[15-Feb-2022] New PassLeader JN0-231 JNCIA-SEC Dumps with VCE and PDF (New Questions)

The newest Juniper JN0-231 dumps are available from PassLeader, you can get both JN0-231 VCE dumps and JN0-231 PDF dumps from PassLeader! PassLeader have added the newest JN0-231 exam questions into its JN0-231 VCE and PDF dumps now, the new JN0-231 braindumps will help you 100% passing the JNCIA-SEC JN0-231 exam. Welcome to download the valid PassLeader JN0-231 dumps VCE and PDF here: https://www.passleader.com/jn0-231.html (75 Q&As Dumps)

Besides, download that PassLeader JN0-231 braindumps from Google Drive: https://drive.google.com/drive/folders/11z1lwBEH0Qlzcr44UasVIgYIHFrRi9Ej (~More JN0-231 Exam Questions in PDF file~)

NEW QUESTION 1
Unified threat management (UTM) inspects traffic from which three protocols? (Choose three.)

A.    FTP
B.    SMTP
C.    SNMP
D.    HTTP
E.    SSH

Answer: ACD

NEW QUESTION 2
Screens on an SRX Series device protect against which two types of threats? (Choose two.)

A.    IP spoofing.
B.    ICMP flooding.
C.    Zero-day outbreaks.
D.    Malicious e-mail attachments.

Answer: AB

NEW QUESTION 3
Which two statements are correct about IKE security associations? (Choose two.)

A.    IKE security associations are established during IKE Phase 1 negotiations.
B.    IKE security associations are unidirectional.
C.    IKE security associations are established during IKE Phase 2 negotiations.
D.    IKE security associations are bidirectional.

Answer: AD

NEW QUESTION 4
You want to provide remote access to an internal development environment for 10 remote developers. Which two components are required to implement Juniper Secure Connect to satisfy this requirement? (Choose two.)

A.    An additional license for an SRX Series device.
B.    Juniper Secure Connect client software.
C.    An SRX Series device with an SPC3 services card.
D.    Marvis virtual network assistant.

Answer: AB

NEW QUESTION 5
Your ISP gives you an IP address of 203.0.113.0/27 and informs you that your default gateway is 203.0.113.1. You configure destination NAT to your internal server, but the requests sent to the webserver at 203.0.113.5 are not arriving at the server. In this scenario, which two configuration features need to be added? (Choose two.)

A.    firewall filter
B.    security policy
C.    proxy-ARP
D.    UTM policy

Answer: BC

NEW QUESTION 6
What are three primary match criteria used in a Junos security policy? (Choose three.)

A.    application
B.    source address
C.    source port
D.    class
E.    destination address

Answer: ABE

NEW QUESTION 7
You have an FTP server and a webserver on the inside of your network that you want to make available to users outside of the network. You are allocated a single public IP address. In this scenario, which two NAT elements should you configure? (Choose two.)

A.    destination NAT
B.    NAT pool
C.    source NAT
D.    static NAT

Answer: AD

NEW QUESTION 8
Which three Web filtering deployment actions are supported by Junos? (Choose three.)

A.    Use IPS.
B.    Use local lists.
C.    Use remote lists.
D.    Use Websense Redirect.
E.    Use Juniper Enhanced Web Filtering.

Answer: BDE

NEW QUESTION 9
Which two IPsec hashing algorithms are supported on an SRX Series device? (Choose two.)

A.    SHA-1
B.    SHAKE128
C.    MD5
D.    RIPEMD-256

Answer: AC

NEW QUESTION 10
When operating in packet mode, which two services are available on the SRX Series device? (Choose two.)

A.    MPLS
B.    UTM
C.    CoS
D.    IDP

Answer: AC

NEW QUESTION 11
You are assigned a project to configure SRX Series devices to allow connections to your webservers. The webservers have a private IP address, and the packets must use NAT to be accessible from the Internet. The webservers must use the same address for both connections from the Internet and communication with update servers. Which NAT type must be used to complete this project?

A.    source NAT
B.    destination NAT
C.    static NAT
D.    hairpin NAT

Answer: B

NEW QUESTION 12
You are monitoring an SRX Series device that has the factory-default configuration applied. In this scenario, where are log messages sent by default?

A.    Junos Space Log Director.
B.    Junos Space Security Director.
C.    To a local syslog server on the management network.
D.    To a local log file named messages.

Answer: C

NEW QUESTION 13
When transit traffic matches a security policy, which three actions are available? (Choose three.)

A.    Allow
B.    Discard
C.    Deny
D.    Reject
E.    Permit

Answer: CDE

NEW QUESTION 14
What is the order in which malware is detected and analyzed?

A.    antivirus scanning –> cache lookup –> dynamic analysis –> static analysis
B.    cache lookup –> antivirus scanning –> static analysis –> dynamic analysis
C.    antivirus scanning –> cache lookup –> static analysis –> dynamic analysis
D.    cache lookup –> static analysis –> dynamic analysis –> antivirus scanning

Answer: B

NEW QUESTION 15
Which statement is correct about packet mode processing?

A.    Packet mode enables session-based processing of incoming packets.
B.    Packet mode works with NAT, VPNs, UTM, IDP, and other advanced security services.
C.    Packet mode bypasses the flow module.
D.    Packet mode is the basis for stateful processing.

Answer: C

NEW QUESTION 16
Which statement about NAT is correct?

A.    Destination NAT takes precedence over static NAT.
B.    Source NAT is processed before security policy lookup.
C.    Static NAT is processed after forwarding lookup.
D.    Static NAT takes precedence over destination NAT.

Answer: D

NEW QUESTION 17
What information does the show chassis routing-engine command provide?
 
A.    chassis serial number
B.    resource utilization
C.    system version
D.    routing tables

Answer: B

NEW QUESTION 18
Which statement is correct about unified security policies on an SRX Series device?

A.    A zone-based policy is always evaluated first.
B.    The most restrictive policy is applied regardless of the policy level.
C.    A global policy is always evaluated first.
D.    The first policy rule is applied regardless of the policy level.

Answer: A

NEW QUESTION 19
What are two features of the Juniper ATP Cloud service? (Choose two.)

A.    sandbox
B.    malware detection
C.    EX Series device integration
D.    honeypot

Answer: AB

NEW QUESTION 20
What is an IP addressing requirement for an IPsec VPN using main mode?

A.    One peer must have dynamic IP addressing.
B.    One peer must have static IP addressing.
C.    Both peers must have dynamic IP addresses.
D.    Both peers must have static IP addressing.

Answer: D

NEW QUESTION 21
Which two IKE Phase 1 configuration options must match on both peers to successfully establish a tunnel? (Choose two.)

A.    VPN name.
B.    Gateway interfaces.
C.    IKE mode.
D.    Diffie-Hellman group.

Answer: CD

NEW QUESTION 22
What are three Junos UTM features? (Choose three.)

A.    screens
B.    antivirus
C.    Web filtering
D.    IDP/IPS
E.    content filtering

Answer: BCE

NEW QUESTION 23
……


Thanks for reading the newest JN0-231 exam dumps! We recommend you to try the PREMIUM PassLeader JN0-231 dumps in VCE and PDF here: https://www.passleader.com/jn0-231.html (75 Q&As Dumps)

Also, you can download that PassLeader JN0-231 braindumps from Google Drive: https://drive.google.com/drive/folders/11z1lwBEH0Qlzcr44UasVIgYIHFrRi9Ej (~More JN0-231 Exam Questions in PDF file~)