JN0-1332 Exam Questions
85 real JN0-1332 exam questions with expert-verified answers and explanations. Page 1 of 2.
- Question #1
As part of your service provider WAN network design, you are asked to create a design that secures BGP communication. In this scenario, what are two reasons you would choose BGP Ge...
- Question #2
Which two statements describe Juniper ATP Cloud? (Choose two)
- Question #3
When two security services process a packet whether it is being processed in the first-packet path or the fast path? (Choose two.)
- Question #4
Physical security devices are ''blind'' to which type of traffic?
- Question #5
Which two steps should be included in your security design process? (Choose two )
- Question #6
Exhibit. In the 3-tier VPN design shown in the exhibit, which function are the Campus A and Campus B SRX Series devices performing?
- Question #7
You must design a separate network within your trust network with added security and separation. What is the common name for this type of network?
- Question #8
Which solution would you deploy to accomplish this task?
- Question #9
You must ensure that all 10GbE interfaces have an MTU of 9192 and that an of the ge-0/0>4.0 interfaces on the SRX Series devices are in a specific zone. Which type of a script woul...
- Question #10
You are asked to provide a network design proposal for a service provider. As part of this design you must provide a solution that allows the service provider to mitigate DDoS atta...
- Question #11
You are designing a high availability firewall solution. You select an off-path design instead of an mime design. What are two reasons for this decision? (Choose two.)
- Question #12
When designing the security for a service provider core router, you are asked to add a firewall fitter on the to0 interface. In this scenario, which two protocols would you want to...
- Question #13
What are two reasons for using a cSRX instance over a vSRX instance? (Choose two )
- Question #14
Refer the Exhibit. You must ensure that return Web traffic is not dropped by the firewall devices. What must be implemented on the link between FW A and FW B?
- Question #15
What are two characteristics of an overlay network design? (Choose two.)
- Question #16
Refer to the exhibit. The SRX Series devices are decoyed in an off-path active/passive Cluster configuration. What are two advantages of this deployment model over an active-active...
- Question #17
You are asked to deploy multiple kiosk locations around the country. Their locations will change frequently and will need to access services in the corporate data center as well as...
- Question #18
Which two statements are true about WAN security considerations? (Choose two.)
- Question #19
You are designing a security solution that includes SRX Series firewalls in a chassis cluster. In this scenario, which two dements must be part of the design? (Choose two.)
- Question #20
You are designing Enterprise WAN attachments and want to follows Jumper recommended security practices In this scenario, which two statements are correct? (Choose two.)
- Question #21
You are asked to segment the networks connected to an SRX Series device into distinct logical groups with different security requirements. How would you accomplish this task?
- Question #22
What are two factors you must consider when designing a network for security intelligence? (Choose two.)
- Question #23
Your network design requires that you ensure privacy between WAN endpoints. Which transport technology requires an IPsec overlay to satisfy this requirement?
- Question #24
As part of your design to secure a service provider WAN. You are asked to design a destination-based remote triggered black hole (RTBH) solution. What are two reasons for using thi...
- Question #25
As part of a high availably design for interfaces on an SRX chassis cluster, you are asked to deliver a design that provides both link redundancy and node redundancy. What would yo...
- Question #26
Which feature is evaluated first when a packet is received on an interface of an SRX Series device?
- Question #27
Which three statements about Group VPNs are true? (Choose three.)
- Question #28
You are asked to perform a risk assessment for a core layer switch in your data center. After analyze the Annual loss Expectancy (ALE) for this switch, you conclude that the risk r...
- Question #29
You are asked to recommend a client remote access solution that provides direct network access and is the most secure. When connection type accomplishes this task?
- Question #30
Which type of SDN implementation docs Contrail use?
- Question #31
You are asked to provide a security solution to secure corporate traffic across the Internet between sites. This solution must provide data integrity, confidentiality and encryptio...
- Question #32
You are asked to implement Jumper AppSecure to increase application security. You want to analyze specific application usage In this scenario. Which AppSecure feature would accompl...
- Question #33
What are two considerations when performing a risk assessment for assets in a data center? (Choose two.)
- Question #34
A new virus is sheading across the Internet, with the potential to affect your customer's network. Which two statements describe how Policy Enforcer interacts with other devices to...
- Question #35
You are a security architect for a small managed service provider. The marketing team has proposed providing firewall services to the customers. The requirements for the solution a...
- Question #36
When considering data center security. which aspect represents the weakest link?
- Question #37
When considering the data center, which two security aspects must be considered? (Choose two)
- Question #38
Your company just purchased another company that uses the same IP address space as your company. You are asked to design a solution that allows both company's to use each other's I...
- Question #39
You are asked to deploy a product that will provide east-west protection between virtual machines hosted on the same physical server with a requirement to participate with local ro...
- Question #40
Which technology enables IPS inspection for users browsing websites that use Transport Layer Security (TLS)?
- Question #41
Which three methods secure the payload across the WAN? (Choose three.)
- Question #42
You are designing an enterprise WAN network that must connect multiple sites. You must provide a design proposal for the security elements needed to encrypt traffic between the rem...
- Question #43
You are designing the security improvements needed to protect an application that your company is about to deploy. The only traffic that the application can receive is valid HTTP t...
- Question #44
You are asked to design security policies for your corporate network where policy-based VPNs will be used. In this scenario, which three statements for a traffic match are true? (C...
- Question #45
You are designing a service provider network. As part of your design you must ensure that the OSPF, BGP, and RSVP protocol communications are secured using the same authentication...
- Question #46
You are asked to design security into the configuration of routing protocols on your Junos network to stop rogue neighbors from forming adjacencies for an enterprise WAN. What will...
- Question #47
You must secure network access by requiring users to log in through an HTTP browser, while also allowing printers to connect to the network using MAC address validation. What will...
- Question #48
You must implement a solution to deploy end-to-end security services on network elements. Which solution will accomplish this task?
- Question #49
Which two features would provide protection from known malware? (Choose two.)
- Question #50
A customer wants to understand why Poky Enforcer is included as a part of your network design proposal. In this situation, which statement is correct?