JN0-636 Online Practice Questions and Answers

You are asked to look at a configuration that is designed to take all traffic with a specific source ip address and forward the traffic to a traffic analysis server for further evaluation. The configuration is no longer working as intended.

Referring to the exhibit which change must be made to correct the configuration?

A. Apply the filter as in input filter on interface xe-0/2/1.0

B. Apply the filter as in input filter on interface xe-0/0/1.0

C. Create a routing instance named default

D. Apply the filter as in output filter on interface xe-0/1/0.0

While troubleshooting security policies, you added the count action. Where do you see the result of this action?

A. In the show security policies hit-count command output.

B. In the show security flow statistics command output.

C. In the show security policies detail command output.

D. In the show firewall log command output.

What are two valid modes for the Juniper ATP Appliance? (Choose two.)

A. flow collector

B. event collector

C. all-in-one

D. core

Exhibit

You are not able to ping the default gateway of 192.168 100 1 (or your network that is located on your SRX Series firewall. Referring to the exhibit, which two commands would correct the configuration of your SRX Series device? (Choose two.)

A. Option A

B. Option B

C. Option C

D. Option D

You want to enforce I DP policies on HTTP traffic.

In this scenario, which two actions must be performed on your SRX Series device? (Choose two )

A. Choose an attacks type in the predefined-attacks-group HTTP-All.

B. Disable screen options on the Untrust zone.

C. Specify an action of None.

D. Match on application junos-http.

Exhibit

You configure a traceoptions file called radius on your returns the output shown in the exhibit What is the source of the problem?

A. An incorrect password is being used.

B. The authentication order is misconfigured.

C. The RADIUS server IP address is unreachable.

D. The RADIUS server suffered a hardware failure.

SRX Series device enrollment with Policy Enforcer fails To debug further, the user issues the following command show configuration services security--intelligence url

https : //cloudfeeds . argon . juniperaecurity . net/api/manifeat. xml

and receives the following output:

What is the problem in this scenario?

A. The device is directly enrolled with Juniper ATP Cloud.

B. The device is already enrolled with Policy Enforcer.

C. The SRX Series device does not have a valid license.

D. Junos Space does not have matching schema based on the

Exhibit You are using ATP Cloud and notice that there is a host with a high number of ETI and CandC hits sourced from the same investigation and notice that some of the events have not been automatically mitigated. Referring to the exhibit, what is a reason for this behavior?

A. The CandC events are false positives.

B. The infected host score is globally set bellow a threat level of 5.

C. The infected host score is globally set above a threat level of 5.

D. The ETI events are false positives.

You are not able to activate the SSH honeypot on the all-in-one Juniper ATP appliance. What would be a cause of this problem?

A. The collector must have a minimum of two interfaces.

B. The collector must have a minimum of three interfaces.

C. The collector must have a minimum of five interfaces.

D. The collector must have a minimum of four interfaces.

You are connecting two remote sites to your corporate headquarters site; you must ensure that all traffic is secured and only uses a single Phase 2 SA for both sites.

In this scenario, which VPN should be used?

A. An IPsec group VPN with the corporate firewall acting as the hub device.

B. Full mesh IPsec VPNs with tunnels between all sites.

C. A hub-and-spoke IPsec VPN with the corporate firewall acting as the hub device.

D. A full mesh Layer 3 VPN with the corporate firewall acting as the hub device.