Pass4Test est un site à offrir particulièrement la Q&A Juniper JN0-330, vous pouvez non seulement aprrendre plus de connaissances professionnelles, et encore obtenir le Passport de Certification Juniper JN0-330, et trouver un meilleur travail plus tard. Les documentations offertes par Pass4Test sont tout étudiés par les experts de Pass4Test en profitant leurs connaissances et expériences, ces Q&As sont impresionnées par une bonne qualité. Il ne faut que choisir Pass4Test, vous pouvez non seulement passer le test Juniper JN0-330 et même se renforcer vos connaissances professionnelles IT.
Pass4Test, où vous pouvez trouver les conseils et les documentations de test Certification Juniper JN0-330, est un siteweb remarquable offrant les données à préparer le test IT. Les documentations partiels et les mis en nouveau sont offerts gratuitement dans le site de Pass4Test. D'ailleurs, nos experts profitent de leurs expériences et leurs efforts à lancer sans arrêts les Q&A plus proches au test réel. Vous allez passer votre examen plus facile.
Différentes façons peuvent atteindre le même but, ça dépend laquelle que vous prenez. Beaucoup de gens choisissent le test Juniper JN0-330 pour améliorer la vie et la carrière. Mais tous les gens ont déjà participé le test Juniper JN0-330, ils savent qu'il est difficile à réussir le test. Il y a quelques dépensent le temps et l'argent, mais ratent finalement.
Pass4Test vous offre un choix meilleur pour faire votre préparation de test Juniper JN0-330 plus éfficace. Si vous voulez réussir le test plus tôt, il ne faut que ajouter la Q&A de Juniper JN0-330 à votre cahier. Pass4Test serait votre guide pendant la préparation et vous permet à réussir le test Juniper JN0-330 sans aucun doute. Vous pouvez obtenir le Certificat comme vous voulez.
Code d'Examen: JN0-330
Nom d'Examen: Juniper (JN0-330-Enhanced Services, Specialist(JNCIS-ES))
Questions et réponses: 150 Q&As
JN0-330 Démo gratuit à télécharger: http://www.pass4test.fr/JN0-330.html
NO.1 Host A opens a Telnet connection to Host B. Host A then opens another Telnet connection to Host B.
These connections are the only communication between Host A and Host B. The security policy
configuration permits both connections. How many flows exist between Host A and Host B?
A. 1
B. 2
C. 3
D. 4
Answer: D
certification Juniper JN0-330 JN0-330 JN0-330 examen JN0-330 examen
NO.2 A traditional router is better suited than a firewall device for which function?
A. VPN establishment
B. packet-based forwarding
C. stateful packet processing
D. network address translation
Answer: B
Juniper JN0-330 JN0-330 JN0-330
NO.3 You want to create a policy allowing traffic from any host in the Trust zone to hostb.example.com
(172.19.1.1) in the
Untrust zone. How do you do create this policy?
A. Specify the IP address (172.19.1.1/32) as the destination address in the policy.
B. Specify the DNS entry (hostb.example.com.) as the destination address in the policy.
C. Create an address book entry in the Trust zone for the 172.19.1.1/32 prefix and reference this entry in
the policy.
D. Create an address book entry in the Untrust zone for the 172.19.1.1/32 prefix and reference this entry
in the policy.
Answer: D
Juniper examen certification JN0-330 certification JN0-330
NO.4 Using a policy with the policy-rematch flag enabled, what happens to the existing and new sessions
when you change the policy action from permit to deny?
A. The new sessions matching the policy are denied. The existing sessions are dropped.
B. The new sessions matching the policy are denied. The existing sessions, not being allowed to carry
any traffic, simply timeout.
C. The new sessions matching the policy might be allowed through if they match another policy. The
existing sessions are dropped.
D. The new sessions matching the policy are denied. The existing sessions continue until they are
completed or their timeout is reached.
Answer:A
Juniper JN0-330 JN0-330 examen JN0-330 JN0-330
NO.5 Click the Exhibit button.
host_a is in subnet_a and host_b is in subnet_b.
Given the configuration shown in the exhibit, which statement is true about traffic from host_a to host_b?
A. DNS traffic is denied.
B. Telnet traffic is denied.
C. SMTP traffic is denied.
D. Ping traffic is permitted.
Answer: B
certification Juniper certification JN0-330 JN0-330
NO.6 Which two are components of the enhanced services software architecture? (Choose two.)
A. Linux kernel
B. routing protocol daemon
C. session-based forwarding module
D. separate routing and security planes
Answer: BC
Juniper examen JN0-330 JN0-330 examen
NO.7 Click the Exhibit button.
In the exhibit, what is the priority for Router B in VRRP group 100?
A. 1
B. 100
C. 110
D. 255
Answer: B
Juniper JN0-330 examen JN0-330 examen certification JN0-330
NO.8 In a JSRP cluster with two J6350 routers, the interface ge-7/0/0 belongs to which device?
A. This interface is a system-created interface.
B. This interface belongs to NODE0 of the cluster.
C. This interface belongs to NODE1 of the cluster.
D. This interface will not exist because J6350 routers have only six slots.
Answer: C
Juniper certification JN0-330 certification JN0-330 JN0-330
NO.9 Which command allows you to view the router's current priority for VRRP group 100 on interface
ge-0/0/1.0?
A. show vrrp
B. show vrrp group 100
C. show interfaces ge-0/0/1.0 vrrp group 100
D. show interfaces vrrp ge-0/0/1.0 group 100
Answer:A
Juniper JN0-330 examen certification JN0-330 JN0-330 examen JN0-330 examen
NO.10 Which two are characteristics of link-state routing protocols? (Choose two.)
A. Routers choose a best path for a destination based on the SPF algorithm.
B. All routers in a given area or level build a consistent database describing the network's topology.
C. Routers choose the best path for a destination based on the interface on which they received the link
stateadvertisement with the lowest cost.
D. All routers in a given area or level forward link state advertisements between interfaces in the same
area or level,
adding their metric to the link state advertisement's cost information when they forward it.
Answer:AB
Juniper JN0-330 certification JN0-330 JN0-330
NO.11 Click the Exhibit button.
In the exhibit, what is the purpose of this OSPF configuration?
A. The router sends the file debugOSPF (containing hellos sent and LSA updates) to the syslog server.
B. The router traces both OSPF hellos sent and LSA updates, and stores the results in the debugOSPF
file.
C. The router traces both OSPF hellos sent and LSA updates, and sends the results to the syslog process
with the debugOSPF facility.
D. The router traces all OSPF operations, stores the results in the debugOSPF file, and marks both hellos
sent and LSAupdates in the file with a special flag.
Answer: B
Juniper JN0-330 examen JN0-330 examen certification JN0-330 JN0-330
NO.12 Users can define policy to control traffic flow between which two components? (Choose two.)
A. from a zone to the router itself
B. from a zone to the same zone
C. from a zone to a different zone
D. from one interface to another interface
Answer: BC
Juniper JN0-330 JN0-330 examen certification JN0-330 JN0-330 examen
NO.13 Click the Exhibit button.
Which type of source NAT is configured in the exhibit?
A. static source pool
B. interface source pool
C. source pool with PAT
D. souce pool without PAT
Answer:A
Juniper examen certification JN0-330 JN0-330 examen
NO.14 In JUNOS software with enhanced services, which three packet elements are inspected to determine
if a session
already exists? (Choose three.)
A. IP protocol
B. IP time-to-live
C. source and destination IP address
D. source and destination MAC address
E. source and destination TCP/UDP port
Answer:ACE
Juniper examen JN0-330 JN0-330 examen JN0-330 certification JN0-330
NO.15 Click the Exhibit button.
Based on the configuration shown in the exhibit, what will happen to the traffic matching the security
policy?
A. The traffic is permitted through the myTunnel IPSec tunnel only on Tuesdays.
B. The traffic is permitted through the myTunnel IPSec tunnel daily, with the exception of Mondays.
C. The traffic is permitted through the myTunnel IPSec tunnel all day on Mondays, Wednesdays between
7:00 am and 6:00 pm, and Thursdays between 7:00 am and 6:00 pm.
D. The traffic is permitted through the myTunnel IPSec tunnel all day on Mondays, Wednesdays between
6:01 pm and 6:59 am, and Thursdays between 6:01 pm and 6:59 am.
Answer: C
Juniper JN0-330 examen JN0-330 JN0-330 examen JN0-330
NO.16 Interface ge-0/0/2.0 of your router is attached to the Internet and is configured with an IP address and
network mask
of 71.33.252.17/24. A host with IP address 10.20.20.1 is running an HTTP service on TCP port 8080. This
host isattached to the ge-0/0/0.0 interface of your router. You must use interface-based static NAT to
make the HTTP service on the host reachable from the Internet.
On which IP address and TCP port can Internet hosts reach the HTTP service?
A. IP address 10.10.10.1 and TCP port 8080
B. IP address 71.33.252.17 and TCP port 80
C. IP address 71.33.251.19 and TCP port 80
D. IP address 71.33.252.19 and TCP port 8080
Answer: D
Juniper JN0-330 certification JN0-330 JN0-330 JN0-330
NO.17 You must configure a SCREEN option that would protect your router from a session table flood.
Which configuration meets this requirement?
A. [edit security screen]
user@hostl# show
ids-option protectFromFlood {
icmp {
ip-sweep threshold 5000;
flood threshold 2000;
}
B. [edit security screen]
user@hostl# show
ids-option protectFromFlood {
tcp {
syn-flood {
attack-threshold 2000;
destination-threshold 2000;
}
C. [edit security screen]
user@hostl# show
ids-option protectFromFlood {
udp {
flood threshold 5000;
}
D. [edit security screen]
user@hostl# show
ids-option protectFromFlood {
limit-session {
source-ip-based 1200;
destination-ip-based 1200;
}
Answer: D
Juniper JN0-330 examen JN0-330 examen JN0-330 JN0-330 JN0-330 examen
NO.18 Which three security concerns can be addressed by a tunnel mode IPSec VPN secured by AH?
