Which three best describe denial-of-service attacks? (Choose three.)
A. transmission of ping packets of a certain size to crash a remote host
B. the unauthorized discovery and mapping of systems, services, or vulnerabilities
C. transmission of TCP SYN requests from a spoofed IP address to exhaust the resources of a victim
D. disabling or corrupting networks, systems, or services with the intent to deny the service to intended users
Which three statements are true about custom reports? (Choose three.)
A. Creating reports using indexed columns is significantly faster.
B. All custom reports are stored on per user basis.
C. Log filters can be applied to custom reports.
D. You can export custom reports topdf format.
Which two statements are true about packet logging in NetScreen IDP? (Choose two.)
A. Packet logging on anAny/Any rule is not recommended due to performance impact.
B. Logging all packets before and after the attack can have a performance impact.
C. Packet logging records all packets flowing through the IDP.
D. Packets can be logged only after an attack is matched.
What does a Drop Packet action do?
A. drops any packet matching thissrc/dst/protocol
B. drops all packets from the attacker's IP
C. drops only the specific packet matching the attack
D. drops the specific session containing the attack pattern
What is the function of the IDP User Interface?
A. It downloads logs from various Sensors and displays them to the administrator.
B. It supplements the Command-Line Interface on the Sensor, but is not required.
C. It stores Security Policies and Attack Objects
D. It provides an interface for the administrator to view Logs/Reports and define Security Policies.
You implement Traffic Anomaly detection and you find numerous alerts of portscans from your Security Auditing team that you want to ignore. What is the appropriate action to take?
A. create a rule on top of Traffic Anomalyrulebase to ignore traffic from "Security Audit Team"
B. create a rule on top of Mainrulebase to ignore traffic with "from the Security Audit Team" and make this a Terminal rule
C. create a rule on top of Traffic Anomalyrulebase to ignore traffic with a "from the Security Audit Team" and make this a Terminal rule
D. create an Exempt rule for the Security Audit team in the Exempt to ignore Traffic Anomalies
Which field(s) can be filtered on in the Log Investigator?
A. Protocol
B. any field in the Log Viewer
C. Time
D. Source IP and Destination IP
Which three statements are true about Dynamic Groups? (Choose three.)
A. Dynamic Groups are only used inMain and Exempt rulebases.
B. A Dynamic Group can contain another static Attack Object group.
C. Objects can be added or updated to Dynamic Groups during the Signature Update process.
D. You can filter the Attack Objects based on severity, product, or direction that you want to be included in the Dynamic Group.
Which IDP Sensors support High-Availability? (Choose three.)
A. NetScreen IDP-500
B. IDP-10
C. NetScreen IDP-100
D. NetScreen IDP-1000
Which two attack detection methods are unique to Juniper NetScreenIDP? (Choose two.)
A. Protocol Anomaly
B. Packet Signatures
C. Statefull Signatures
D. Backdoor Detection
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Juniper exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JN0-541 exam preparations and Juniper certification application, do not hesitate to visit our Vcedump.com to find your solutions here.