Printable Jn0-634 Bundle 2021

NEW QUESTION 1
You have configured a log collector VM and Security Director. System logging is enabled on a branch SRX Series device, but security logs do not appear in the monitor charts.
How would you solve this problem?

• A. Configure a security policy to forward logs to the collector.
• B. Configure application identification on the SRX Series device.
• C. Configure security logging on the SRX Series device.
• D. Configure J-Flow on the SRX Series device.

Answer: C

NEW QUESTION 2
Your network includes SRX Series devices at the headquarters location. The SRX Series devices at this location are part of a high available chassis cluster and are configured for IPS. There has been a node failover.
In this scenario, which two statements are true? (Choose two.)

• A. The IP action table is synchronized between the chassis cluster nodes.
• B. Cached SSL session ID information for existing sessions is not synchronized between nodes.
• C. The IP action table is not synchronized between the chassis cluster nodes.
• D. Cached SSL session ID information for existing session is synchronized between nodes.

Answer: CD

NEW QUESTION 3
Click the Exhibit button.

Referring to the exhibit, a user with IP address 10.1.1.85 generates a request that triggers the HTTP:EXT:DOT-LNK IDP signature that is a member of the “HTTP – All” predefined attack group.
In this scenario, which statement is true?

• A. The session will be closed and a reset sent to the client and server.
• B. A Differentiated Services code point value of 8 will be applied.
• C. No action will be taken and the attack information will be logged.
• D. The session will be dropped with no reset sent to the client or server.

Answer: D

NEW QUESTION 4
You have implemented APBR on your SRX Series device and are verifying that your changes are working properly. You notice that when you start the application for the first time, it does not follow the expected path.
What are two reasons that would cause this behavior? (Choose two.)

• A. The application system cache does not have an entry for the first session.
• B. The application system cache has been disabled.
• C. The application system cache already has an entry for this application.
• D. The advanced policy-based routing is applied to the ingress zone and must be moved to the egress zone.

Answer: AB

NEW QUESTION 5
Your manager has identified that employees are spending too much time posting on a social media site. You are asked to block user from posting on this site, but they should still be able to access any other site on the Internet.
In this scenario, which AppSecure feature will accomplish this task?

• A. AppQoS
• B. AppTrack
• C. APpFW
• D. APBR

Answer: C

NEW QUESTION 6
After using Security Director to add a new firewall policy rule on an SRX Series device, you notice that the hit count on the policy is not increasing. Upon further investigation, you find that the devices listed in the new rule are able to communicate as expected. Your firewall policy consists of hundreds of rules.
Using only Security Director, how do you find the rule that is allowing the communication to occur in this scenario?

• A. Generate a Top Firewall Rules report.
• B. Generate a Policy Analysis report.
• C. Generate a Top Source IPs report.
• D. Generate a Top Firewall Events report.

Answer: D

NEW QUESTION 7
Click the Exhibit button.

A customer submits a service ticket complaining that access to http://www.example.com/ has been blocked.
Referring to the log message shown in the exhibit, why was access blocked?

• A. All illegal source port was utilized.
• B. The URI matched a profile entry.
• C. The user/role permissions were exceeded.
• D. There was a website category infraction.

Answer: B

NEW QUESTION 8
Your manager has notices a drop in productivity and believes it is due to employees checking their social media feeds too frequently. You are asked to provide analytical statistics for this traffic within your network on an hourly basis.
Which AppSecure feature should be used to collect this information?

• A. AppQoS
• B. AppFW
• C. AppTrack
• D. APBR

Answer: C

NEW QUESTION 9
Click the Exhibit button.

Two hosts on the same subnet are connected to an SRX340 using interfaces ge-0/0/4 and
ge-0/0/5. The two hosts can communicate with each other, but they cannot communicate with hosts outside of their subnet.
Referring to the exhibit, which three actions would you take to solve this problem? (Choose three.)

• A. Add the ge-0/0/4 and ge-0/0/5 interfaces to the L2 zone.
• B. Remove the irb.0 interface from the L2 zone.
• C. Set the SRX340 to Ethernet switching mode.
• D. Configure a security policy to permit the traffic.
• E. Reboot the SRX340.

Answer: CDE

NEW QUESTION 10
Which Junos security feature is used for signature-based attack prevention?

• A. RADIUS
• B. AppQoS
• C. IPS
• D. PIM

Answer: C

NEW QUESTION 11
Click the Exhibit button.

Referring to the exhibit, which two statements are true? (Choose two.)

• A. You can secure inter-VLAN traffic with a security policy on this device.
• B. You can secure intra-VLAN traffic with a security policy on this device.
• C. The device can pass Layer 2 and Layer 3 traffic at the same time.
• D. The device cannot pass Layer 2 and Layer 3 traffic at the same time.

Answer: AC

NEW QUESTION 12
Using the Policy Controller API, which configuration would post Sky ATP with PE mode to the Policy Enforcer controller configuration?

