Juniper Juniper Certifications JN0-634 Questions & Answers

• Question 11:

  Which interface family is required for Layer 2 transparent mode on SRX Series devices?

  A. LLDP

  B. Ethernet switching

  C. inet

  D. VPLS

  Correct Answer: B

• Question 12:

  Click the Exhibit button.

  

  Security Director is reporting the events shown in the exhibit.

  If the fallback parameter is set to pass traffic, what would cause the events?

  A. The files are too large for the antivirus engine to process.

  B. The files are not scanned because they were permitted by a security policy.

  C. The files are not scanned because they are the wrong file format.

  D. The antivirus engine is unable to re-encrypt the files.

  Correct Answer: A

• Question 13:

  Click the Exhibit button.

  

  Referring to the security policy shown in the exhibit, which two actions will happen as the packet is processed? (Choose two.)

  A. It passes unmatched traffic after modifying the DSCP priority.

  B. It marks and passes matched traffic with a high DSCP priority.

  C. It marks and passes matched traffic with a low DSCP priority.

  D. It passes unmatched traffic without modifying DSCP priority.

  Correct Answer: BD

• Question 14:

  Click the Exhibit button.

  

  Referring to the exhibit, you have configured a Sky ATP policy to inspect user traffic. However, you have noticed that encrypted traffic is not being inspected.

  In this scenario, what must you do to solve this issue?

  A. Change the policy to inspect HTTPS traffic.

  B. Configure the PKI feature.

  C. Configure the SSL forward proxy feature.

  D. Change the policy to inspect TLS traffic.

  Correct Answer: C

• Question 15:

  You have implemented APBR on your SRX Series device and are verifying that your changes are working properly. You notice that when you start the application for the first time, it does not follow the expected path.

  What are two reasons that would cause this behavior? (Choose two.)

  A. The application system cache does not have an entry for the first session.

  B. The application system cache has been disabled.

  C. The application system cache already has an entry for this application.

  D. The advanced policy-based routing is applied to the ingress zone and must be moved to the egress zone.

  Correct Answer: AB

• Question 16:

  What are three components of Software-Defined Secure Networks? (Choose three.)

  A. Contrail

  B. Sky ATP

  C. SRX Series device

  D. Security Director

  E. Network Director

  Correct Answer: BCD

• Question 17:

  Click the Exhibit button.

  

  A customer submits a service ticket complaining that access to http://www.example.com/ has been blocked.

  Referring to the log message shown in the exhibit, why was access blocked?

  A. All illegal source port was utilized.

  B. The URI matched a profile entry.

  C. The user/role permissions were exceeded.

  D. There was a website category infraction.

  Correct Answer: B

• Question 18:

  To which three UTM components would the custom-objects parameter apply? (Choose three.)

  A. Sky ATP

  B. antispam

  C. content filtering

  D. antivirus

  E. Web filtering

  Correct Answer: BCE

• Question 19:

  Which browser is supported by Security Director with Logging and Reporting?

  A. Firefox

  B. Agora

  C. PowerBrowser

  D. Mosaic

  Correct Answer: A

• Question 20:

  Click the Exhibit button.

  

  Referring to the exhibit, a user with IP address 10.1.1.85 generates a request that triggers the HTTP:EXT:DOT-LNK IDP signature that is a member of the "HTTP ?All" predefined attack group.

  In this scenario, which statement is true?

  A. The session will be closed and a reset sent to the client and server.

  B. A Differentiated Services code point value of 8 will be applied.

  C. No action will be taken and the attack information will be logged.

  D. The session will be dropped with no reset sent to the client or server.

  Correct Answer: D