JN0-332 Real PDF Exam Material

Posted by David Smith
1
Education & Training
May 20, 2016
92 Views

Test Information:

Total Questions: 519

Test Number: JN0-332

Vendor Name: Juniper

Cert Name:  JNCIS

Test Name: Juniper Networks Certified Internet Specialist, SEC (JNCIS-SEC)

Official Site:http://www.examsboost.com

For More Details: http://www.examsboost.com/test/JN0-332/                                                                                                                                               

Question: 1

   

Which configuration keyword ensures that all in-progress sessions are re-evaluated upon committing a security policy change?

 

A. policy-rematch

B. policy-evaluate

C. rematch-policy

D. evaluate-policy

 

Answer: A   

 

Question: 2

 

Click the Exhibit button.

Description: https://2.bp.blogspot.com/-ldde4B-ncvQ/Vz7wCUdiTDI/AAAAAAAAAcE/MVyOYChByXwDxmMvJIP-uGQ-8C7vGzQ_wCLcB/s640/1.jpg

You need to alter the security policy shown in the exhibit to send matching traffic to an IPsec VPN tunnel. Which command causes traffic to be sent through an IPsec VPN named remote-vpn?

 

A. [edit security policies from-zone trust to-zone untrust]

user@host# set policy tunnel-traffic then tunnel remote-vpn

B. [edit security policies from-zone trust to-zone untrust]

user@host# set policy tunnel-traffic then tunnel ipsec-vpn remote-vpn

C. [edit security policies from-zone trust to-zone untrust]

user@host# set policy tunnel-traffic then permit ipsec-vpn remote-vpn

D. [edit security policies from-zone trust to-zone untrust]

user@host# set policy tunnel-traffic then permit tunnel ipsec-vpn remote-vpn

 

Answer: D   

 

Question: 3

 

Which three security concerns can be addressed by a tunnel mode IPsec VPN secured by AH? (Choose three.)

 

A. data integrity

B. data confidentiality

C. data authentication

D. outer IP header confidentiality

E. outer IP header authentication

 

Answer: A, C, E   

 

Question: 4

 

You must configure a SCREEN option that would protect your router from a session table flood.Which configuration meets this requirement?

 

A. [edit security screen]

user@host# show

ids-option protectFromFlood {

       icmp {

            ip-sweep threshold 5000;

            flood threshold 2000;

       }

}

B. [edit security screen]

user@host# show

ids-option protectFromFlood {

      tcp {

          syn-flood {

              attack-threshold 2000;

              destination-threshold 2000;

          }

      }

}

C. [edit security screen]

user@host# show

ids-option protectFromFlood {

       udp {

           flood threshold 5000;

       }

}

D. [edit security screen]

user@host# show

ids-option protectFromFlood {

Comments
avatar
Please sign in to add comment.
Advertise on APSense
This advertising space is available.
Post Your Ad Here
More Articles