移动端

  • 题王微信公众号

    题王微信公众号

    微信搜“题王网”真题密题、最新资讯、考试攻略、轻松拿下考试

计算机考试 | juniper认证考试

模式切换

0 0 0
我的错题 我的收藏 学习笔记

章节目录

单选题 Using a policy with the policy-rematch flag enabled, what happens to the existing and new sessionswhen you change the policy action from permit to deny? ()

A

The new sessions matching the policy are denied. The existing sessions are dropped.

B

The new sessions matching the policy are denied. The existing sessions, not being allowed to carry any traffic, simply timeout.

C

The new sessions matching the policy might be allowed through if they match another policy. The existing sessions are dropped.

D

The new sessions matching the policy are denied. The existing sessions continue until they are completed or their timeout is reached.

多选题 Users can define policy to control traffic flow between which two components? ()(Choose two.)

A

from a zone to the router itself

B

from a zone to the same zone

C

from a zone to a different zone

D

from one interface to another interface

多选题 Click the Exhibit button. host_a is in subnet_a and host_b is in subnet_b. Given the configuration shown in the exhibit, which statement is true about traffic from host_a to host_b?()

A

DNS traffic is denied.

B

Telnet traffic is denied.

C

SMTP traffic is denied.

D

Ping traffic is permitted.

多选题 Which two are components of the enhanced services software architecture?() (Choose two.)

A

Linux kernel

B

routing protocol daemon

C

session-based forwarding module

D

separate routing and security planes

单选题 Click the Exhibit button. Based on the exhibit, client PC 192.168.10.10 cannot ping 1.1.1.2. Which is a potential cause for this problem?()

A

The untrust zone does not have a management policy configured.

B

The trust zone does not have ping enabled as host-inbound-traffic service.

C

The security policy from the trust zone to the untrust zone does not permit ping.

D

No security policy exists for the ICMP reply packet from the untrust zone to the trust zone.

首页 上一页 1 2 3 尾页 /

到第