Question #:1
Which feature of Sky ATP is deployed with Policy Enforcer?
A.zero-day threat mitigation
B.software image snapshot support
C.device inventory management
D.service redundancy daemon configuration support
Answer: A
Question #:2
You are asked to implement the session cache feature on an SRX5400.
In this scenario, what information does a session cache entry record? (Choose two.)
A.The type of processing to do for ingress traffic
B.The type of processing to do for egress traffic
C.To which SPU the traffic of the session should be forwarded
D.To which NPU the traffic of the session should be forwarded
Answer: B, C
Question #:3
In a Juniper ATP Appliance, what would be a reason for the mitigation rule to be in the failed-remove state?
A.The Juniper ATP Appliance received a commit error message from the SRX Series device
B.The Juniper ATP Appliance received an unknown error message from the SRX Series device
C.The Juniper ATP Appliance was not able to communicate with the SRX Series device
D.The Juniper ATP Appliance was not able to obtain the config lock
Answer: D
Question #:4
You are asked to configure a new SRX Series CPE device at a remote office. The device must participate in
forwarding MPLS and IPsec traffic.
Which two statements are true regarding this implementation? (Choose two.)
A.Host inbound traffic must not be processed by the flow module
B.Host inbound traffic must be processed by the flow module
C.The SRX Series device can process both MPLS and IPsec with default traffic handling
D.A firewall filter must be configured to enable packet mode forwarding
Answer: A, D
Question #:5
When would you use the port-overloading-factor 1 setting?
A.to enable the port-overloading
B.to disable the port-overloading
C.to map ports with 1:1 ratio for port-overloading
D.to set the maximum port-overloading capacity to 65,536
Answer: B
Question #:6
You have configured static NAT for a web server in your DMZ. Both internal and external users can reach the webserver using the webserver’s IP address. However, only internal users can reach the webserver using the webserver’s DNS name. When external users attempt to reach the webserver using the webserver’s DNS name, an error message is received. Which action would solve this problem?
A.Disable Web filtering
B.Use DNS doctoring
C.Modify the security policy
D.Use destination NAT instead of static NAT
Answer: B
0 comments:
Post a Comment
Note: only a member of this blog may post a comment.