移动端

  • 题王微信公众号

    题王微信公众号

    微信搜“题王网”真题密题、最新资讯、考试攻略、轻松拿下考试

计算机考试 | juniper认证考试

模式切换

0 0 0
我的错题 我的收藏 学习笔记

章节目录

多选题 Which two statements are true regarding redundancy groups?()

A

When priority settings are equal and the members participating in a cluster are initialized at the same time, the primary role for redundancy group 0 is assigned to node 0.

B

The preempt option determines the primary and secondary roles for redundancy group 0 during a failure and recovery scenario.

C

Redundancy group 0 manages the control plane failover between the nodes of a cluster.

D

The primary role can be shared for redundancy group 0 when the active-active option is enabled

多选题 Which three statements are true when working with high-availability clusters?()

A

The valid cluster-id range is between 0 and 255.

B

JUNOS security devices can belong to more than one cluster if cluster virtualization is enabled.

C

If the cluster-id value is set to 0 on a JUNOS security device, the device will not participate in the cluster.

D

A reboot is required if the cluster-id or node value is changed.

E

JUNOS security devices can belong to one cluster only.

多选题 What are three configuration objects used to build JUNOS IDP rules?()

A

zone objects

B

policy objects

C

attack objects

D

alert and notify objects

E

network and address objects

多选题 Which two statements are true about overflow pools?()

A

Overflow pools do not support PAT

B

Overflow pools can not use the egress interface IP address for NAT

C

Overflow pools must use PAT

D

Overflow pools can contain the egress interface IP address or separate IP addresses

单选题 Which command is needed to change this policy to a tunnel policy for a policy-based VPN?() [edit security policies from-zone trust to-zone untrust] user@host# show policy tunnel-traffic { match { source-address local-net; destination-address remote-net; application any; then { permit; } }

A

set policy tunnel-traffic then tunnel remote-vpn

B

set policy tunnel-traffic then permit tunnel remote-vpn

C

set policy tunnel-traffic then tunnel ipsec-vpn remote-vpn permit

D

set policy tunnel-traffic then permit tunnel ipsec-vpn remote-vpn

单选题 Which statement is true about a NAT rule action of off?()

A

The NAT action of off is only supported for destination NAT rule-sets.

B

The NAT action of off is only supported for source NAT rule-sets.

C

The NAT action of off is useful for detailed control of NAT

D

The NAT action of off is useful for disabling NAT when a pool is exhausted.

单选题 Based on the configuration shown in the exhibit, what will happen to the traffic matching thesecurity policy?() [edit schedulers] user@host# showscheduler now { monday all-day; tuesday exclude; wednesday { start-time 07:00:00 stop-time 18:00:00; } thursday { start-time 07:00:00 stop-time 18:00:00; } } [edit security policies from-zone Private to-zone External] user@host# showpolicy allowTransit { match { source-address PrivateHosts; destination-address ExtServers; application ExtApps; } then { permit { tunnel { ipsec-vpn myTunnel; } } } scheduler-name now; }

A

The traffic is permitted through the myTunnel IPsec tunnel only on Tuesdays.

B

The traffic is permitted through the myTunnel IPsec tunnel daily, with the exception of Mondays.

C

The traffic is permitted through the myTunnel IPsec tunnel all day on Mondays and Wednesdays between 7:00 am and 6:00 pm, and Thursdays between 7:00 am and 6:00 pm.

D

The traffic is permitted through the myTunnel IPsec tunnel all day on Mondays and Wednesdays between 6:01 pm and 6:59 am, and Thursdays between 6:01 pm and 6:59 am

1 2 3 4 5 下一页 尾页 /

到第