Exam Details
Exam Code
:JN0-230Exam Name
:Security-Associate (JNCIA-SEC)Certification
:Associate JNCIA-SECVendor
:JuniperTotal Questions
:82 Q&AsLast Updated
:May 15, 2024
Juniper Associate JNCIA-SEC JN0-230 Questions & Answers
-
Question 21:
What is the correct order of processing when configuring NAT rules and security policies?
A. Policy lookup > source NAT > static NAT > destination NAT
B. Source NAT > static NAT > destination NAT > policy lookup
C. Static NAT > destination NAT> policy lookup > source NAT
D. Destination NAT > policy lookup > source NAT > static NAT
-
Question 22:
Host-inbound-traffic is configured on the DMZ zone and the ge-0/0/9.0 interface attached to that zone. Referring to the exhibit,
which to types of management traffic would be performed on the SRX Series device? (Choose two.)
A. HTTPS
B. SSH
C. Finger
D. HTTP
-
Question 23:
Users in your network are downloading files with file extensions that you consider to be unsafe for your network. You must prevent files with specific file extensions from entering your network. Which UTM feature should be enable on an SRX Series device to accomplish this task?
A. Content filtering
B. Web filtering
C. Antispam
D. URL filtering
-
Question 24:
Referring to the exhibit.
Which type of NAT is being performed?
A. Source NAT with PAT
B. Source NAT without PAT
C. Destination NAT without PAT
D. Destination NAT with PAT
-
Question 25:
Your company has been assigned one public IP address. You want to enable internet traffic to reach multiple servers in your DMZ that are configured with private address. In this scenario, which type of NAT would be used to accomplish this tasks?
A. Static NAT
B. Destination NAT
C. Source NAT
D. NAT without PAT
-
Question 26:
Which management software supports metadata-based security policies that are ideal for cloud deployments?
A. Security Director
B. J-Web
C. Network Director
D. Sky Enterprise
-
Question 27:
You verify that the SSH service is configured correctly on your SRX Series device, yet administrators attempting to connect through a revenue port are not able to connect. In this scenario, what must be configured to solve this problem?
A. A security policy allowing SSH traffic.
B. A host-inbound-traffic setting on the incoming zone
C. An MTU value target than the default value
D. A screen on the internal interface
-
Question 28:
Which UTM feature should you use to protect users from visiting certain blacklisted websites?
A. Content filtering
B. Web filtering
C. Antivirus
D. antispam
-
Question 29:
You configure and applied several global policies and some of the policies have overlapping match criteria.
A. In this scenario, how are these global policies applies?
B. The first matched policy is the only policy applied.
C. The most restrictive that matches is applied.
D. The least restrictive policy that matches is applied.
-
Question 30:
You have configured antispam to allow e-mail from example.com, however the logs you see that [email protected] is blocked Referring to the exhibit.
What are two ways to solve this problem?
A. Verify connectivity with the SBL server.
B. Add [email protected] to the profile antispam address whitelist.
C. Delete [email protected] from the profile antispam address blacklist
D. Delete [email protected] from the profile antispam address whitelist
Related Exams:
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Juniper exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JN0-230 exam preparations and Juniper certification application, do not hesitate to visit our Vcedump.com to find your solutions here.