JN0-332 Exam Questions
472 real JN0-332 exam questions with expert-verified answers and explanations. Page 4 of 10.
- Question #159
The same Web site is visited for the second time using a branch SRX Series Services Gateway configured with Surf Control integrated Web filtering. Which statement is true?
- Question #160
To determine whether a particular file has a virus by only inspecting a few initial packets before receiving the entire file, which UTM feature do you enable?
- Question #161
Which element occurs first during the first-packet-path processing?
- Question #162
Which statement describes the behavior of source NAT with address shifting?
- Question #163
Which two statements are true about IPsec traffic? (Choose two.)
- Question #164
You must configure a SCREEN option that will protect your router from a session table flood. Which configuration meets this requirement?
- Question #165
Which two statements are true regarding high-availability chassis clustering? (Choose two.)
- Question #166
Which statement is true for interfaces residing outside of redundancy groups?
- Question #167
Under which configuration hierarchy is an access profile configured for firewall user authentication?
- Question #168
Which two statements are true about juniper-express-engine (express AV)? (Choose two.)
- Question #169
What are two uses of NAT? (Choose two.)
- Question #172
Which statement is true regarding NAT?
- Question #183
Which statement is true about zone interface assignment?
- Question #184
You want to ensure end-to-end data connectivity through an IPsec tunnel. Which feature would you activate?
- Question #185
In which two cases would you consider the TCP flag settings to be suspicious? (Choose two.)
- Question #186
Which operational mode command displays all active IKE phase 2 security associations?
- Question #188
Which three security policy actions are valid? (Choose three.)
- Question #190
Which URL database do branch SRX Series devices use when leveraging local Web filtering?
- Question #191
Your task is to provision the Junos security platform to permit transit packets from the Private zone to the External zone and send them through the IPsec VPN. You must also have t...
- Question #193
Which command would you use to enable chassis clustering on an SRX device, setting the cluster ID to 1 and node to 0?
- Question #199
Which two statements are true about route-based VPNs? (Choose two.)
- Question #200
What is the purpose of an address book?
- Question #201
Which two traffic types trigger pass-through firewall user authentication? (Choose two.)
- Question #202
How does the antivirus feature operate once the antivirus license has expired?
- Question #203
What are two valid match conditions for source NAT? (Choose two.)
- Question #204
Which two configuration elements are required for a policy-based VPN? (Choose two.)
- Question #205
Which two statements are true for both express antivirus and full file-based antivirus? (Choose two.)
- Question #206
Which statement is true about interfaces, zones, and routing-instance relationships?
- Question #207
What do you use to group interfaces with similar security requirements?
- Question #208
Which statement is true when express AV detects a virus in a TCP session?
- Question #209
Which statement describes the behavior of a security policy?
- Question #210
What are two rulebase types within an IPS policy on an SRX Series device? (Choose two.)
- Question #211
Click the Exhibit button. Which type of source NAT is configured in the exhibit?
- Question #212
Click the Exhibit button. user@host> show security utm web-filtering statistics UTM web-filtering statistics: Total requests: 298171 white list hit: 0 Black list hit: 0 Queries to...
- Question #213
Click the Exhibit button. [edit security policies from-zone HR to-zone trust] user@host# show policy two { match { source-address subnet_a; destination-address host_b; application...
- Question #214
Review Below: [edit security nat destination] user@host# show pool A { address 10.1.10.5/32; } rule-set 1 { from zone untrust; rule 1A { match { destination-address 100.0.0.1/32; }...
- Question #215
Regarding zone types, which statement is true?
- Question #216
Regarding attacks, which statement is correct?
- Question #217
Click the Exhibit button. [edit schedulers] user@host# show scheduler now { monday all-day; tuesday exclude; wednesday { start-time 07:00:00 stop-time 18:00:00; } thursday { start-...
- Question #218
Which two statements are true regarding proxy ARP? (Choose two.)
- Question #219
For IKE phase 1 negotiations, when is aggressive mode typically used?
- Question #220
A traditional router is better suited than a firewall device for which function?
- Question #221
Which two configuration tasks should you use to implement filter-based forwarding? (Choose two.)
- Question #222
What is the primary function of Junos Intrusion Prevention System (IPS)?
- Question #223
In terms of application and protocol recognition, how does the IPS engine inspect the traffic?
- Question #224
Which two protection mechanisms are supported on SRX Series Services Gateways? (Choose two)
- Question #225
You have a VoIP application that requires external sessions to be initiated into your environment. Your network only has a single public IP address configured on the egress interfa...
- Question #226
Users can define policy to control traffic flow between which two components? (Choose two.)
- Question #227
Which two configurations are valid? (Choose two.)
- Question #228
Which two configuration options must be present for IPv4 transit traffic to pass between the ge- 0/0/0.0 and ge-0/0/2.0 interfaces? (Choose two.)