JN0-232 시험 - Juniper실제시험문제와 답 - 56문항

Question No : 1

What is the main purpose of using screens on an SRX Series device?

A.to provide multiple ports for accessing security zones
B.to provide an alternative interface into the CLI
C.to provide protection against common DoS attacks
D.to provide information about traffic patterns traversing the network

정답:
Explanation:
The main purpose of using screens on an SRX Series device is to provide protection against common Denial of Service (DoS) attacks. Screens help prevent network resources from being exhausted or unavailable by filtering or blocking network traffic based on predefined rules. The screens are implemented as part of the firewall function on the SRX Series device, and they help protect against various types of DoS attacks, such as TCP SYN floods, ICMP floods, and UDP floods.

Question No : 2

What is the default value of the dead peer detection (DPD) interval for an IPsec VPN tunnel?

A.20 seconds
B.5 seconds
C.10 seconds
D.40 seconds

정답:
Explanation:
The default value of the dead peer detection (DPD) interval for an IPsec VPN tunnel is 5 seconds. DPD is a mechanism that enables the IPsec device to detect if the peer is still reachable or if the IPsec VPN tunnel is still active. The DPD interval determines how often the IPsec device sends DPD packets to the peer to check the status of the VPN tunnel. A value of 5 seconds is a common default, but the specific value can vary depending on the IPsec device and its configuration.
Juniper Networks Technical Documentation: Configuring IPsec VPNs: https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/ipsec-vpn-overview-srx-series.html

Question No : 3

Which feature would you use to protect clients connected to an SRX Series device from a SYN flood attack?

A.security policy
B.host inbound traffic
C.application layer gateway
D.screen option

정답:
Explanation:
A screen option in the SRX Series device can be used to protect clients connected to the device from a SYN flood attack. Screens are security measures that you can use to protect your network from various types of attacks, including SYN floods. A screen option specifies a set of rules to match against incoming packets, and it can take specific actions such as discarding, logging, or allowing the packets based on the rules.
Juniper Networks SRX Series Services Gateway Screen Configuration Guide: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-screen-configuring.html

Question No : 4

You want to verify the peer before IPsec tunnel establishment.
What would be used as a final check in this scenario?

A.traffic selector
B.perfect forward secrecy
C.st0 interfaces
D.proxy ID

정답:
Explanation:
The proxy ID is used as a final check to verify the peer before IPsec tunnel establishment. The proxy ID is a combination of local and remote subnet and protocol, and it is used to match the traffic that is to be encrypted. If the proxy IDs match between the two IPsec peers, the IPsec tunnel is established, and the traffic is encrypted.
Juniper Networks SRX Series Services Gateway IPsec Configuration Guide: https://www.juniper.net/documentation/en_US/release-independent/junos/topics/topic-map/security-ipsec-vpn-configuring.html

Question No : 5

You have configured a UTM feature profile.
Which two additional configuration steps are required for your UTM feature profile to take effect? (Choose two.)

A.Associate the UTM policy with an address book.
B.Associate the UTM policy with a firewall filter.
C.Associate the UTM policy with a security policy.
D.Associate the UTM feature profile with a UTM policy.

정답:
Explanation:
For the UTM feature profile to take effect, it must be associated with a security policy and a UTM policy. The security policy defines the traffic flow and the actions that should be taken on the traffic, while the UTM policy defines the security features to be applied to the traffic, such as antivirus, intrusion prevention, and web filtering. The UTM feature profile provides the necessary configuration for the security features defined in the UTM policy.
Juniper Networks SRX Series Services Gateway UTM Configuration Guide: https://www.juniper.net/documentation/en_US/release-independent/junos/topics/topic-map/security-services-utm.html

Question No : 6

Which statement is correct about Web filtering?

A.The Juniper Enhanced Web Filtering solution requires a locally managed server.
B.The decision to permit or deny is based on the body content of an HTTP packet.
C.The decision to permit or deny is based on the category to which a URL belongs.
D.The client can receive an e-mail notification when traffic is blocked.

정답:
Explanation:
Web filtering is a feature that allows administrators to control access to websites by categorizing URLs into different categories such as gambling, social networking, or adult content. The decision to permit or deny access to a website is based on the category to which a URL belongs. This is done by comparing the URL against a database of categorized websites and making a decision based on the policy defined by the administrator.
Juniper Networks SRX Series Services Gateway Web Filtering Configuration Guide: https://www.juniper.net/documentation/en_US/release-independent/junos/topics/topic-map/security-services-web-filtering.html

Question No : 7

Which two statements are correct about global policies? (Choose two.)

