JN0-635 exam Archives - Exam4Training

What is the default action in this scenario?

June 11, 2021June 11, 2021examsLeave a comment

Your SRX Series device does not see the SYN packet.

What is the default action in this scenario?
A . The device will forward the subsequent packets and the session will be established
B . The device will forward the subsequent packets and the session will not be established
C . The device will drop the subsequent packets and the session will not be established
D . The device will drop the subsequent packets and the session will be established

Answer: C

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-tcp-session-checks.html

In which two ways are tenant systems different from logical systems? (Choose two.)

June 10, 2021June 10, 2021examsLeave a comment

In which two ways are tenant systems different from logical systems? (Choose two.)
A . Tenant systems have higher scalability than logical systems
B . Tenant systems have less scalability than logical systems
C . Tenant systems have fewer routing features than logical systems
D . Tenant systems have more routing features than logical systems

Answer: A,C

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/tenant-

systems-

overview.html#:~:text=Although%20similar%20to%20logical%20systems,administrative%2

0domain%20for% 20security%20services

Which two VPN features are supported with CoS-based IPsec VPNs? (Choose two.)

June 10, 2021June 10, 2021examsLeave a comment

Which two VPN features are supported with CoS-based IPsec VPNs? (Choose two.)
A . IKEv2
B . VPN monitoring
C . dead peer detection
D . IKEv1

Answer: A,C

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/secuirty-cos-based-ipsec-vpns.html

Which feature of Sky ATP is deployed with Policy Enforcer?

June 9, 2021June 9, 2021examsLeave a comment

Which feature of Sky ATP is deployed with Policy Enforcer?
A . zero-day threat mitigation
B . software image snapshot support
C . device inventory management
D . service redundancy daemon configuration support

Answer: A

In this scenario, what would cause this problem?

June 8, 2021June 8, 2021examsLeave a comment

You have configured three logical tunnel interfaces in a tenant system on an SRX1500 device. When committing the configuration, the commit fails.

In this scenario, what would cause this problem?
A . There is no GRE tunnel between the tenant system and master system allowing SSH traffic
B . There is no VPLS switch on the tenant system containing a peer It-0/0/0 interface
C . The SRX1500 device does not support more than two logical interfaces per tenant system
D . The SRX1500 device requires a tunnel PIC to allow for logical tunnel interfaces

Answer: B

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/logical-systems-overview.html

Referring to the exhibit, what is the problem?

June 8, 2021June 8, 2021examsLeave a comment

Click the Exhibit button.

A user is trying to reach a company’s website, but the connection errors out. The security policies are configured correctly.

Referring to the exhibit, what is the problem?
A . Persistent NAT must be enabled
B . The action for rule 1 must change to static-nat inet
C . DNS ALG must be disabled
D . Static NAT is missing a rule for DNS server

Answer: D

In this scenario, which two components within the flow module would affect the traffic?

June 8, 2021June 8, 2021examsLeave a comment

A user is unable to reach a necessary resource. You discover the path through the SRX Series device includes several security features. The traffic is not being evaluated by any security policies.

In this scenario, which two components within the flow module would affect the traffic? (Choose two.)
A . services/ALG
B . destination NAT
C . source NAT
D . route lookup

Answer: B,D

Referring to the exhibit, which three types of traffic would be examined by the IPS policy between Switch-1 and Switch-2?

June 7, 2021June 7, 2021examsLeave a comment

Click the Exhibit button.

Referring to the exhibit, which three types of traffic would be examined by the IPS policy between Switch-1 and Switch-2? (Choose three.)
A . TCP
B . LLDP
C . ARP
D . ICMP
E . UDP

Answer: A,D,E

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-idp-policy-rules-and-rulebases.html

Referring to the exhibit, which two actions should you take to facilitate inter-TSYS communication?

June 7, 2021June 7, 2021examsLeave a comment

Click the Exhibit button.

You have configured tenant systems on your SRX Series device.

Referring to the exhibit, which two actions should you take to facilitate inter-TSYS communication? (Choose two.)
A . Place the logical tunnel interfaces in a virtual router routing instance in the interconnect switch
B . Place the logical tunnel interfaces in a VPLS routing instance in the interconnect switch
C . Connect each TSYS with the interconnect switch by configuring INET configured logical tunnel interfaces in the interconnect switch
D . Connect each TSYS with the interconnect switch by configuring Ethernet VPLS configured logical tunnel interfaces in the interconnect switch

Answer: A,C

In this scenario, what information does a session cache entry record?

June 7, 2021June 7, 2021examsLeave a comment

You are asked to implement the session cache feature on an SRX5400.

In this scenario, what information does a session cache entry record? (Choose two.)
A . The type of processing to do for ingress traffic
B . The type of processing to do for egress traffic
C . To which SPU the traffic of the session should be forwarded
D . To which NPU the traffic of the session should be forwarded

Answer: B,C

Explanation:

Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-packet-based-forwarding.html