NEW QUESTION NO: 20
Click the Exhibit button.

The UTM policy shown in the exhibit has been applied to a security policy on a branch SRX Series device.
In this scenario, which statement is true?
A. HTTP downloads of ZIP files will be blocked.
B. FTP downloads of ZIP files will be blocked.
C. ZIP files can be renamed with a new extension to pass through the filter.
D. E-mail downloads of ZIP files will be blocked.
Answer: A
NEW QUESTION NO: 21
Your network includes SRX Series devices at the headquarters location. The SRX Series devices at this
location are part of a high availability chassis cluster and are expected to support several UTM features.
Which two statements related to this environment are true? (Choose two.)
A. The chassis cluster must be configured for active/active mode.
B. UTM features must be configured on the primary node within the cluster.
C. UTM features can be configured on either of the nodes within the cluster.
D. The chassis cluster must be configured for active/backup mode.
Answer: C,D
NEW QUESTION NO: 22
Your network includes SRX Series devices at the headquarters location. The SRX Series devices at this
location are part of a high availability chassis cluster and are configured for IPS. There has been a node
failover.
In this scenario, which statement is true?
A. Existing sessions continue to be processed by IPS because of table synchronization.
B. Existing sessions are no longer processed by IPS and become firewall sessions.
C. Existing session continue to be processed by IPS as long as GRES is configured.
D. Existing sessions are dropped and must be reestablished so IPS processing can occur.
Answer: A
NEW QUESTION NO: 23
What are three components of Software-Defined Secure Networks? (Choose three.)
A. Security Director
B. Sky ATP
C. SRX Series device
D. Network Director
E. Contrail
Answer: A,B,C
NEW QUESTION NO: 24
Click the Exhibit button.

Two hosts on the same subnet are connected to an SRX340 using interfaces ge-0/0/4 and ge-0/0/5. The
two hosts can communicate with each other, but they cannot communicate with hosts outside of their
subnet.
Referring to the exhibit, which three actions would you take to solve this problem? (Choose three.)
A. Configure a security policy to permit the traffic.
B. Set the SRX340 to Ethernet switching mode.
C. Remove the irb.0 interface from the L2 zone.
D. Reboot the SRX340.
E. Add the ge-0/0/4 and ge-0/0/5 interfaces to the L2 zone.
Answer: A,B,D
NEW QUESTION NO: 25
Click the Exhibit button.

Referring to the exhibit, which statement is true?
A. E-mails from the [email protected] address are allowed by the allowwhitelist.
B. E-mails from the [email protected] address are marked with SPAMin the subject line by the spam
block list server.
C. E-mails from the [email protected] address are blocked by the spam list server.
D. E-mails from the [email protected] address are blocked by the rejectblacklist.
Answer: A
NEW QUESTION NO: 26
Click the Exhibit button.

A customer submits a service ticket complaining that access to http://www.example.com/ has been
blocked.
Referring to the log message shown in the exhibit, why was access blocked?
A. There was a website category infraction.
B. The URI matched a profile entry.
C. The user/role permissions were exceeded.
D. All illegal source port was utilized.
Answer: B
NEW QUESTION NO: 27
You are implementing user authentication on your network using an SRX Series device and want to ensure
that there are redundant forms of authentication for users to access the network. You have configured the
device with the integrated user firewall and user role firewall features. You are testing failover methods
using the default priority values.
In this scenario, which two statements are true? (Choose two.)
A. If the user fails local authentication, then the Junos OS will attempt to authenticate the user with a user
role firewall.
B. If the user fails local authentication, then the Junos OS will attempt to authenticate the user with an
integrated user firewall.
C. If the user fails integrated user firewall authentication, then the Junos OS will attempt to authenticate
with a user role firewall.
D. If the user fails user role firewall authentication, then the Junos OS will attempt to authenticate the user
with an integrated user firewall.
Answer: B,C
NEW QUESTION NO: 28
Which AppSecure feature identifies applications that are present in traffic?
A. AppTrack
B. AppID
C. AppFW
D. AppQoS
Answer: B
NEW QUESTION NO: 29
You have implemented APBR on your SRX Series device and are verifying that your changes are working
properly. You notice that when you start the application for the first time, it does not follow the expected
path.
What are two reasons that would cause this behavior? (Choose two.)
A. The application system cache has been disabled.
B. The application system cache does not have an entry for the first session.
C. The advanced policy-based routing is applied to the ingress zone and must be moved to the egress
zone.
D. The application system cache already has an entry for this application.
Answer: A,B
NEW QUESTION NO: 30
The Software-Defined Secure Networks Policy Enforcer contains which two components? (Choose two.)
A. Policy Controller
B. SRX Series device
C. Sky ATP
D. Feed Connector
Answer: A,D
NEW QUESTION NO: 31
Which Junos security feature is used for signature-based attack prevention?
A. RADIUS
B. AppQoS
C. IPS
D. PIM
Answer: C
NEW QUESTION NO: 32
Click the Exhibit button.