A.Global policies are evaluated after default policies.
B.Global policies do not have to reference zone context.
C.Global policies are evaluated before default policies.
D.Global policies must reference zone contexts.

정답:
Explanation:
Global policies are used to define rules for traffic that is not associated with any particular zone. This type of policy is evaluated first, before any rules related to specific zones are evaluated.
For more detailed information about global policies, refer to the Juniper Networks Security Policy Overview guide, which can be found at https://www.juniper.net/documentation/en_US/junos/topics/reference/security-policy-overview.html. The guide provides an overview of the Juniper Networks security policy architecture, as well as detailed descriptions of the different types of policies and how they are evaluated.

Question No : 8

What are two Juniper ATP Cloud feed analysis components? (Choose two.)

A.IDP signature feed
B.C&C cloud feed
C.infected host cloud feed
D.US CERT threat feed

정답:
Explanation:
The Juniper ATP Cloud feed analysis components are the IDP signature feed and the C&C cloud feed. The IDP signature feed provides a database of signatures from known malicious traffic, while the C&C cloud feed provides the IP addresses of known command and control servers. The infected host cloud feed and US CERT threat feed are not components of the Juniper ATP Cloud feed analysis.
To learn more about the Juniper ATP Cloud feed analysis components, refer to the Juniper Networks Security Automation and Orchestration (SAO) official documentation, which can be found at https://www.juniper.net/documentation/en_US/sao/topics/concept/security-automation-and-orchestration-overview.html. The documentation provides an overview of the SAO platform and an in-depth look at the various components of the Juniper ATP Cloud feed analysis.

Question No : 9

You want to block executable files ("exe) from being downloaded onto your network.
Which UTM feature would you use in this scenario?

A.IPS
B.Web filtering
C.content filtering
D.antivirus

정답:
Explanation:
According to the Juniper Networks official JNCIA-SEC Exam Guide, web filtering is a feature used to control access to web content, including the ability to block specific types of files.
In the scenario mentioned, you want to block executable files from being downloaded, which can be accomplished by using web filtering. The feature allows administrators to configure policies that block specific file types, including "exe" files, from being downloaded.
Juniper Networks JNCIA-SEC Exam Guide: https://www.juniper.net/training/certification/certification-exam-guides/jncia-sec-exam-guide/

Question No : 10

Which statement about service objects is correct?

A.All applications are predefined by Junos.
B.All applications are custom defined by the administrator.
C.All applications are either custom or Junos defined.
D.All applications in service objects are not available on the vSRX Series device.

정답:
Explanation:
"Service objects represent applications and services that can be assigned to a security policy rule. Applications and services can either be predefined by Junos software or custom defined by the administrator."
Juniper Networks JNCIA-SEC Exam Guide: https://www.juniper.net/training/certification/certification-exam-guides/jncia-sec-exam-guide/

Question No : 11

What does the number ‘’2’’ indicate in interface ge―0/1/2?

A.The interface logical number
B.The physical interface card (PIC)
C.The port number
D.The flexible PIC concentrator (FPC)

정답:

Question No : 12

Which security policy type will be evaluated first?

A.A zone policy with no dynamic application set
B.A global with no dynamic application set
C.A zone policy with a dynamic application set
D.A global policy with a dynamic application set

정답:

Question No : 13

Which two statements are correct about the integrated user firewall feature?(Choose two.)

A.It maps IP addresses to individual users.
B.It supports IPv4 addresses.
C.It allows tracking of non-Windows Active Directory users.
D.It uses the LDAP protocol.

정답:

Question No : 14

What must be enabled on an SRX Series device for the reporting engine to create reports?

A.System logging
B.SNMP
C.Packet capture
D.Security logging

정답:

Question No : 15

When creating a site-to-site VPN using the J-Web shown in the exhibit, which statement is correct?

A.The remote gateway is configured automatically based on the local gateway settings.
B.RIP, OSPF, and BGP are supported under Routing mode.
C.The authentication method is pre-shared key or certificate based.
D.Privately routable IP addresses are required.

정답:

Juniper JN0-232 시험