Juniper jn0-634 Free Practice Questions

NEW QUESTION 1
SRX Series devices with AppSecure support which three custom signatures? (Choose three.)

• A. MAC address-based mapping
• B. latency detection mapping
• C. IP protocol-based mapping
• D. ICMP-based mapping
• E. Layer 7-based signatures

Answer: CDE

NEW QUESTION 2
Click the Exhibit button.

Referring to the exhibit, how many AppTrack logs will be generated for an HTTP session lasting 12 minutes?

• A. 4
• B. 2
• C. 1
• D. 3

Answer: A

NEW QUESTION 3
Which AppSecure feature identifies applications that are present in traffic?

• A. AppID
• B. AppTrack
• C. AppFW
• D. AppQoS

Answer: A

NEW QUESTION 4
Click the Exhibit button.

Security Director is reporting the events shown in the exhibit.
If the fallback parameter is set to pass traffic, what would cause the events?

• A. The files are too large for the antivirus engine to process.
• B. The files are not scanned because they were permitted by a security policy.
• C. The files are not scanned because they are the wrong file format.
• D. The antivirus engine is unable to re-encrypt the files.

Answer: A

NEW QUESTION 5
Which browser is supported by Security Director with Logging and Reporting?

• A. Firefox
• B. Agora
• C. PowerBrowser
• D. Mosaic

Answer: A

NEW QUESTION 6
Click the Exhibit button.

You have enabled mixed mode on an SRX Series device. You are unable to commit the configuration shown in the exhibit.
What is the problem in this scenario?

• A. A Layer 3 interface has not been configured on VLAN v10.
• B. The trust zone cannot contain both Layer 2 and Layer 3 interfaces.
• C. STP is not enabled under the host-inbound-traffic system services hierarchy on the trust and protected security zones.
• D. An IRB interface has not been configured.

Answer: B

NEW QUESTION 7
Your network includes SRX Series devices configured with AppSecure.
Which two statements regarding the application identification engine are true? (Choose two.)

• A. Applications are only matched in traffic flows associated with client-to-server sessions.
• B. Applications are matched in traffic flows associated with client-to-server and server-to- client sessions.
• C. If the packets entering the engine match a known application, then processing continues.
• D. If the packets entering the engine match a known application, then processing stops.

Answer: BD

NEW QUESTION 8
Click the Exhibit button.

Referring to the exhibit, which statement is true?

• A. E-mails from the user@example.com address are marked with SPAM in the subject line by the spam block list server.
• B. E-mails from the user@example.com address are blocked by the spam list server.
• C. E-mails from the user@example.com address are blocked by the reject blacklist.
• D. E-mails from the user@example.com address are allowed by the allow whitelist.

Answer: D

NEW QUESTION 9
Click the Exhibit button.

Referring to the exhibit, the host has been automatically blocked from communicating on the network because a malicious file was downloaded. You cleaned the infected host and changed the investigation status to Resolved – Fixed.
What does Sky ATP do if the host then attempts to download a malicious file that would result in a threat score of 10?

• A. Sky ATP does not log the connection attempt and an SRX Series device does not allow the host to communicate on the network.
• B. Sky ATP logs the connection attempt and an SRX Series device does not allow the host to communicate on the network.
• C. Sky ATP logs the connection attempt and an SRX Series device allows the host to communicate on the network.
• D. Sky ATP does not log the connection attempt and an SRX Series device allows the host to communicate on the network.

Answer: C

NEW QUESTION 10
You have been notified by your colocation provider that your infrastructure racks will no longer be adjacent to each other.
In this scenario, which technology would you use to secure all Layer 2 and Layer 3 traffic between racks?

• A. IPsec
• B. GRE
• C. 802.1BR
• D. MACsec

Answer: D

NEW QUESTION 11
Which two statements about the integrated user firewall feature of the Junos OS are true? (Choose two.)

• A. The maximum number of supported active directory servers is ten.
• B. IPv6 addresses are not supported.
• C. The maximum number of supported active directory servers is five.
• D. IPv6 addresses are supported.

Answer: AB

NEW QUESTION 12
Click the Exhibit button.