• A. “configs”: {“sdsn”: false“cloudonly”: true}
• B. “configs”: {“sdsn”: false“cloud”: false}
• C. “configs”: {“sdsn”: true“cloudonly”: false}
• D. “configs”: {“sdsn”: false“cloud”: true}

Answer: C

NEW QUESTION 13
Click the Exhibit button.

Your organization requests that you direct Facebook traffic out a different link to ensure that the bandwidth for critical applications is protected.
Referring to the exhibit, which forwarding instance will be used on your SRX Series device?

• A. R3
• B. R1
• C. R2
• D. inet.0

Answer: C

NEW QUESTION 14
Click the Exhibit button.

Referring to the exhibit, you have configured a Sky ATP policy to inspect user traffic. However, you have noticed that encrypted traffic is not being inspected.
In this scenario, what must you do to solve this issue?

• A. Change the policy to inspect HTTPS traffic.
• B. Configure the PKI feature.
• C. Configure the SSL forward proxy feature.
• D. Change the policy to inspect TLS traffic.

Answer: C

NEW QUESTION 15
Your network includes SRX Series devices at all headquarter, data center, and branch locations. The headquarter and data center locations use high-end SRX Series devices, and the branch locations use branch SRX Series devices. You are asked to deploy IPS on the SRX Series devices using one of the available IPS deployment modes.
In this scenario, which two statements are true? (Choose two.)

• A. Inline tap mode provides enforcement.
• B. Inline tap mode can be used at all locations.
• C. Integrated mode can be used at all locations.
• D. Integrated mode provides enforcement.

Answer: CD

NEW QUESTION 16
Which IDP rule configuration will send an RST to any new session that meets the action criteria?

• A. ip-action block
• B. action close-client-and-server
• C. ip-action close
• D. action drop-connection

Answer: C

NEW QUESTION 17
Click the Exhibit button.

Referring to the exhibit, which statement is true?

• A. E-mails from the user@example.com address are marked with SPAM in the subject line by the spam block list server.
• B. E-mails from the user@example.com address are blocked by the spam list server.
• C. E-mails from the user@example.com address are blocked by the reject blacklist.
• D. E-mails from the user@example.com address are allowed by the allow whitelist.

Answer: D

NEW QUESTION 18
SRX Series devices with AppSecure support which three custom signatures? (Choose three.)

• A. MAC address-based mapping
• B. latency detection mapping
• C. IP protocol-based mapping
• D. ICMP-based mapping
• E. Layer 7-based signatures

Answer: CDE

NEW QUESTION 19
Click the Exhibit button.

Referring to the exhibit, which two statements are true? (Choose two.)

• A. The application firewall rule is not inspecting encrypted traffic.
• B. There are two rules configured in the rule set.
• C. The rule set uses application definitions from the predefined library.
• D. The configured rule set matches most analyzed applications.

Answer: AC

NEW QUESTION 20
Click the Exhibit button.

Referring to the exhibit, how many AppTrack logs will be generated for an HTTP session lasting 12 minutes?

• A. 4
• B. 2
• C. 1
• D. 3

Answer: A

NEW QUESTION 21
Your network includes SRX Series devices at the headquarters location. The SRX Series devices at this location are part of a high availability chassis cluster and are expected to support several UTM features.
Which two statements related to this environment are true? (Choose two.)

• A. UTM features can be configured on either of the nodes within the cluster.
• B. The chassis cluster must be configured for active/active mode.
• C. UTM features must be configured on the primary node within the cluster.
• D. The chassis cluster must be configured for active/backup mode.

Answer: AD

NEW QUESTION 22
Click the Exhibit button.

You have recently committed the IPS policy shown in the exhibit. When evaluating the expected behavior, you notice that you have a session that matches all of the rules in your IPS policy.
In this scenario, which action would be taken?

• A. ignore-connection
• B. drop packet
• C. no-action
• D. close-client-and-server

Answer: C

NEW QUESTION 23
Click the Exhibit button.

According to the policy shown in the exhibit, which application-services traffic will be processed first?

• A. the application traffic matchings the IDP rules
• B. the application traffic matchings the utm-policy log rule set
• C. the application traffic matchings the utm-policy wf-policy_websense-home rules
• D. the application traffic matchings the application-firewall rule-set demo-tracking_1 rule

Answer: A

NEW QUESTION 24
A customer has recently deployed a next-generation firewall, sandboxing software, cloud access security brokers (CASB), and endpoint protection.
In this scenario, which tool would provide the customer with additional attack prevention?

• A. Junos Space Cross Provisioning Platform
• B. Contrail
• C. Security Director Policy Enforcer
• D. Network Director Inventory Manager

Answer: C

NEW QUESTION 25
Click the Exhibit button.

You have configured integrated user firewall on the SRX Series devices in your network. However, you noticed that no users can access the servers that are behind the SRX Series devices.
Referring to the exhibit, what is the problem?

• A. The Kerberos service is not configured correctly on the Active Directory server.
• B. There are no authentication entries in the SRX Series device for the users.
• C. The security policy on the SRX Series device is configured incorrectly.
• D. The SAML service is not configured correctly on the Active Directory server.

Answer: C

NEW QUESTION 26
......