Juniper JN0-336 Dumps (V8.02) Are Online to Master the Security, Specialist (JNCIS-SEC) Certification: Pass Your JN0-336 Exam Successfully

1. Exhibit

Using the information from the exhibit, which statement is correct?

2. Exhibit

When trying to set up a server protection SSL proxy, you receive the error shown.

What are two reasons for this error? (Choose two.)

3. Exhibit

Referring to the exhibit which statement is true?

4. Exhibit

Referring to the exhibit, which two statements are true? (Choose two.)

5. Which two types of SSL proxy are available on SRX Series devices? (Choose two.)

6. Which statement about security policy schedulers is correct?

7. You are asked to create an IPS-exempt rule base to eliminate false positives from happening.

Which two configuration parameters are available to exclude traffic from being examined? (Choose two.)

8. You enable chassis clustering on two devices and assign a cluster ID and a node ID to each device.

In this scenario, what is the correct order for rebooting the devices?

9. You want to manually failover the primary Routing Engine in an SRX Series high availability cluster pair.

Which step is necessary to accomplish this task?

10. Which two statements are true about the vSRX? (Choose two.)

11. Your manager asks you to provide firewall and NAT services in a private cloud.

Which two solutions will fulfill the minimum requirements for this deployment? (Choose two.)

12. Regarding static attack object groups, which two statements are true? (Choose two.)

13. Which two statements are true about the fab interface in a chassis cluster? (Choose two.)

14. You are asked to ensure that if the session table on your SRX Series device gets close to exhausting its resources, that you enforce a more aggress.ve age-out of existing flows.

In this scenario, which two statements are correct? (Choose two.)

15. Which two statements are correct about SSL proxy server protection? (Choose two.)

16. Which statement regarding Juniper Identity Management Service (JIMS) domain PC probes is true?

17. Exhibit

Which two statements are correct about the configuration shown in the exhibit? (Choose two.)

18. How does the SSL proxy detect if encryption is being used?

19. You are asked to find systems running applications that increase the risks on your network. You must ensure these systems are processed through IPS and Juniper ATP Cloud for malware and virus protection.

Which Juniper Networks solution will accomplish this task?

20. You are asked to reduce the load that the JIMS server places on your

Which action should you take in this situation?

21. Which three statements about SRX Series device chassis clusters are true? (Choose three.)

22. You have deployed an SRX300 Series device and determined that files have stopped being scanned.

In this scenario, what is a reason for this problem?

23. Exhibit

Referring to the SRX Series flow module diagram shown in the exhibit, where is application security processed?

24. 1.A client has attempted communication with a known command-and-control server and it has reached the configured threat level threshold.

Which feed will the clients IP address be automatically added to in this situation?

25. Which two devices would you use for DDoS protection with Policy Enforcer? (Choose two.)

26. You are asked to determine how much traffic a popular gaming application is generating on your network.

Which action will you perform to accomplish this task?

27. You have implemented a vSRX in your VMware environment. You want to implement a second vSRX Series device and enable chassis clustering.

Which two statements are correct in this scenario about the control-link settings? (Choose two.)

28. Exhibit

You just finished setting up your command-and-control (C&C) category with Juniper ATP Cloud. You notice that all of the feeds have zero objects in them.

Which statement is correct in this scenario?

29. What are two types of system logs that Junos generates? (Choose two.)

30. Your company is using the Juniper ATP Cloud free model. The current inspection profile is set at 10 MB You are asked to configure ATP Cloud so that executable files up to 30 MB can be scanned while at the same time minimizing the change in scan time for other file types.

Which configuration should you use in this scenario?

31. What are three capabilities of AppQoS? (Choose three.)

32. What are two benefits of using a vSRX in a software-defined network? (Choose two.)

33. You want to deploy a virtualized SRX in your environment.

In this scenario, why would you use a vSRX instead of a cSRX? (Choose two.)

34. After JSA receives external events and flows, which two steps occur? (Choose two.)

35. What information does encrypted traffic insights (ETI) use to notify SRX Series devices about known malware sites?

36. Which two statements about SRX Series device chassis clusters are true? (Choose two.)

37. Which two statements are true about mixing traditional and unified security policies? (Choose two.)

38. You want to use IPS signatures to monitor traffic.

Which module in the AppSecure suite will help in this task?

39. When a security policy is deleted, which statement is correct about the default behavior of active sessions allowed by that policy?

40. Exhibit

You are trying to create a security policy on your SRX Series device that permits HTTP traffic from your private 172 25.11.0/24 subnet to the Internet You create a policy named permit-http between the trust and untrust zones that permits HTTP traffic. When you issue a commit command to apply the configuration changes, the commit fails with the error shown in the exhibit.

Which two actions would correct the error? (Choose two.)