Labour Day Special 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exams65

Security-Associate (JNCIA-SEC) Question and Answers

Security-Associate (JNCIA-SEC)

Last Update Apr 24, 2024
Total Questions : 101

We are offering FREE JN0-231 Juniper exam questions. All you do is to just go and sign up. Give your details, prepare JN0-231 free exam questions and then go for complete pool of Security-Associate (JNCIA-SEC) test questions that will help you more.

JN0-231 pdf

JN0-231 PDF

$35  $99.99
 Add to Cart
JN0-231 Engine

JN0-231 Testing Engine

$42  $119.99
 Add to Cart
JN0-231 PDF + Engine

JN0-231 PDF + Testing Engine

$56  $159.99
 Add to Cart
Questions 1

What are two logical properties of an interface? (Choose two.)

Options:

A.  

link mode

B.  

IP address

C.  

VLAN ID

D.  

link speed

Discussion 0
Questions 2

Click the Exhibit button.

What is the purpose of the host-inbound-traffic configuration shown in the exhibit?

Options:

A.  

to permit host inbound HTTP traffic and deny all other traffic on the internal security zone

B.  

to deny and log all host inbound traffic on the internal security zone, except for HTTP traffic

C.  

to permit all host inbound traffic on the internal security zone, but deny HTTP traffic

D.  

to permit host inbound HTTP traffic on the internal security zone

Discussion 0
Questions 3

A security zone is configured with the source IP address 192.168.0.12/255.255.0.255 wildcard match.

In this scenario, which two IP packets will match the criteria? (Choose two.)

Options:

A.  

192.168.1.21

B.  

192.168.0.1

C.  

192.168.1.12

D.  

192.168.22.12

Discussion 0
Questions 4

Which statement about service objects is correct?

Options:

A.  

All applications are predefined by Junos.

B.  

All applications are custom defined by the administrator.

C.  

All applications are either custom or Junos defined.

D.  

All applications in service objects are not available on the vSRX Series device.

Discussion 0
Questions 5

SRX Series devices have a maximum of how many rollback configurations?

Options:

A.  

40

B.  

60

C.  

50

D.  

10

Discussion 0
Questions 6

Which two non-configurable zones exist by default on an SRX Series device? (Choose two.)

Options:

A.  

Junos-host

B.  

functional

C.  

null

D.  

management

Discussion 0
Questions 7

When are Unified Threat Management services performed in a packet flow?

Options:

A.  

before security policies are evaluated

B.  

as the packet enters an SRX Series device

C.  

only during the first path process

D.  

after network address translation

Discussion 0
Questions 8

What is an IP addressing requirement for an IPsec VPN using main mode?

Options:

A.  

One peer must have dynamic IP addressing.

B.  

One peer must have static IP addressing.

C.  

Both peers must have dynamic IP addresses.

D.  

Both peers must have static IP addressing.

Discussion 0
Questions 9

You want to prevent other users from modifying or discarding your changes while you are also editing the configuration file.

In this scenario, which command would accomplish this task?

Options:

A.  

configure master

B.  

cli privileged

C.  

configure exclusive

D.  

configure

Discussion 0
Questions 10

You want to implement user-based enforcement of security policies without the requirement of certificates and supplicant software.

Which security feature should you implement in this scenario?

Options:

A.  

integrated user firewall

B.  

screens

C.  

802.1X

D.  

Juniper ATP

Discussion 0
Questions 11

You want to verify the peer before IPsec tunnel establishment.

What would be used as a final check in this scenario?

Options:

A.  

traffic selector

B.  

perfect forward secrecy

C.  

st0 interfaces

D.  

proxy ID

Discussion 0
Questions 12

You are investigating a communication problem between two hosts and have opened a session on the SRX Series device closest to one of the hosts and entered the show security flow session command.

What information will this command provide? (Choose two.)

Options:

A.  

The total active time of the session.

B.  

The end-to-end data path that the packets are taking.

C.  

The IP address of the host that initiates the session.

D.  

The security policy name that is controlling the session.

Discussion 0
Questions 13

Which two statements are correct about global policies? (Choose two.)

Options:

A.  

Global policies are evaluated after default policies.

B.  

Global policies do not have to reference zone context.

C.  

Global policies are evaluated before default policies.

D.  

Global policies must reference zone contexts.

Discussion 0
Questions 14

What are two functions of Juniper ATP Cloud? (Choose two.)

Options:

A.  

malware inspection

B.  

Web content filtering

C.  

DDoS protection

D.  

Geo IP feeds

Discussion 0
Questions 15

You are asked to verify that a license for AppSecure is installed on an SRX Series device.

In this scenario, which command will provide you with the required information?

Options:

A.  

user@srx> show system license

B.  

user@srx> show services accounting

C.  

user@srx> show configuration system

D.  

user@srx> show chassis firmware

Discussion 0