Free Preparation Discussions
MENU
Juniper JN0-231 Exam
- Topic 1: Identify the concepts, benefits, or operation of UTM/ Web filtering/ Content filtering
- Topic 2: Identify concepts or general functionality of security zone, screen, address, or services objects/ Addresses/address books
- Topic 3: Describe methods for monitoring, reporting, or logging for Juniper security solutions/Junos Space Security Director
- Topic 4: Describe the concepts, benefits, or operation of security policies/ Unified security policies
- Topic 5: Identify concepts or general features of SRX Series devices/ Traffic flow/security processing
- Topic 6: Juniper Advanced Threat Protection/ Describe the concepts, benefits, or operation of NAT
- Topic 7: Identify the concepts, benefits, or operation of IPsec VPNs/ Monitoring/Reporting and Troubleshooting
- Topic 8: Identify the concepts, benefits, or operation of Juniper ATP Cloud/ Unified Threat Management
Free Juniper JN0-231 Exam Actual Questions
The questions for JN0-231 were last updated On Apr. 08, 2024
What is the default timeout value for TCP sessions on an SRX Series device?
By default, TCP has a 30-minute idle timeout, and UDP has a 60-second idle timeout. Additionally, known IP protocols have a 30-minute timeout, whereas unknown ones have a 60-second timeout. Setting the inactivity timeout is very useful, particularly if you are concerned about applications either timing out or remaining idle for too long and filling up the session table. According to the Juniper SRX Series Services Guide, this can be configured using the 'timeout inactive' statement for the security policy.
What is the default value of the dead peer detection (DPD) interval for an IPsec VPN tunnel?
The default value of the dead peer detection (DPD) interval for an IPsec VPN tunnel is 5 seconds. DPD is a mechanism that enables the IPsec device to detect if the peer is still reachable or if the IPsec VPN tunnel is still active. The DPD interval determines how often the IPsec device sends DPD packets to the peer to check the status of the VPN tunnel. A value of 5 seconds is a common default, but the specific value can vary depending on the IPsec device and its configuration.
Which two statements are true about Juniper ATP Cloud? (Choose two.)
Juniper ATP Cloud is a cloud-based ATP subscription that delivers advanced threat protection services, such as URL categorization, file reputation analysis, and malware analysis. It is able to quickly and accurately categorize URLs and other web content, and can also provide detailed reporting on web usage, as well as the ability to define and enforce acceptable use policies. Additionally, Juniper ATP Cloud is able to block and allow specific IPs, providing additional protection against malicious content.
Which two statements are correct about global policies? (Choose two.)
Global policies are used to define rules for traffic that is not associated with any particular zone. This type of policy is evaluated first, before any rules related to specific zones are evaluated.
Your company is adding IP cameras to your facility to increase physical security. You are asked to help protect these loT devices from becoming zombies in a DDoS attack.
Which Juniper ATP feature should you configure to accomplish this task?
Juniper ATP should be configured with C&C feeds that contain lists of malicious domains and IP addresses in order to prevent IP cameras from becoming zombies in a DDoS attack.
This is an important step to ensure that the IP cameras are protected from malicious requests - and thus, they will not be able to be used in any DDoS attacks against the facility.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Submit Cancel
Currently there are no comments in this discussion, be the first to comment!