[2022年01月20日]JN0-1332問題集PDFとテストエンジン 試験問題
検証済みのJN0-1332テスト問題集と解答で正確な66問題解答あります
質問 11
You are asked to enable denial of service protection for a webserver behind an SRX Series device In this scenario, which feature would you enable?
- A. screens
- B. Juniper ATP
- C. Web filtering
- D. App Secure
正解: B
質問 12
You arc designing a high availability firewall solution You select an off-path design instead of an mime design. What arc two reasons for this decision? (Choose two.)
- A. The off-path design uses fewer interfaces at the adjacency layer
- B. The off-path design is more flexible
- C. The off-path design is less complex
- D. The off-path design requires a proper routing configuration for selecting traffic
正解: B
質問 13
Multiple customers use the shared infrastructure of your data center. These customers require isolation for compliance and security reasons.
What would you do to satisfy this requirement?
- A. Deploy multiple physical security control points
- B. Isolate each customer by using different physical hard//are
- C. Place each customers VLANs separate virtual router
- D. Deploy a single logical security control point.
正解: D
質問 14
As part of your design to secure a service provider WAN. you are asked to design a destination-based remote triggered black hole (RTBH) solution What arc two reasons for using this design? (Choose two)
- A. The attack is focused on a single IP address
- B. You want to ensure that the destination IP remains reachable
- C. The attack comes from a limited number of source IP addresses
- D. You do not know the source address of DDoS packets
正解: B
質問 15
Which type of SDN implementation docs Contrail use?
- A. open SDN
- B. OpenFlow
- C. SDN using API
- D. Overlay SDN
正解: A
質問 16
According to Juniper Networks, what are two focus points when designing a secure network? (Choose two.)
- A. performance
- B. distributed control
- C. classification
- D. automation
正解: A,C
質問 17
What are two considerations when performing a risk assessment for assets in a data center? (Choose two.)
- A. Migration of a data center to a cloud provider reduces the economic impact of asset exposure
- B. Insurance is a viable mitigation strategy when performing risk assessment calculations
- C. Exposure of assets could have larger economic impact man loss of assets
- D. Migration of a data center to a cloud prouder increases economic impact of asset loss
正解: D
質問 18
Refer the Exhibit.
You must ensure that return Web traffic is not dropped by the firewall devices What must be implemented on the link between FW A and FW B?
- A. VRRP
- B. asymmetric routing
- C. BFO
- D. session sync
正解: A
質問 19
Exhibit.
In the 3-tier VPN design shown in the exhibit, which function are the Campus A and Campus B SRX Series devices performing?
- A. WAN aggregation
- B. data center firewall
- C. Internet security gateway
- D. VPN bridging
正解: C
質問 20
Refer to the Exhibit.
You are asked to provide a proposal for security elements in the service provider network shown in the exhibit. You must provide DOoS protection for Customer A from potential upstream attackers.
Which statements correct in this scenario?
- A. You should implement DDoS protection to drop offending traffic on the core devices.
- B. You should implement DDoS protection to drop offending traffic on the edge devices closest to the destination of the attack.
- C. You should implement DDoS protection to drop offending traffic on the edge devices closest to the source of the attack.
- D. You should implement DDoS protection to drop offending traffic on the customer edge device.
正解: A
質問 21
Which technology enables IPS inspection for users browsing websites that use Transport Layer Security (TLS)?
- A. SSL forward proxy
- B. SSL reverse proxy
- C. screens
- D. defense in-depth
正解: A
質問 22
You are designing a security solution that includes SRX Series firewalls in a chassis cluster.
In this scenario. which two dements must be part of the design? (Choose two.)
- A. The duster ID must be the same on both SRX Series devices
- B. The physical interface on each SRX Series device making up the reth interface must be in separate L2 domains
- C. The physical interface on each SRX Series device making up the reth interface must be in the same L2 domain
- D. The node 10 must be the same on both SRX Series devices
正解: B
質問 23
Which two features would provide protection from known malware? (Choose two.)
- A. screens
- B. Junker ATP Cloud
- C. ALGs
- D. IPS
正解: A,B
質問 24
When considering the data center, which two security aspects must be considered? (Choose two)
- A. theoretical
- B. physical
- C. logical
- D. conceptual
正解: A
質問 25
In yew network design, you must include a method to block IP addresses from certain countries that will automatically update within the SRX Series devices' security policies.
Which technology would accomplish this goal?
- A. GeolP
- B. dynamic DNS
- C. IPS
- D. UTM
正解: B
質問 26
Which feature is evaluated first when a packet is received on an interface of an SRX Series device?
- A. ALG
- B. screens
- C. stateless firewall filter
- D. UTM
正解: D
質問 27
When designing security for the service provider WAN. you are asked to implement unicast reverse path forwarding (uRPF) in this scenario. on which interfaces would you choose to implement loose mode uRPF?
- A. On interfaces where the best forwarding path fee routes is through the receiving interface
- B. On interfaces that participate in multihomes environments
- C. On interfaces where all data originates on the same network as that of the router interface
- D. On interfaces that are user access interfaces
正解: D
質問 28
When two security services process a packet whether it is being processed in the first-packet path or the fast path? (Choose two.)
- A. ALG
- B. route lookup
- C. policy lookup
- D. screen options
正解: B,C
質問 29
When considering data center security. which aspect represents the weakest link?
- A. application software bugs
- B. firewall performance
- C. IPS signatures
- D. people
正解: C
質問 30
Your network design requires that you ensure privacy between WAN endpoints.
Which transport technology requires an IPsec overlay to satisfy this requirement?
- A. internet
- B. leased line
- C. L3VPN
- D. L2VPN
正解: C
質問 31
......
Juniper JN0-1332 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
| トピック 7 |
|
Juniper JN0-1332テストエンジンPDFで完全版無料問題集:https://www.goshiken.com/Juniper/JN0-1332-mondaishu.html