JN0-635 Exam Questions
165 real JN0-635 exam questions with expert-verified answers and explanations. Page 3 of 4.
- Question #103
You are asked to secure your network against TOR network traffic. Which two Juniper products would accomplish this task? (Choose two.)
- Question #104
You are asked to implement the session cache feature on an SRX5400. In this scenario, what information does a session cache entry record? (Choose two.)
- Question #105
Which feature of Sky ATP is deployed with Policy Enforcer?
- Question #106
Click the Exhibit button. Referring to the exhibit, which two statements are true? (Choose two.)
- Question #108
Click the Exhibit button. A user is trying to reach a company's website, but the connection errors out. The security policies are configured correctly. Referring to the exhibit, wh...
- Question #110
You are trying to get a SSH honeypot set up on a Juniper ATP Appliance collector. The collector is running on hardware with two physical interfaces and two physical CPU cores. The...
- Question #111
You correctly configured a security policy to deny certain traffic, but logs reveal that traffic is still allowed. Which specific traceoption flag will help you troubleshoot this p...
- Question #112
Click the Exhibit button. You are asked to look at a configuration that is designed to take all traffic with a specific source IP address and forward the traffic to a traffic analy...
- Question #113
When would you use the port-overloading-factor 1 setting?
- Question #115
You are asked to configure an IPsec VPN between two SRX Series devices that allows for processing of CoS on the intermediate routers. What will satisfy this requirement?
- Question #116
Click the Exhibit button. You deployed a site-to-site IPsec VPN connecting two data centers together using SRX5800s. After examining the performance of the IPsec VPN, you decide to...
- Question #117
Click the Exhibit button. You have configured tenant systems on your SRX Series device. Referring to the exhibit, which two actions should you take to facilitate inter-TSYS communi...
- Question #118
Click the Exhibit button. Referring to the exhibit, which statement is true?
- Question #119
Click the Exhibit button. Your company has purchased a competitor and now must connect the new network to the existing one. The competitor's gateway device is receiving its ISP add...
- Question #120
Click the Exhibit button. Which type of NAT is shown in the exhibit?
- Question #122
Click the Exhibit button. Referring to the exhibit, what is the maximum number of zones that are able to be created within all logical systems?
- Question #123
Click the Exhibit button. Referring to the exhibit, which three types of traffic would be examined by the IPS policy between Switch-1 and Switch-2? (Choose three.)
- Question #124
Click the Exhibit button. A host is unable to communicate with a webserver. Referring to the exhibit, which statement is correct?
- Question #125
Click the Exhibit button. Which statement is correct regarding the information show in the exhibit?
- Question #126
In which two ways are tenant systems different from logical systems? (Choose two.)
- Question #127
Which two statements are true about ADVPN members? (Choose two.)
- Question #128
Which two VPN features are supported with CoS-based IPsec VPNs? (Choose two.)
- Question #129
Click the Exhibit button. Given the command output shown in the exhibit, which two statements are true? (Choose two.)
- Question #130
Click the Exhibit button. Branch 1 and Branch 2 have an active VPN tunnel configured, but internal hosts cannot communicate with each other. Referring to the exhibit, which type of...
- Question #131
Your SRX Series device does not see the SYN packet. What is the default action in this scenario?
- Question #132
Click the Exhibit button. Referring to the exhibit, you are attempting to enable IPsec power mode to improve IPsec VPN performance. However, you are unable to use IPsec power mode....
- Question #133
Click the Exhibit button. Referring to the exhibit, which IPS deployment mode is running on the SRX5800 device?
- Question #134
In a Juniper ATP Appliance, what would be a reason for the mitigation rule to be in the failed- remove state?
- Question #135
An administrator wants to implement persistent NAT for an internal resource so that external hosts are able to initiate communications to the resource, with the internal resource h...
- Question #136
How does secure wire mode differ from transparent mode?
- Question #137
What are two important functions of the Juniper Networks ATP Appliance solution? (Choose two.)
- Question #138
Click the Exhibit button. You have two hosts on the same subnet connecting to an SRX340 on interfaces ge-0/0/4 and ge- 0/0/5. However, the two hosts cannot communicate with each ot...
- Question #139
You have downloaded and initiated the installation of the application package for the JATP Appliance on an SRX1500. You must confirm that the installation of the application packag...
- Question #140
You have a remote access VPN where the remote users are using the NCP client. The remote users can access the internal corporate resources as intended; however, traffic that is des...
- Question #141
Click the Exhibit button. Referring to the exhibit, which two statements are true? (Choose two.)
- Question #142
Click the Exhibit button. You have configured an ADVPN that is operational. However, OSPF will not establish correctly across the ADVPN tunnels. Referring to the exhibit, which two...
- Question #143
Which two modes are supported on Juniper Sky ATP? (Choose two.)
- Question #144
You configured a security policy permitting traffic from the trust zone to the DMZ zone, inserted the new policy at the top of the list, and successfully committed it to the SRX Se...
- Question #145
A user is unable to reach a necessary resource. You discover the path through the SRX Series device includes several security features. The traffic is not being evaluated by any se...
- Question #146
Malware that is detonated by the JATP sandbox must be able to communicate with the Internet without being able to harm your local network resources. Which statement is correct in t...
- Question #147
Click the Exhibit button. When attempting to enroll an SRX Series device to JATP, you receive the error shown in the exhibit. What is the cause of the error?
- Question #149
Click the Exhibit button. Referring to the exhibit, which three topologies are supported by Policy Enforcer? (Choose three.)
- Question #150
Which two additional configuration actions are necessary for the third-party feed shown in the exhibit to work properly? (Choose two.)
- Question #151
You issue the command shown in the exhibit. Which policy will be active for the identified traffic?
- Question #152
You have designed the firewall filter shown in the exhibit to limit SSH control traffic to yours SRX Series device without affecting other traffic. Which two statement are true in...
- Question #153
You have noticed a high number of TCP-based attacks directed toward your primary edge device. You are asked to configure the IDP feature on your SRX Series device to block this att...
- Question #154
Which two log format types are supported by the JATP appliance? (Choose two.)
- Question #155
A hub member of an ADVPN is not functioning correctly. Referring the exhibit, which action should you take to solve the problem?
- Question #156
Your organization has multiple Active Directory domain to control user access. You must ensure that security polices are passing traffic based upon the user's access rights. What w...
- Question #157
According to the log shown in the exhibit, you notice the IPsec session is not establishing. What is the reason for this behavior?