What are the limitations of using TCP Reset to block connections in an IDS? (Choose three.)
A. only works on TCP traffic
B. must know the correct packet size to successfully reset a connection
C. does not reset the connection until the attack has already taken place
D. resets all connections from a certain source-IP, which could lead to denial-of-service
Which three functions can the IDP Sensor perform? (Choose three.)
A. performs attack detection and prevention
B. forwards logs and status messages to the IDP Management Server
C. collects and presents logs to the IDP User Interface
D. store logs locally when the IDP Management Server is unreachable
How can you monitor real-time IP flows through the IDP Sensor?
A. use the IDP UI Dashboard
B. use the CLI utilitysctop
C. use the IDP UI Traffic Logs
D. enable "debug flow basic" on the IDP Sensor
What is the process for enabling packet logging?
A. in the notification column of a rule in the mainrulebase, select Enable logging and check "log packets" option
B. in the actions column of arulebase, select "log packets"
C. in the action column of arulebase, select logging and choose "log packets"
D. in the notification column of a rule in the mainrulebase check "log packets" option
What are two drawbacks of an IDS system blocking an IP address? (Choose two.)
A. might lead to denial-of-service situation where attacker can intentionally block valid users from accessing a network
B. works only on TCP traffic
C. might not block the attacker until the attack has already taken place
D. need to know the sequence number of the attacker's IP Header to successfully block the IP address
Which three actions can be taken on a rule when deployed in inline mode? (Choose three.)
A. drop connection
B. drop stream
C. drop packet
D. close server and client
What is the function of the Log Packets notification action?
A. logs all packets the IDP Sensor sees
B. logs the packets containing the attack only
C. logs the packets used to give notification about a specific event (e.g.Syslog Traffic)
D. logs a specific number of packets before, after and during an attack
What does the Host Watch List monitor?
A. the number of attacks targeted to specified hosts
B. the number of attacks initiated from specified hosts
C. all sessions directed to specified hosts
D. the status of specified hosts
Which IDP Sensor is recommended to support onboard Management Server?
A. IDP-500
B. IDP-1000
C. IDP-100
D. IDP-10
What three statements about logging are true? (Choose three.)
A. When the communication is restored between the IDP Sensor and IDP Management Server, the IDP Sensor automatically reports any cached log messages to the Management Server.
B. If the communication between the IDP Sensor and IDP Management Server is down, the IDP Sensor will cache logs locally.
C. When the communication is restored between the IDP Sensor and IDP Management Server, the administrator must manually download the logs.
D. Log messages are forwarded from IDP Sensor to IDP Management Server in real time.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Juniper exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JN0-541 exam preparations and Juniper certification application, do not hesitate to visit our Vcedump.com to find your solutions here.