- All Exams Instant Download
Which SRX5400 component is responsible for performing first pass security policy inspection?
Which SRX5400 component is responsible for performing first pass security policy inspection?A . Routing EngineB . Switch Control BoardC . Services Processing UnitD . Modular Port ConcentratorView AnswerAnswer: C
After an SRX Series device processes the first packet of a session, how are subsequent packets for the same session processed?
After an SRX Series device processes the first packet of a session, how are subsequent packets for the same session processed?A . They are processed using fast-path processing.B . They are forwarded to the control plane for deep packet inspection.C . All packets are processed in the same manner.D ....
Which statement describes the function of screen options?
Which statement describes the function of screen options?A . Screen options encrypt transit traffic in a tunnel.B . Screen options protect against various attacks on traffic entering a security device.C . Screen options translate a private address to a public address.D . Screen options restrict or permit users individually or...
Which two statements are true about global security policies? (Choose two.)
Which two statements are true about global security policies? (Choose two.)A . Global security policies are evaluated before regular security policies.B . Global security policies can be configured to match addresses across multiple zones.C . Global security policies can match traffic regardless of security zones.D . Global security policies do...
Which feature would you need to configure in this scenario?
You need to configure an IPsec tunnel between a remote site and a hub site. The SRX Series device at the remote site receives a dynamic IP address on the external interface that you will use for IPsec. Which feature would you need to configure in this scenario?A . NAT-TB...
Which feature is used when you want to permit traffic on an SRX Series device only at specific times?
Which feature is used when you want to permit traffic on an SRX Series device only at specific times?A . schedulerB . pass-through authenticationC . ALGsD . countersView AnswerAnswer: A
Which two statements about security policy actions are true? (Choose two.)
Which two statements about security policy actions are true? (Choose two.)A . The log action implies an accept action.B . The log action requires an additional terminating action.C . The count action implies an accept action.D . The count action requires an additional terminating action.View AnswerAnswer: BD
Which NAT parameter would meet this requirement?
You have configured source NAT with port address translation. You also need to guarantee that the same IP address is assigned from the source NAT pool to a specific host for multiple concurrent sessions. Which NAT parameter would meet this requirement?A . port block-allocationB . port range twin-portC . address-persistentD...
Which command would be used accomplish this task?
You want to trigger failover of redundancy group 1 currently running on node 0 and make node 1 the primary node the redundancy group 1. Which command would be used accomplish this task?A . user@host# set chassis cluster redundancy-group 1 node 1B . user@host> request chassis cluster failover redundancy-group 1...
168.150.111 using HTTP?
168.150.111 using HTTP?A . The client will be denied by policy p2.B . The client will be denied by policy p1.C . The client will be permitted by policy p2.D . The client will be permitted by policy p1.View AnswerAnswer: D