(Choose three.)
A. data integrity
B. data confidentiality
C. data authentication
D. outer IP header confidentiality
E. outer IP header authentication
Answer:ACE
Juniper examen certification JN0-330 JN0-330 examen
NO.19 Which two statements regarding asymmetric key encryption are true? (Choose two.)
A. The same key is used for encryption and decryption.
B. It is commonly used to create digital certificate signatures.
C. It uses two keys: one for encryption and a different key for decryption.
D. An attacker can decrypt data if the attacker captures the key used for encryption.
Answer: BC
Juniper examen JN0-330 examen JN0-330
NO.20 You want to enable SSH and Telnet access to the router's CLI. Under which configuration hierarchy
would you enable these protocols?
A. [edit system cli]
B. [edit security cli]
C. [edit system services]
D. [edit security services]
Answer: C
Juniper JN0-330 examen certification JN0-330 JN0-330 examen certification JN0-330 JN0-330 examen
NO.21 Which two are components of the JUNOS software's routing policy? (Choose two.)
A. route-map
B. prefix-list
C. distribute-list
D. policy-statement
Answer: BD
Juniper JN0-330 examen certification JN0-330 JN0-330 JN0-330
NO.22 Click the Exhibit button.
In the exhibit, which statement is correct?
A. Three physical interfaces are redundant.
B. You must define an additional Redundancy Group.
C. node 0 will immediately become primary in the cluster.
D. You must issue an operational command and reboot the system for the above configuration to take
effect.
Answer: D
certification Juniper JN0-330 examen JN0-330
NO.23 You are not able to telnet to the interface IP of your JUNOS software with enhanced services device
from a PC on the same subnet. What is causing the problem?
A. Telnet is not being permitted by self policy.
B. Telnet is not being permitted by security policy.
C. Telnet is not allowed because it is not considered secure.
D. Telnet is not enabled as a host-inbound service on the zone.
Answer: D
Juniper JN0-330 JN0-330
NO.24 Which parameters must you select when configuring operating system probes SCREEN options?
A. syn-fin, syn-flood, and tcp-no-frag
B. syn-fin, port-scan, and tcp-no-flag
C. syn-fin, fin-no-ack, and tcp-no-frag
D. syn-fin, syn-ack-ack-proxy, and tcp-no-frag
Answer: C
Juniper examen certification JN0-330 JN0-330
NO.25 A route-based VPN is required for which scenario?
A. when the remote VPN peer is behind a NAT device
B. when multiple networks need to be reached across the tunnel
C. when the remote VPN peer is a dialup or remote access client
D. when a dynamic routing protocol such as OSPF is required across the VPN
Answer: D
Juniper examen JN0-330 examen JN0-330 JN0-330 examen
NO.26 Which three parameters are configured in the IKE policy? (Choose three.)
A. mode
B. preshared key
C. external interface
D. security proposals
E. dead peer detection settings
Answer: ABD
Juniper certification JN0-330 certification JN0-330 JN0-330 examen
NO.27 Which statement is true about interface-based static NAT?
A. It also supports PAT.
B. It requires you to configure address entries in the junos-nat zone.
C. It requires you to configure address entries in the junos-global zone.
D. The IP addresses being translated must be in the same subnet as the incoming interface.
Answer: D
Juniper JN0-330 JN0-330 JN0-330
NO.28 Click the Exhibit button.
Based on the exhibit, client PC 192.168.10.10 cannot ping 1.1.1.2.
Which is a potential cause for this problem?
A. The untrust zone does not have a management policy configured.
B. The trust zone does not have ping enabled as host-inbound-traffic service.
C. The security policy from the trust zone to the untrust zone does not permit ping.
D. No security policy exists for the ICMP reply packet from the untrust zone to the trust zone.
Answer: C
Juniper certification JN0-330 JN0-330 JN0-330 JN0-330 examen certification JN0-330
NO.29 On which three traffic types does firewall pass-through authentication work? (Choose three.)
A. ping
B. FTP
C. Telnet
D. HTTP
E. HTTPS
Answer: BCD
certification Juniper JN0-330 JN0-330 JN0-330 JN0-330 JN0-330
La Q&A Juniper JN0-330 est étudiée par les experts de Pass4Test qui font tous effort en profitant leurs connaissances professionnelles. La Q&A de Pass4Test est ciblée aux candidats de test IT Certification. Vous voyez peut-être les Q&As similaires dansn les autres site web, mais il n'y a que Pass4Test d'avoir le guide d'étude plus complet. C'est le meilleur choix à s'assurer le succès de test Certification Juniper JN0-330.
