• Home
  • Articles
  • Easily To Pass New Juniper JN0-231 Dumps with 103 Questions [Q55-Q75]

Easily To Pass New Juniper JN0-231 Dumps with 103 Questions [Q55-Q75]

Share

Easily To Pass New Juniper JN0-231 Dumps with 103 Questions

Latest JN0-231 Study Guides 2023 - With Test Engine PDF

NEW QUESTION # 55
Which two notifications are available when the antivirus engine detects and infected file? (Choose two.)

  • A. SNMP notifications
  • B. SMS notifications
  • C. Protocol-only notification
  • D. e-mail notifications

Answer: C,D


NEW QUESTION # 56
Which statement is correct about Web filtering?

  • A. The decision to permit or deny is based on the category to which a URL belongs.
  • B. The decision to permit or deny is based on the body content of an HTTP packet.
  • C. The Juniper Enhanced Web Filtering solution requires a locally managed server.
  • D. The client can receive an e-mail notification when traffic is blocked.

Answer: A

Explanation:
Web filtering is a feature that allows administrators to control access to websites by categorizing URLs into different categories such as gambling, social networking, or adult content. The decision to permit or deny access to a website is based on the category to which a URL belongs. This is done by comparing the URL against a database of categorized websites and making a decision based on the policy defined by the administrator.
Reference:
Juniper Networks SRX Series Services Gateway Web Filtering Configuration Guide: https://www.juniper.net/documentation/en_US/release-independent/junos/topics/topic-map/security-services-web-filtering.html


NEW QUESTION # 57
Which source NAT rule set would be used when a packet matches the conditions in multiple rule sets?

  • A. The last rule set matched will be used
  • B. The most specific rule set will be used
  • C. The least specific rule set will be used
  • D. The first rule set matched will be used

Answer: D


NEW QUESTION # 58
Which two UTM features should be used for tracking productivity and corporate user behavior? (Choose two.)

  • A. the Web filtering UTM feature
  • B. the content filtering UTM feature
  • C. the antispam UTM feature
  • D. the antivirus UTM feature

Answer: A,B


NEW QUESTION # 59
Which two statements are correct about the default behavior on SRX Series devices? (Choose two.)

  • A. The SRX Series device supports stateless firewalls filters.
  • B. The SRX Series device is in flow mode.
  • C. The SRX Series device is in packet mode.
  • D. The SRX Series device does not support stateless firewall filters.

Answer: A,B


NEW QUESTION # 60
Which type of security policy protect restricted services from running on non-standard ports?

  • A. Sky ATP
  • B. antivirus
  • C. IDP
  • D. Application firewall

Answer: C


NEW QUESTION # 61
SRX Series devices have a maximum of how many rollback configurations?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: B


NEW QUESTION # 62
Which two statements are correct about security zones? (choose two)

  • A. Security zones use security policies that enforce rules for the transit traffic
  • B. Security zones use address books to link username to IP addresses.
  • C. Security zones use packet filters to prevent communication between management ports
  • D. Security zones use a stateful firewall to provide secure network connections

Answer: A,D


NEW QUESTION # 63
Which two statements are true about security policy actions? (Choose two.)

  • A. The deny action drops the traffic and sends a message to the source device.
  • B. The deny action silently drop the traffic.
  • C. The reject action silently drops the traffic.
  • D. The reject action drops the traffic and sends a message to the source device.

Answer: B,D


NEW QUESTION # 64
Which flow module components handles processing for UTM?

  • A. Screen options
  • B. Policy
  • C. Services
  • D. Zones

Answer: C


NEW QUESTION # 65
Which two statements are correct about the null zone on an SRX Series device? (Choose two.)

  • A. You must enable the null zone before you can place interfaces into it.
  • B. The null zone is a functional security zone.
  • C. Traffic sent or received by an interface in the null zone is discarded.
  • D. The null zone is created by default.

Answer: C,D

Explanation:
According to the Juniper SRX Series Services Guide, the null zone is a predefined security zone that is created on the SRX Series device when it is booted. Traffic that is sent to or received on an interface in the null zone is discarded. The null zone is not a functional security zone, so you cannot enable or disable it.


NEW QUESTION # 66
You configure and applied several global policies and some of the policies have overlapping match criteria.

  • A. In this scenario, how are these global policies applies?
  • B. The first matched policy is the only policy applied.
  • C. The least restrictive policy that matches is applied.
  • D. The most restrictive that matches is applied.

Answer: A


NEW QUESTION # 67
Which statement is correct about unified security policies on an SRX Series device?

  • A. A zone-based policy is always evaluated first.
  • B. The first policy rule is applied regardless of the policy level.
  • C. The most restrictive policy is applied regardless of the policy level.
  • D. A global policy is always evaluated first.

Answer: A


NEW QUESTION # 68
What should you configure if you want to translate private source IP address to a single public IP address?

  • A. Source NAT
  • B. Content filtering
  • C. Security Director
  • D. Destination NAT

Answer: A


NEW QUESTION # 69
Which two criteria should a zone-based security policy include? (Choose two.)

  • A. zone context
  • B. an action
  • C. a source port
  • D. a destination port

Answer: B,D


NEW QUESTION # 70
What are three primary match criteria used in a Junos security policy? (Choose three.)

  • A. destination address
  • B. source port
  • C. application
  • D. class
  • E. source address

Answer: A,C,E


NEW QUESTION # 71
What are two valid address books? (Choose two.)

  • A. 66.129.239.154/24
  • B. 66.129.239.0/24
  • C. 66.129.239.50/25
  • D. 66.129.239.128/25

Answer: A,C


NEW QUESTION # 72
Which two statements are correct about the integrated user firewall feature?(Choose two.)

  • A. It supports IPv4 addresses.
  • B. It maps IP addresses to individual users.
  • C. It uses the LDAP protocol.
  • D. It allows tracking of non-Windows Active Directory users.

Answer: B,D


NEW QUESTION # 73
BY default, revenue interface are placed into which system-defined security zone on an SRX series device?

  • A. Junos-trust
  • B. Null
  • C. untrust
  • D. Trust

Answer: C


NEW QUESTION # 74
What must be enabled on an SRX Series device for the reporting engine to create reports?

  • A. SNMP
  • B. security logging
  • C. system logging
  • D. packet capture

Answer: B


NEW QUESTION # 75
......

JN0-231 Dumps and Exam Test Engine: https://testinsides.actualpdf.com/JN0-231-real-questions.html

Related Articles

more
Juniper JN0-231 Certification Practice Exam