Summer Sale Special - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

Which two statements are correct about security zones on an SRX Series device? (Choose two.)

A.

Security zones can be shared between routing instances.

B.

Security zones cannot be shared between routing instances.

C.

Intrazone and interzone traffic both require security policies.

D.

Multiple security zones cannot be configured on an SRX Series device.

You want to show the effectiveness of your SRX Series Firewall content filter.

Which operational mode command would you use in this scenario?

A.

show security utm anti-spam status

B.

show security utm anti-virus status

C.

show security web filtering status

D.

show security utm content-filtering statistics

Which type of NAT performs port address translation?

A.

interface-based source NAT

B.

static NAT

C.

source NAT with address shifting

D.

destination NAT without port forwarding

Which two statements about SRX Series zones are correct? (Choose two.)

A.

The null zone allows the use of security policies to log dropped control plane traffic.

B.

The functional zone is used to define the management interface on smaller SRX Series Firewalls.

C.

A security zone processes intra-zone traffic without a security policy.

D.

The Junos-host zone allows the use of security policies to control access to the SRX Series Firewall.

In which order does Junos OS process the various forms of NAT?

A.

static NAT, destination NAT, source NAT

B.

destination NAT, source NAT, static NAT

C.

source NAT, static NAT, destination NAT

D.

source NAT, destination NAT, static NAT

Which two security policies are installed by default on SRX 300 Series Firewalls? (Choose two.)

A.

a security policy to allow all traffic from the untrust zone to the trust zone

B.

a security policy to allow all traffic from the trust zone to the untrust zone

C.

a security policy to allow all traffic from the management zone to the trust zone

D.

a security policy to allow all traffic from the trust zone to the trust zone

You are troubleshooting traffic traversing the SRX Series Firewall and require detailed information showing how the flow module is handling the traffic.

How would you accomplish this task?

A.

Review the flow session table.

B.

Review the forwarding table.

C.

Enable flow trace options.

D.

Enable firewall filters.

What is the purpose of a feature profile in a UTM configuration?

A.

It applies a UTM feature to a security policy.

B.

It applies a UTM feature to protocol traffic.

C.

It defines the operation of a specific UTM feature.

D.

It defines an object list.

You want to confirm that your SRX Series Firewall is connected to the SBL server.

Which operational mode command would you use in this scenario?

A.

show security utm anti-virus status

B.

show security web filtering status

C.

show security utm content-filtering statistics

D.

show security utm anti-spam status

Click the Exhibit button.

Referring to the exhibit, which two statements are correct? (Choose two.)

A.

This security policy uses a non-default inactivity timeout.

B.

This security policy is the second security policy in the list.

C.

This security policy permits HTTPS traffic.

D.

This security policy is a zone-based security policy.