You must verify whether the prefix 172.28.102.0/24 has been advertised by BGP peer 172.18.1.1 and accepted into the routing table.
Which command would you use to accomplish this task?
A. show route advertising-protocol bgp 172.18.1.1
B. show route receive-protocol bgp 172.18.1.1
C. show route protocol bgp 172.28.102.0/24
D. show route summary
What are three RSTP port states? (Choose three.)
A. discarding
B. forwarding
C. learning
D. listening
E. blocking
-- Exhibit -{master:0}[edit]
user@switch# show firewall
family ethernet-switching {
filter block-traffic {
term count {
from {
source-address {
10.100.0.254/32;
}
}
then count blocked-subnet;
}
term reject-traffic {
from {
source-address {
10.100.0.254/32;
}
}
then discard;
}
term accept-rest {
then accept;
}
}
}
-- Exhibit -You have a device that is sending a malicious packet to other devices in your Layer 2 network. You are asked to ensure that packets sent from this device are not allowed to enter your network. You must also keep track of the number of
packets that are being received. The device's IP address is 10.100.0.254. You have created and applied the firewall filter shown in the exhibit to the correct port. However, traffic is still being forwarded into the network.
What is causing the problem?
A. The reject-traffic term must be placed before the count term.
B. The filter family is incorrect for a port based filter.
C. Layer 2 firewall filters do not have visibility to the Layer 3 header information.
D. The count term is implicitly accepting the traffic.
You must ensure that the user connected to ge-0/0/0 can send traffic from their computer as well as their IP phone using the same physical port. The traffic coming from the computer will not contain a VLAN tag, and traffic from the IP phone will be tagged using the . This traffic must remain separated throughout the Layer 2 network.
Which feature must be used?
A. routed VLAN interface
B. native VLAN
C. voice VLAN
D. default VLAN
Which two statements about dynamic ARP inspection (DAI) are true? (Choose two.)
A. You enable DAI on each port.
B. Trunk ports are untrusted by default.
C. You can set individual ports as trusted by adding the dhcp-trusted parameter on a given port.
D. DAI depends on the entries found in the DHCP snooping database.
Which three statements are correct about the voice VLAN feature? (Choose three.)
A. It can be used with LLDP-MED to dynamically assign the VLAN ID value to IP phones.
B. It must use the same VLAN ID as data traffic on a defined interface.
C. It allows you to apply independent CoS actions to data and voice packets.
D. It allows trunk ports to accept tagged voice and untagged data packets.
E. It allows the access port to accept tagged voice and untagged data packets.
Depending on the link type, OSPF sends link state update packets to which two addresses'
(Choose two.)
A. 224.0.0.6
B. 224.0.0.5
C. 224.0.0.8
D. 224.0.0.9
Which two statements are true about the root bridge election process? (Choose two.)
A. The highest root bridge identifier is preferred over lower root bridge identifiers.
B. The lowest root bridge priority is preferred over higher root bridge priorities.
C. The lowest root bridge identifier is preferred over higher root bridge identifiers.
D. The higher root bridge priority is preferred over lower root bridge priorities.
Which two statements are correct about redundant trunk groups on EX Series switches? (Choose two.)
A. If the active link fails, then the secondary link automatically takes over.
B. Layer 2 control traffic is permitted on the secondary link.
C. Redundant trunk groups load balance traffic across two designated uplink interfaces.
D. Redundant trunk groups use spanning tree to provide loop-free redundant uplinks.
Which protocol supports tunneling of non-IP traffic?
A. SSH
B. IPsec
C. IP-IP
D. GRE
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Juniper exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JN0-343 exam preparations and Juniper certification application, do not hesitate to visit our Vcedump.com to find your solutions here.