JN0-533 Exam Questions

A host in the untrust zone sends 1000 SYN packets in a single second to a host in your trust zone destined for port 80. Juniper JN0-533 Exam Referring to the exhibit, which stateme...

Given the output shown in the exhibit, which command would you use to view the number of attacks that have been blocked by the Screen options on the Untrust zone?

Based on the output shown in the exhibit, in which log were these events displayed? Date Time Module Level Type Description 2012-11-30 12:49:41 system warn 00528 SSH: Password auth...

Referring to the exhibit, what does this output show?

Which ScreenOS security feature helps protect against port scans and denial of service attacks?

What is the initial default username and password for all ScreenOS devices?

What is a virtual system?

What is a zone?

What is the function of NAT?

On a ScreenOS device, which word appears at the beginning of configuration commands?

Which action does a ScreenOS device perform first when processing a packet?

On a ScreenOS device, which three processes does the task CPU handle? (Choose three.)

A ScreenOS device evaluates five primary elements when performing a security policy check on a new session. Which five elements are evaluated?

Juniper JN0-533 Exam You want to enable IPv6 on your ScreenOS device. Which command should you use to accomplish this goal?

You have two interfaces in ZoneA and traffic is passing without any policy configured. You want to control the traffic between the two interfaces. Which two actions will allow this...

What is an aggregate interface?

Which two statements are true about redundant interfaces? (Choose two.)

Which two actions are performed by a read/write vsys administrator? (Choose two.)

When you create a new virtual system, which zone is automatically created within the vsys- specific VR?

What is the purpose of a virtual system profile?

What is required to route traffic from one virtual system to another virtual system?

Policy-based routing (PBR) policies can be bound to which three ScreenOS objects? (Choose three.)

Policy-based routing consists of which three ScreenOS objects? (Choose three.)

What are two routing tables contained in a virtual router? (Choose two.)

Which dynamic routing protocol does IPv6 use?

A routing table contains an IBGP route, a RIP route, an OSPF external Type 2 route, and an EBGP route for 192.168.0.0/16. When the router receives traffic destined for, which route...

Users on the 10.10.10.0/24 subnet are reporting connectivity problems. While troubleshooting, you see the output shown in the exhibit. What is the cause of the route flapping? Juni...

Which two statements are true regarding the route shown in the exhibit? (Choose two.)

Which two statements are true about the default route configuration based on the output shown in the exhibit? (Choose two.)

Network traffic with a source IP of 192.168.100.60, destination IP of 8.8.8.8, and a destination port of 80 is sent through the ScreenOS device. The inbound zone is Trust, the outb...

You are setting up security policies to allow access to the servers on the 1.1.1.0/24 subnet. Referring to the exhibit, which two host addresses will be able to access the Web serv...

Given the policy and address information for the three hosts shown in the exhibit, which two statements are correct? (Choose two.) Juniper JN0-533 Exam

FTP connections from host 10.20.1.10 to server 192.168.1.100 are not working. You produce the output shown in the exhibit. What is causing the traffic problem? ssg20-> set address...

Juniper JN0-533 Exam In the exhibit, you have configured the MIP address 1.1.8.64 on a ScreenOS device. Which statement is correct?

In the network shown in the exhibit, you have been asked to enable users in the Untrust zone to contact Server1 on TCP port 80 using IP address 1.1.1.1. You also need to allow Serv...

You need to add a DIP pool to the interface shown in the exhibit. The DIP pool has been assigned the IP addresses 20.20.20.1 through 20.20.20.10. Which command would you use to acc...

Referring to the debug output shown in the exhibit, which NAT configuration is being used? ns5gt-> get int Interfaces in vsys Root: Name IP Address Zone MAC VLAN State VSD eth1 192...

You configure NAT on your ScreenOS device to route the services shown in the exhibit to the internal addresses. Which commands will you use to configure this scenario?

What are two advantages for using the count parameter on a security policy? (Choose two.)

How is the maximum bandwidth pool allocated when all policies share the same priority?

An SSG5 has a default configuration loaded on it. Which two statements are correct? (Choose two.)

What are three required policy elements? (Choose three.)

What are three policy types? (Choose three.)

In a policy, which two statements are true about the no-hw-sess command? (Choose two.)

What is the default timeout for a fully established TCP session?

Traffic is not passing the ScreenOS device due to an incorrectly configured policy. You must determine exactly which security policy the traffic is using. Which two CLI commands sh...

Given the following output, what do you know about this session? id /s01,vsys 0,flag 18200450/4004/0083,policy 10,time 5, dip 0 module 0 if 14(nspflag 0905):10.10.10.10/51112->8.8....

HostA is in the Trust zone and has an IP address of. ServerA is a Web server in the DMZ zone and has an IP address of. Which three configuration statements are required to allow tr...

You are using debug to determine which policy is used for Web traffic from host 10.20.1.5 to server 10.240.1.100. Which flow filter will only capture traffic related to this scenar...

You have created a site-to-site IPsec VPN between two devices. You want to keep the tunnel up at all times, even when no user traffic is using it. Which two configuration additions...