Your organization requests that you direct Facebook traffic out a different link to ensure that the bandwidth
for critical applications is protected.
Referring to the exhibit, which forwarding instance will be used on your SRX Series device?
A. R2
B. R1
C. R3
D. inet.0
Answer: A
NEW QUESTION NO: 33
You have set up Sky ATP with the SRX Series devices in your network. However, your SRX Series
devices are unable to communicate with the Sky ATP cloud because the communication is being blocked
by a gateway network device.
Which two actions should you take to solve the problem? (Choose two.)
A. Open destination port 8080 inbound from the Internet on the gateway network device.
B. Open destination port 8080 outbound from the Internet on the gateway network device.
C. Open destination port 443 inbound from the Internet on the gateway network device.
D. Open destination port 443 outbound from the Internet on the gateway network device.
Answer: A,D
NEW QUESTION NO: 34
Click the Exhibit button.

Referring to the security policy shown in the exhibit, which two actions will happen as the packet is
processed? (Choose two.)
A. It marks and passes matched traffic with a low DSCP priority.
B. It marks and passes matched traffic with a high DSCP priority.
C. It passes unmatched traffic without modifying DSCP priority.
D. It passes unmatched traffic after modifying the DSCP priority.
Answer: B,C
NEW QUESTION NO: 35
SRX Series devices with AppSecure support which three custom signatures? (Choose three.)
A. IP protocol-based mapping
B. Layer 7-based signatures
C. latency detection mapping
D. ICMP-based mapping
E. MAC address-based mapping
Answer: A,B,D
NEW QUESTION NO: 36
Click the Exhibit button.

Which statement explains the current state value of the command output shown in the exhibit?
A. The user-to-address mapping was successfully read from the domain controller event logs, and an
entry was added to the authentication table witch currently resides on the Routing Engine.
B. An invalid response was received from a domain PC probe, and the user is an invalid domain user.
C. A valid response was received from a domain PC probe, and the user is a valid domain user
programmed in the PFE.
D. A probe event generated an entry in the authentication table, but no probe response has been received
from the domain PC.
Answer: C
NEW QUESTION NO: 37
What are three types of content that are filtered by the Junos UTM feature set? (Choose three.)
A. SIP
B. IMAP
C. HTTP
D. SSL
E. FTP
Answer: B,C,E
NEW QUESTION NO: 38
Your network includes SRX Series devices at the headquarters location. The SRX Series devices at this
location are part of a high available chassis cluster and are configured for IPS. There has been a node
failover.
In this scenario, which two statements are true? (Choose two.)
A. Cached SSL session ID information for existing sessions is not synchronized between nodes.
B. The IP action table is synchronized between the chassis cluster nodes.
C. The IP action table is not synchronized between the chassis cluster nodes.
D. Cached SSL session ID information for existing session is synchronized between nodes.
Answer: C,D
NEW QUESTION NO: 39
Your network includes SRX Series devices configured with AppSecure.
Which two statements regarding the application identification engine are true? (Choose two.)
A. Applications are matched in traffic flows associated with client-to-server and server-to-client sessions.
B. If the packets entering the engine match a known application, then processing stops.
C. If the packets entering the engine match a known application, then processing continues.
D. Applications are only matched in traffic flows associated with client-to-server sessions.
Answer: A,B
NEW QUESTION NO: 40
Which browser is supported by Security Director with Logging and Reporting?
A. Agora
B. Mosaic
C. PowerBrowser
D. Firefox
Answer: D
https://www.newpassleader.com/Juniper/JN0-634-exam-preparation-materials.html