Juniper JNCIS-SEC JN0-334 Questions & Answers

• Question 41:

  You must fine tune an IPS security policy to eliminate false positives. You want to create exemptions to the normal traffic examination for specific traffic.

  Which two parameters are required to accomplish this task? (Choose two.)

  A. source IP address

  B. destination IP address

  C. destination port

  D. source port

  Correct Answer: AB

• Question 42:

  You want to collect events and flows from third-party vendors. Which solution should you deploy to accomplish this task?

  A. Log Director

  B. JSA

  C. Policy Enforcer

  D. Contrail

  Correct Answer: B

• Question 43:

  Click the Exhibit button.

  

  The output shown in the exhibit is displayed in which format?

  A. syslog

  B. sd-syslog

  C. binary

  D. WELF

  Correct Answer: A

• Question 44:

  Click the Exhibit button.

  

  Referring to the SRX Series flow module diagram shown in the exhibit, where is IDP/IPS processed?

  A. Forwarding Lookup

  B. Services ALGs

  C. Screens

  D. Security Policy

  Correct Answer: B

• Question 45:

  When referencing a SSL proxy profile in a security policy, which two statements are correct? (Choose two.)

  A. A security policy can reference both a client-protection SSL proxy profile and a server-protection proxy profile.

  B. If you apply an SSL proxy profile to a security policy and forget to apply any Layer7 services to the security policy, any encrypted traffic that matches the security policy is not decrypted.

  C. A security policy can only reference a client-protection SSL proxy profile or a server-protection SSL proxy profile.

  D. If you apply an SSL proxy profile to a security policy and forget to apply any Layer7 services to the security policy, any encrypted traffic that matches the security policy is decrypted.

  Correct Answer: AD

• Question 46:

  The DNS ALG performs which three functions? (Choose three.)

  A. The DNS ALG performs the IPv4 and IPv6 address transformations.

  B. The DNS ALG performs DNS doctoring.

  C. The DNS ALG modifies the DNS payload in NAT mode.

  D. The DNS ALG performs DNSSEC.

  E. The DNS ALG performs DNS load balancing.

  Correct Answer: ABC

• Question 47:

  You are asked to enable AppTrack to monitor application traffic from hosts in the User zone destined to hosts in the Internet zone.

  In this scenario, which statement is true?

  A. You must enable the AppTrack feature within the Internet zone configuration.

  B. You must enable the AppTrack feature within the ingress interface configuration associated with the Internet zone.

  C. You must enable the AppTrack feature within the interface configuration associated with the User zone.

  D. You must enable the AppTrack feature within the User zone configuration.

  Correct Answer: D

• Question 48:

  Click the Exhibit button.

  

  You have implemented SSL proxy client protection. After implementing this feature, your users are complaining about the warning message shown in the exhibit.

  Which action must you perform to eliminate the warning message?

  A. Configure the SRX Series device as a trusted site in the client Web browsers.

  B. Regenerate the SRX self-signed CA certificate and include the correct organization name.

  C. Import the SRX self-signed CA certificate into the client Web browsers.

  D. Import the SRX self-signed CA certificate into the SRX certificate public store.

  Correct Answer: C

• Question 49:

  You must block the lateral spread of Remote Administration Tools (RATs) that use SMB to propagate within the network, using the JATP solution.

  Which action would accomplish this task?

  A. Configure a new anti-virus configuration rule.

  B. Configure whitelist rules

  C. Configure YARA rules.

  D. Configure the SAML settings.

  Correct Answer: C

• Question 50:

  Which security log message format reduces the consumption of CPU and storage?

  A. WELF

  B. BSD syslog

  C. binary

  D. structured syslog

  Correct Answer: B