Which feed will the clients IP address be automatically added to in this situation?

JN0-335 V2 0 Comments

A client has attempted communication with a known command-and-control server and it has reached the configured threat level threshold.

Which feed will the clients IP address be automatically added to in this situation?
A . the command-and-control cloud feed
B. the allowlist and blocklist feed
C. the custom cloud feed
D. the infected host cloud feed

Answer: D

Explanation:

Infected hosts are internal hosts that have been compromised by malware and are communicating with external C&C servers3. Juniper ATP Cloud provides infected host feeds that list internal IP addresses or subnets of infected hosts along with a threat level3. Once the Juniper ATP Cloud global threshold for an infected host is met, that host is added to the infected host feed and assigned a threat level of 10 by the cloud4. You can also configure your SRX Series device to block traffic from these IP addresses using security policies4.

Latest JN0-335 Dumps Valid Version with 91 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download JN0-335 PDF     JN0-335 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments