Question No. 1

Which two statements about SRX chassis clustering are correct? (Choose two.)

ASRX chassis clustering supports active/passive and active/active for the data plane.

BSRX chassis clustering only supports active/passive for the data plane.

CSRX chassis clustering supports active/passive for the control plane.

DSRX chassis clustering supports active/active for the control plane.

Show Answer

Correct Answer: A, D

SRX chassis clustering supports active/passive and active/active for the data plane. In an active/active configuration, both cluster members process and forward traffic, which increases throughput and provides redundancy. For the control plane, SRX chassis clustering supports active/active, meaning that both cluster members can process and forward control traffic, providing redundancy and improved scalability

Question No. 2

Exhibit

You are asked to track BitTorrent traffic on your network. You need to automatically add the workstations to the High_Risk_Workstations feed and the servers to the BitTorrent_Servers feed automatically to help mitigate future threats.

Which two commands would add this functionality to the FindThreat policy? (Choose two.)

A)

B)

C)

D)

AOption A

BOption B

COption C

DOption D

Show Answer

Correct Answer: C

Question No. 3

Which two statements are true about Juniper ATP Cloud? (Choose two.)

ADynamic analysis is always performed to determine if a file contains malware.

BIf the cache lookup determines that a file contains malware, performed to verify the results.

CDynamic analysis is not always necessary to determine if a file contains malware.

DIf the cache lookup determines that a file contains malware, static analysis is not performed to verify the results.

Show Answer

Correct Answer: C, D

Dynamic analysis is not always necessary to determine if a file contains malware, as the ATP Cloud uses a cache lookup to quickly identify known malicious files. If the cache lookup determines that a file contains malware, static analysis is not performed to verify the results. This information can be found on the Juniper website here:https://www.juniper.net/documentation/en_US/release-independent/security/jnpr-security-srx-series/information-products/topic-collection/jnpr-security-srx-resources.html#id-jnpr-security-srx-resources-atp-cloud.

Question No. 4

Which two statements are true about mixing traditional and unified security policies? (Choose two.)

AWhen a packet matches a unified security policy, the evaluation process terminates

BTraditional security policies must come before unified security policies

CUnified security policies must come before traditional security policies

DWhen a packet matches a traditional security policy, the evaluation process terminates

Show Answer

Correct Answer: A, D

Question No. 5

You administer a JSA host and want to include a rule that sets a threshold for excessive firewall denies and sends an SNMP trap after receiving related syslog messages from an SRX Series firewall.

Which JSA rule type satisfies this requirement?

Acommon

Boffense

Cflow

Devent

Show Answer

Correct Answer: D

To include a rule that sets a threshold for excessive firewall denies and sends an SNMP trap after receiving related syslog messages from an SRX Series firewall, you need to use an event rule type in JSA. An event rule type allows you to create custom rules based on the events that are collected and normalized by JSA from various sources, such as firewalls, routers, switches, servers, and so on. You can define the conditions, tests, and actions for an event rule, such as matching a specific event name, setting a threshold for the number of occurrences, and sending an SNMP trap to a specified host.Reference:=Creating a Custom Rule,Customizing the SNMP Trap Output

Free Juniper JN0-335 Exam Actual Questions

The questions for JN0-335 were last updated On Nov 20, 2024