Exhibit
Referring to the exhibit, which statement is true?
A. This custom block list feed will be used before the Juniper Seclntel
B. This custom block list feed cannot be saved if the Juniper Seclntel block list feed is configured.
C. This custom block list feed will be used instead of the Juniper Seclntel block list feed
D. This custom block list feed will be used after the Juniper Seclntel block list feed.
The monitor traffic interface command is being used to capture the packets destined to and the from the SRX Series device. In this scenario, which two statements related to the feature are true? (Choose two.)
A. This feature does not capture transit traffic.
B. This feature captures ICMP traffic to and from the SRX Series device.
C. This feature is supported on high-end SRX Series devices only.
D. This feature is supported on both branch and high-end SRX Series devices.
You opened a support ticket with JTAC for your Juniper ATP appliance. JTAC asks you to set up access to the device using the reverse SSH connection. Which three setting must be configured to satisfy this request? (Choose three.)
A. Enable JTAC remote access
B. Create a temporary root account.
C. Enable a JATP support account.
D. Create a temporary admin account.
E. Enable remote support.
SRX Series device enrollment with Policy Enforcer fails To debug further, the user issues the following command show configuration services security--intelligence url
https : //cloudfeeds . argon . juniperaecurity . net/api/manifeat. xml
and receives the following output:
What is the problem in this scenario?
A. The device is directly enrolled with Juniper ATP Cloud.
B. The device is already enrolled with Policy Enforcer.
C. The SRX Series device does not have a valid license.
D. Junos Space does not have matching schema based on the
Your Source NAT implementation uses an address pool that contains multiple IPv4 addresses Your users report that when they establish more than one session with an external application, they are prompted to authenticate multiple times External hosts must not be able to establish sessions with internal network hosts.
What will solve this problem?
A. Disable PAT.
B. Enable destination NAT.
C. Enable persistent NAT
D. Enable address persistence.
Which statement is true about persistent NAT types?
A. The target-host-port parameter cannot be used with IPv4 addresses in NAT46.
B. The target-host parameter cannot be used with IPv6 addressee in NAT64.
C. The target-host parameter cannot be used with IPv4 addresses in NAT46
D. The target-host-port parameter cannot be used with IPv6 addresses in NAT64
Which two statements are correct regarding tenant systems on SRX Series devices? (Choose two.)
A. A maximum of 32 tenant systems can be configured on a physical SRX device.
B. All tenant systems share a single routing protocol process.
C. Each tenant system runs its own instance of the routing protocol process
D. A maximum of 500 tenant systems can be configured on a physical SRX device.
Click the Exhibit button.
Referring to the exhibit, which three topologies are supported by Policy Enforcer? (Choose three.)
A. Topology 3
B. Topology 5
C. Topology 2
D. Topology 4
E. Topology 1
You are configuring transparent mode on an SRX Series device. You must permit IP-based traffic only, and BPDUs must be restricted to the VLANs from which they originate.
Which configuration accomplishes these objectives?
A. Option A
B. Option B
C. Option C
D. Option D
You want to identify potential threats within SSL-encrypted sessions without requiring SSL proxy to decrypt the session contents. Which security feature achieves this objective?
A. infected host feeds
B. encrypted traffic insights
C. DNS security
D. Secure Web Proxy