Referring to the configuration shown in the exhibit, which statement explains why traffic matching the IDP signature DNS:OVERFLOW:TOO-LONG-TCP-MSG is not being stopped by the SRX Series device?

• A. The security policy dmz-pol1 has an action of permit.
• B. The IDP policy idp-pol1 is not configured as active.
• C. The IDP rule r2 has an ip-action value of notify.
• D. The IDP rule r1 has an action of ignore-connection.

Answer: B

NEW QUESTION 13
You want to review AppTrack statistics to determine the characteristics of the traffic being monitored.
Which operational mode command would accomplish this task on an SRX Series device?

• A. show services application-identification statistics applications
• B. show services application-identification application detail
• C. show security application-tracking counters
• D. show services security-intelligence statistics

Answer: A

NEW QUESTION 14
Click the Exhibit button.

Referring to the exhibit, which two statements are true? (Choose two.)

• A. The application firewall rule is not inspecting encrypted traffic.
• B. There are two rules configured in the rule set.
• C. The rule set uses application definitions from the predefined library.
• D. The configured rule set matches most analyzed applications.

Answer: AC

NEW QUESTION 15
Your manager has identified that employees are spending too much time posting on a social media site. You are asked to block user from posting on this site, but they should still be able to access any other site on the Internet.
In this scenario, which AppSecure feature will accomplish this task?

• A. AppQoS
• B. AppTrack
• C. APpFW
• D. APBR

Answer: C

NEW QUESTION 16
Click the Exhibit button.

You have recently committed the IPS policy shown in the exhibit. When evaluating the expected behavior, you notice that you have a session that matches all of the rules in your IPS policy.
In this scenario, which action would be taken?

• A. ignore-connection
• B. drop packet
• C. no-action
• D. close-client-and-server

Answer: C

NEW QUESTION 17
Which feature of Sky ATP is deployed with Software-Defined Secure Networks?

• A. zero-day threat mitigation
• B. software image snapshot support
• C. device inventory management
• D. service redundancy daemon configuration support

Answer: A

NEW QUESTION 18
Click the Exhibit button.

According to the policy shown in the exhibit, which application-services traffic will be processed first?

• A. the application traffic matchings the IDP rules
• B. the application traffic matchings the utm-policy log rule set
• C. the application traffic matchings the utm-policy wf-policy_websense-home rules
• D. the application traffic matchings the application-firewall rule-set demo-tracking_1 rule

Answer: A

NEW QUESTION 19
You are scanning files that are being transferred from the Internet to hosts on your internal network with Sky ATP. However, you notice that files that are 1 GB in size are not being scanned by Sky ATP.
In this scenario, which two statements are true? (Choose two.)

• A. The Sky ATP failback option is set to permit.
• B. The Sky ATP engine or the SRX Series device is too busy.
• C. The 1 GB file size is larger than the scan size limit for Sky ATP.
• D. The Sky ATP policy on the SRX Series device is misconfigured.

Answer: CD

NEW QUESTION 20
Which statement about transparent mode on an SRX340 is true?

• A. You must reboot the device after configuring transparent mode.
• B. Security policies applied to transparent mode zones require Layer 2 address matching.
• C. Screens are not supported in transparent mode security zones.
• D. All interfaces on the device must be configured with the ethernet-switching protocol family.

Answer: A

NEW QUESTION 21
Your network includes SRX Series devices at all headquarter, data center, and branch locations. The headquarter and data center locations use high-end SRX Series devices, and the branch locations use branch SRX Series devices. You are asked to deploy IPS on the SRX Series devices using one of the available IPS deployment modes.
In this scenario, which two statements are true? (Choose two.)

• A. Inline tap mode provides enforcement.
• B. Inline tap mode can be used at all locations.
• C. Integrated mode can be used at all locations.
• D. Integrated mode provides enforcement.

Answer: CD

NEW QUESTION 22
Which three components are part of the AppSecure services suite? (Choose three.)

• A. IDP
• B. Sky ATP
• C. AppQoS
• D. AppFW
• E. Web filtering

Answer: ACD

NEW QUESTION 23
......