ExamGecko
Home / Juniper / JN0-636 / List of questions
Ask Question

Juniper JN0-636 Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

Which two statements are correct regarding tenant systems on SRX Series devices? (Choose two.)

A maximum of 32 tenant systems can be configured on a physical SRX device.
A maximum of 32 tenant systems can be configured on a physical SRX device.
All tenant systems share a single routing protocol process.
All tenant systems share a single routing protocol process.
Each tenant system runs its own instance of the routing protocol process
Each tenant system runs its own instance of the routing protocol process
A maximum of 500 tenant systems can be configured on a physical SRX device.
A maximum of 500 tenant systems can be configured on a physical SRX device.
Suggested answer: C, D
Explanation:

The following statements are true regarding tenant systems on SRX Series devices:

Each tenant system runs its own instance of the routing protocol process. Each tenant system is isolated, and it has its own routing table, interfaces, and security policies.

A maximum of 500 tenant systems can be configured on a physical SRX device. This allows for a high degree of flexibility and scalability, as each tenant system can be configured with its own set of features and security policies.

A maximum of 32 tenant systems can be configured on a physical SRX device and All tenant systems share a single routing protocol process are not correct statements

asked 18/09/2024
Son Pham Hong
54 questions

Question 22

Report Export Collapse

You are asked to allocate security profile resources to the interconnect logical system for it to work properly.

In this scenario, which statement is correct?

The NAT resources must be defined in the security profile for the interconnect logical system.
The NAT resources must be defined in the security profile for the interconnect logical system.
No resources are needed to be allocated to the interconnect logical system.
No resources are needed to be allocated to the interconnect logical system.
The resources must be calculated based on the amount of traffic that will flow between the logical systems.
The resources must be calculated based on the amount of traffic that will flow between the logical systems.
The flow-session resource must be defined in the security profile for the interconnect logical system.
The flow-session resource must be defined in the security profile for the interconnect logical system.
Suggested answer: D
Explanation:

The flow-session resource is needed in order to ensure adequate and secure communication between the two logical systems.

The flow-session resource must be defined in the security profile for the interconnect logical system because the interconnect logical system is responsible for forwarding traffic between other logical systems. The flow-session resource determines the maximum number of sessions that the interconnect logical system can create and maintain. If the flow-session resource is not allocated or is insufficient, the interconnect logical system might drop packets or fail to establish sessions1.

The NAT resources are not needed to be allocated to the interconnect logical system because the interconnect logical system does not perform any NAT operations on the traffic. The NAT resources are only relevant for the logical systems that need to translate the source or destination IP addresses or ports of the traffic1.

No resources are not needed to be allocated to the interconnect logical system is incorrect because the interconnect logical system still requires some resources to function properly, such as the flowsession resource. The interconnect logical system cannot operate without any resources allocated to it1.

The resources must be calculated based on the amount of traffic that will flow between the logical systems is partially correct, but not the best answer. The resources must be calculated based on the amount of traffic and the type of traffic that will flow between the logical systems. For example, the flow-session resource depends on the number and duration of sessions, the security-log-streamnumber resource depends on the number and size of logs, and the NAT resource depends on the number and type of NAT rules1.

Reference:

Security Profiles for Logical Systems | Junos OS | Juniper Networks

asked 18/09/2024
Nick Wells
53 questions

Question 23

Report Export Collapse

Exhibit

Juniper JN0-636 image Question 23 50910 09182024211303000000

The exhibit shows a snippet of a security flow trace.

In this scenario, which two statements are correct? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 24

Report Export Collapse

Exhibit

Juniper JN0-636 image Question 24 50911 09182024211303000000

Your company recently acquired a competitor. You want to use using the same IPv4 address space as your company.

Referring to the exhibit, which two actions solve this problem? (Choose two)

Become a Premium Member for full access
  Unlock Premium Member

Question 25

Report Export Collapse

Exhibit

Juniper JN0-636 image Question 25 50912 09182024211303000000

You have recently configured Adaptive Threat Profiling and notice 20 IP address entries in the monitoring section of the Juniper ATP Cloud portal that do not match the number of entries locally on the SRX Series device, as shown in the exhibit.

What is the correct action to solve this problem on the SRX device?

Become a Premium Member for full access
  Unlock Premium Member

Question 26

Report Export Collapse

You want to enroll an SRX Series device with Juniper ATP Appliance. There is a firewall device in the path between the devices. In this scenario, which port should be opened in the firewall device?

Become a Premium Member for full access
  Unlock Premium Member

Question 27

Report Export Collapse

Which two types of source NAT translations are supported in this scenario? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 28

Report Export Collapse

Exhibit

Juniper JN0-636 image Question 28 50915 09182024211303000000

Referring to the exhibit, which statement is true?

Become a Premium Member for full access
  Unlock Premium Member

Question 29

Report Export Collapse

Exhibit

Juniper JN0-636 image Question 29 50916 09182024211303000000

The show network-access aaa radius-servers command has been issued to solve authentication issues.

Referring to the exhibit, to which two authentication servers will the SRX Series device continue to send requests? (Choose TWO)

Become a Premium Member for full access
  Unlock Premium Member

Question 30

Report Export Collapse

All interfaces involved in transparent mode are configured with which protocol family?

Become a Premium Member for full access
  Unlock Premium Member
Total 115 questions
Go to page: of 12
Search

Related questions