Juniper
JN0-633 · Question #178
JN0-633 Question #178: Real Exam Question with Answer & Explanation
Sign in or unlock JN0-633 to reveal the answer and full explanation for question #178. The question stem and answer options stay visible for context.
Question
Click the Exhibit button. {primarynode0}[edit security idp idp-policy test-ips-policy] user@host# show rulebase-ips { rule r1 { match { source-address any; attacks { predefined-attack-groups "HTTP - All"; } } then { action { drop-packet; } } terminal; } rule r2 { match { source-address 172.16.0.0/12; attacks { predefined-attack-groups "FTP - All"; } then { action { no-action; } } } rule r3 { match { source-address 172.16.0.0/12; attacks { predefined-attack-groups "TELNET - All"; } } then { action { no-action; } } } rule r4 { match { source-address any; attacks { predefined-attack-groups "FTP - All"; } } then { action { drop-packet; } } } } A user with IP address 172.301.100 initiates an FTP session to a host with IP address 10.100.1.50 through an SRX Series device and is subject to the IPS policy shown in the exhibit. If the user tries to execute thecd ~rootcommand, which statement is correct?
Options
- AThe FTP command will be denied with the offending packet dropped and the session will be
- BThe FTP command will be denied with the offending packet dropped and the rest of the FTP
- CThe FTP command will be allowed to execute and the rest of the FTP session will be ignored by
- DThe FTP command will be allowed to execute but any other attacks executed during the session
Unlock JN0-633 to see the answer
You've previewed enough free JN0-633 questions. Unlock JN0-633 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.