する

質問 8

What is the default timeout period for a TCP session in the session table of a Junos security device?

（A）60 minutes

（B）1 minute

（C）30 minutes

（D）15 minutes

正解：C 解答を投票する

質問 9

You want to deploy vSRX in Amazon Web Services (AWS) virtual private clouds (VPCs).
Which two statements are true in this scenario? (Choose two.)

（A）The vSRX devices serving as local enforcement points for VPCs can be managed by a centralized Junos Space Security Director instance.

（B）The vSRX devices serving as local enforcement points for VPCs can be managed by a centralized Junos Space Network Director instance.

（C）IPsec tunnels can be used to connect vSRX in different VPCs.

（D）MPLS LSPs can be used to connect vSRXs in different VPCs.

正解：A、C 解答を投票する

質問 10

Which two statements are correct regarding reth interfaces? (Choose two.)

（A）Child interfaces do not need to be in the same slot on both nodes.

（B）Child interfaces can be a mixture of Ethernet interface types.

（C）Child interfaces must be in the same slot on both nodes

（D）Child interfaces must be the same Ethernet interface type.

正解：A、D 解答を投票する

JN0-335 無料問題集「Juniper Security, Specialist (JNCIS-SEC)」

弊社を連絡する

関連リンク

トップ試験