CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Juniper
  5. JN0-335

Free JN0-335 Exam Braindumps (page: 6)

Page 5 of 25
PDF with 99 Questions

Exhibit



Using the information from the exhibit, which statement is correct?

  1. Redundancy group 1 is in an ineligible state.
  2. Node1 is the active node for the control plane
  3. There are no issues with the cluster.
  4. Redundancy group 0 is in an ineligible state.

Answer(s): A



You want to manually failover the primary Routing Engine in an SRX Series high availability cluster pair.

Which step is necessary to accomplish this task?

  1. Issue the set chassis cluster disable reboot command on the primary node.
  2. Implement the control link recover/ solution before adjusting the priorities.
  3. Manually request the failover and identify the secondary node
  4. Adjust the priority in the configuration on the secondary node.

Answer(s): A

Explanation:

In order to manually failover the primary Routing Engine in an SRX Series high availability cluster pair, you must issue the command "set chassis cluster disable reboot" on the primary node. This command will disable the cluster and then reboot the primary node, causing the secondary node to take over as the primary node. This is discussed in greater detail in the Juniper Security, Specialist (JNCIS-SEC) Study Guide (page 68).



You want to permit access to an application but block application sub-Which two security policy features provide this capability? (Choose two.)

  1. URL filtering
  2. micro application detection
  3. content filtering
  4. APPID

Answer(s): A,B

Explanation:

The two security policy features that provide the capability to permit access to an application but block its sub-applications are URL filtering and micro application detection. URL filtering allows you to create policies that permit or block access to certain websites or webpages based on URL patterns. Micro application detection is a more sophisticated approach that can identify and block specific applications, even if they are embedded within other applications or websites. According to the Juniper Networks Certified Internet Specialist (JNCIS-SEC) Study Guide [1], "micro application detection is the most accurate way to detect and control applications." Content filtering and APPID are more general approaches and are not as effective in providing the level of granularity needed to block sub-applications.



Which statement regarding Juniper Identity Management Service (JIMS) domain PC probes is true?

  1. JIMS domain PC probes analyze domain controller security event logs at60-mmute intervals by default.
  2. JIMS domain PC probes are triggered if no username to IP address mapping is found in the domain security event log.
  3. JIMS domain PC probes are triggered to map usernames to group membership information.
  4. JIMS domain PC probes are initiated by an SRX Series device to verify authentication table information.

Answer(s): B

Explanation:

Juniper Identity Management Service (JIMS) domain PC probes are used to map usernames to IP addresses in the domain security event log. This allows for the SRX Series device to verify authentication table information, such as group membership. The probes are triggered whenever a username to IP address mapping is not found in the domain security event log. By default, the probes are executed at 60-minute intervals.






Post your Comments and Discuss Juniper JN0-335 exam with other Community members:

JN0-335 Discussions & Posts