题库
  • 题库
  • 考试

移动端

  • 题王微信公众号

    微信搜“题王网”真题密题、最新资讯、考试攻略、轻松拿下考试

计算机考试 | juniper认证考试

科目:

JN0-331

[切换]
JN0-311 JN0-120 JN0-332 JN0-304 JN0-342 JN0-201 JN0-331 JN0-320 JN0-102 JN0-100 JN0-330 JN0-314 JN0-303 JN0-140 JN0-341 JN0-101 JN0-130
题库
练习
章节题库 高频考题 考前必做 押题密卷
考试
资讯
备考资料 历年真题 真题模拟 考试公告 考试时间 考试条件 考试指导
更多分类
备考资料 历年真题 真题模拟 考试公告 考试时间 考试条件 考试指导 考试大纲 考试科目
首页/ 计算机考试/ juniper认证考试/ JN0-331

模式切换

查看模式 练习模式
0 0 0
我的错题 我的收藏 学习笔记

章节目录

单选题 Two VPN peers are negotiating IKE phase 1 using main mode. Which message pair in the negotiation contains the phase 1 proposal for the peers?()

A

message 1 and 2

B

message 3 and 4

C

message 5 and 6

D

message 7 and 8

单选题 You are not able to telnet to the interface IP address of your device from a PC on the same subnet. What iscausing the problem?()

A

Telnet is not being permitted by self policy.

B

Telnet is not being permitted by security policy.

C

Telnet is not allowed because it is not considered secure.

D

Telnet is not enabled as a host-inbound service on the zone

单选题 Which parameters are valid SCREEN options for combating operating system probes?()

A

syn-fin, syn-flood, and tcp-no-frag

B

syn-fin, port-scan, and tcp-no-flag

C

syn-fin, fin-no-ack, and tcp-no-frag

D

syn-fin, syn-ack-ack-proxy, and tcp-no-frag

单选题 Regarding zone types, which statement is true?()

A

You cannot assign an interface to a functional zone.

B

You can specifiy a functional zone in a security policy.

C

Security zones must have a scheduler applied.

D

You can use a security zone for traffic destined for the device itself.

单选题 You must configure a SCREEN option that would protect your device from a session table flood.Which configuration meets this requirement?()

A

A

B

B

C

C

D

D

单选题 For IKE phase 1 negotiations, when is aggressive mode typically used?()

A

when one of the tunnel peers has a dynamic IP address

B

when one of the tunnel peers wants to force main mode to be used

C

when fragmentation of the IKE packet is required between the two peers

D

when one of the tunnel peers wants to specify a different phase 1 proposal

单选题 A route-based VPN is required for which scenario?()

A

when the remote VPN peer is behind a NAT device

B

when multiple networks need to be reached across the tunnel and GRE cannot be used

C

when the remote VPN peer is a dialup or remote access client

D

when a dynamic routing protocol is required across the VPN and GRE cannot be used

单选题 Which statement is true about source NAT?()

A

Source NAT works only with source pools.

B

Destination NAT is required to translate the reply traffic.

C

Source NAT does not require a security policy to function.

D

The egress interface IP address can be used for source NAT

多选题 Which two statements regarding asymmetric key encryption are true?()

A

The same key is used for encryption and decryption.

B

It is commonly used to create digital certificate signatures.

C

It uses two keys: one for encryption and a different key for decryption.

D

An attacker can decrypt data if the attacker captures the key used for encryption

多选题 What are two components of the JUNOS Software architecture?()

A

Linux kernel

B

routing protocol daemon

C

session-based forwarding module

D

separate routing and security planes

推荐考题

最新资讯

推荐考试

全科医学主治医师 广西住院医师 陕西住院医师 华为认证考试 中级质量师 初级质量师 病案信息技术(主管技师) 医学高级妇产科 注册一级结构工程师 理化检验技术中级职称
1 2 3 4 5 下一页 尾页 /

到第