Act now and download your Juniper JN0-332 test today! Do not waste time for the worthless Juniper JN0-332 tutorials. Download Improve Juniper uniper Networks Certified Internet Specialist, SEC (JNCIS-SEC) exam with real questions and answers and begin to learn Juniper JN0-332 with a classic professional.
2021 Sep JN0-332 actual test
Q211. -- Exhibit –
-- Exhibit --Click the Exhibit button.
Referring to the exhibit, you want to use source NAT to translate the Web server's IP address to the IP address of ge-0/0/2.
Which source NAT type accomplishes this task and always performs PAT?
A. source NAT with address shifting
B. standard pool-based NAT
C. interface-based source NAT
D. reverse source NAT
Answer: C
Q212. -- Exhibit –
-- Exhibit --Click the Exhibit button.
Referring to the exhibit, which statement is correct about the IPsec configuration?
A. The IPsec tunnel endpoint does not have a static IP address.
B. IKE Phase 2 is established immediately from the hub.
C. Protocol AH is used with IKE Phase 2.
D. IKE Phase 2 uses a standard proposal.
Answer: A
Q213. Which type of zone is used by traffic transiting the device?
A. transit zone
B. default zone
C. security zone
D. functional zone
Answer: C
Q214. Which antivirus protection feature uses virus patterns and a malware database that are located on external servers?
A. full file-based
B. Kaspersky
C. Sophos
D. express scan
Answer: C
Q215. You want to configure a security policy that allows traffic to a particular host.
Which step must you perform before committing a configuration with the policy?
A. Define a static route to the host
B. Ensure that the router can ping the host
C. Define an address book entry for the host
D. Ensure that the router has an ARP entry for the host
Answer: C
Replace JN0-332 actual test:
Q216. Click the Exhibit button.
Which type of source NAT is configured in the exhibit?
A. interface-based source NAT
B. static source NAT
C. pool-based source NAT with PAT
D. pool-based source NAT without PAT
Answer: A
Q217. You want to allow your device to establish OSPF adjacencies with a neighboring device connected to interface ge-0/0/3.0. Interface ge-0/0/3.0 is a member of the HR zone. Under which configuration hierarchy must you permit OSPF traffic?
A. [edit security policies from-zone HR to-zone HR]
B. [edit security zones functional-zone management protocols]
C. [edit security zones protocol-zone HR host-inbound-traffic]
D. [edit security zones security-zone HR host-inbound-traffic protocols]
Answer: D
Q218. You are required to configure a SCREEN option that enables IP source route option detection.
Which two configurations meet this requirement? (Choose two.)
A. [edit security screen]
user@host# show
ids-option protectFromFlood {
ip {
loose-source-route-option;
strict-source-route-option;
}
}
B. [edit security screen]
user@host# show
ids-option protectFromFlood {
ip {
source-route-option;
}
}
C. [edit security screen]
user@host# show
ids-option protectFromFlood {
ip {
record-route-option;
security-option;
}
}
D. [edit security screen]
user@host# show
ids-option protectFromFlood {
ip {
strict-source-route-option;
record-route-option;
}
}
Answer: AB
Q219. Which antivirus solution integrated on branch SRX Series devices do you use to ensure maximum virus coverage for network traffic?
A. express AV
B. full AV
C. desktop AV
D. ICAP
Answer: B
Q220. Which two statements are true regarding firewall user authentication? (Choose two.)
A. When configured for pass-through firewall user authentication, the user must first open a connection to the Junos security platform before connecting to a remote network resource.
B. When configured for Web firewall user authentication only, the user must first open a connection to the Junos security platform before connecting to a remote network resource.
C. If a Junos security device is configured for pass-through firewall user authentication, new sessions are automatically intercepted to perform authentication.
D. If a Junos security device is configured for Web firewall user authentication, new sessions are automatically intercepted to perform authentication.
Answer: BC