JN0-636 無料問題集「Juniper Security, Professional (JNCIP-SEC)」

（A）Enable address persistence.

（B）Enable persistent NAT

（C）Enable destination NAT.

（D）Disable PAT.

（A）The packet matches the default security policy.

（B）The packet matches a configured security policy.

（C）The packet is processed in the first path packet flow.

（D）The packet is processed as host inbound traffic.

（A）All of the entries are a threat level 8

（B）All of the entries are a threat level 10.

（C）All of the entries are command and control entries.

（D）All of the entries are Dshield entries

（A）The resources must be calculated based on the amount of traffic that will flow between the logical systems.

（B）The flow-session resource must be defined in the security profile for the interconnect logical system.

（C）No resources are needed to be allocated to the interconnect logical system.

（D）The NAT resources must be defined in the security profile for the interconnect logical system.

（A）The first synchronization of the backup node and the primary node must be performed manually.

（B）You must download and install the IPS signature package on the primary node.

（C）The IPS signature package must be downloaded and installed on the primary and backup nodes.

（D）The first time you synchronize the IPS signature package from the primary node to the backup node, the primary node must be rebooted.

（A）The file debugger will be readable by all users.

（B）Once the trace has generated 10 log files, the trace process will halt.

（C）Once the trace has generated 10 log files, older logs will be overwritten.

（D）The file debugger will be readable only by the user who committed this configuration

（A）Juniper ATP Cloud uses a Junos OS op script to help you configure your SRX Series device to connect to the Juniper ATP Cloud service.

（B）When the license expires, the SRX Series device is disenrolled from Juniper ATP Cloud without a grace period

（C）If a device is already enrolled in a realm and you enroll it in a new realm, the device data or configuration information is propagated to the new realm.

（D）The only way to enroll an SRX Series device is to interact with the Juniper ATP Cloud Web portal.

（A）EX Series devices

（B）MX Series devices

（C）QFX Series devices

（D）SRX Series devices

（A）This feature does not capture transit traffic.

（B）This feature captures ICMP traffic to and from the SRX Series device.

（C）This feature is supported on high-end SRX Series devices only.

（D）This feature is supported on both branch and high-end SRX Series devices.

（A）[edit security ike gateway advpn-gateway]
user@srx# set advpn suggester disable

（B）[edit interfaces]
user@srx# delete st0.0 multipoint

（C）[edit security ike gateway advpn-gateway]
user@srx# set version v1-only

（D）[edit security ike gateway advpn-gateway]
user@srx# delete advpn partner