ExamGecko
Search Search Login
Home Home / Juniper / JN0-335
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which two statements are correct about the Junos IPS feature? (Choose two.)
Which solution enables you to create security policies that include user and group information?
Which two sources are used by Juniper Identity Management Service (JIMS) for collecting username and device IP addresses? (Choose two.)
You want to manually failover the primary Routing Engine in an SRX Series high availability cluster pair. Which step is necessary to accomplish this task?
You want to show tabular data for operational mode commands. In this scenario, which logging parameter will provide this function?
Which two devices would you use for DDoS protection with Policy Enforcer? (Choose two.)
What are three capabilities of AppQoS? (Choose three.)
Exhibit You just finished setting up your command-and-control (C&C) category with Juniper ATP Cloud. You notice that all of the feeds have zero objects in them. Which statement is correct in this scenario?
You are asked to implement IPS on your SRX Series device. In this scenario, which two tasks must be completed before a configuration will work? (Choose two.)
Which two features are configurable on Juniper Secure Analytics (JSA) to ensure that alerts are triggered when matching certain criteria? (Choose two.)

Question 74 - JN0-335 discussion

Report
Export

Click the Exhibit button.

Referring to the exhibit, what will the SRX Series device do in this configuration?

A.
Packets from the infected hosts with a threat level of 8 will be dropped and a log message will be generated.
Answers
A.
Packets from the infected hosts with a threat level of 8 will be dropped and a log message will be generated.
B.
Packets from the infected hosts with a threat level of 8 or above will be dropped and a log message will be generated.
Answers
B.
Packets from the infected hosts with a threat level of 8 or above will be dropped and a log message will be generated.
C.
Packets from the infected hosts with a threat level of 8 or above will be dropped and no log message will be generated.
Answers
C.
Packets from the infected hosts with a threat level of 8 or above will be dropped and no log message will be generated.
D.
Packets from the infected hosts with a threat level of 8 will be dropped and no log message will be generated.
Answers
D.
Packets from the infected hosts with a threat level of 8 will be dropped and no log message will be generated.
Suggested answer: C

Explanation:

The exhibit shows a configuration snippet for security intelligence on an SRX Series device. Security intelligence is a feature that allows you to block or monitor traffic from malicious sources based on threat intelligence feeds from Juniper ATP Cloud or other providers. The configuration defines a profile for ATP Infected-Hosts, which is a feed that contains IP addresses of hosts that are infected with malware and communicate with command-and-control servers. The configuration also defines a rule for threat level 8, which is a parameter that indicates the severity of the threat. Based on this configuration, the SRX Series device will do the following:

Packets from the infected hosts with a threat level of 8 or above will be dropped: The action block-and-drop under the rule means that the device will block any traffic from the infected hosts that have a threat level equal to or higher than 8. This will prevent the hosts from sending or receiving malicious commands or data.

No log message will be generated: The absence of any log option under the rule means that the device will not generate any log message for the blocked traffic. This may reduce the load on the device and the logging server, but it may also limit the visibility and analysis of the security events.

Show Answer
asked 18/09/2024
Jonaid Alam
36 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms