EMT Practice Test

1. Question Content...


Question List

Question1: You are designing a network management solution that provides automation for Junos devices. Your customer wants to know which solutions would require additional software to be deployed to existing Junos devices.
Which two solutions satisfy this scenario? (Choose two.)

Question2: You are asked to provide a design proposal for a campus network. As part of the design, the customer requires that all end user devices must be authenticated before being granted access to their Layer 2 network.
Which feature meets this requirement?

Question3: You are working on a network design that will use EX Series devices as Layer 2 access switches in a campus environment. You must include Junos Space in your design. You want to take advantage of security features supported on the devices.
Which two security features would satisfy this requirement? (Choose two.)

Question4: You are deploying Security Director with the logging and reporting functionality for VMs that use SSDs. You expect to have approximately 20,000 events per second of logging in your network.
In this scenario, what is the minimum number of logging and reporting devices that should be used?

Question5: Which two steps should be included in your security design process? (Choose two.)

Question6: You are designing an SDSN security solution for a new campus network. The network will consist of Juniper Networks Policy Enforcer, Juniper Networks switches, third-party switches, and SRX Series devices. The switches and the SRX Series devices will be used as security enforcement points. The design must be able to change the VLAN mapping of the switch port of a user that is already authenticated to the network in the event that the end user device becomes compromised.
Which component satisfies this requirement?

Question7: You are using SRX Series devices to secure your network and you require sandboxing for malicious file detonation. However, per company policy, you cannot send potentially malicious files outside your network for sandboxing.
Which feature should you use in this situation?

Question8: You are designing a solution to protect a service provider network against volumetric denial-of-service attacks.
Your main concern is to protect the network devices.
Which two solutions accomplish this task? (Choose two.)

Question9: You are asked to design a security solution for your client's new two-tier data center. The client has a need for some flows to bypass firewall inspection entirely.
Where should the firewall be deployed in this data center?

Question10: You are designing an enterprise WAN network that must connect multiple sites. You must provide a design proposal for the security elements needed to encrypt traffic between the remote sites. Which feature will secure the traffic?

Question11: You are designing an SDSN security solution for a new campus network. The network will consist of Juniper Networks Policy Enforcer, Juniper Networks switches, third-party switches, and SRX Series devices. The switches and the SRX Series devices will be used as security enforcement points.
Which component supports the SRX Series devices in this scenario?

Question12: Policy Enforcer provides which benefit?

Question13: You are concerned about users downloading malicious attachments at work while using encrypted Web mail.
You want to block these malicious files using your SRX Series device.
In this scenario, which two features should you use? (Choose two.)

Question14: You are designing a corporate WAN using SRX Series devices as a combined firewall and router at each site.
Regarding packet-mode and flow-mode operations in this scenario, which statement is true?

Question15: You are asked to design a VPN solution between 25 branches of a company. The company wants to have the sites talk directly to each other in the event of a hub device failure. The solution should follow industry standards.
Which solution would you choose in this scenario?

Question16: You are designing a new network for your organization with the characteristics shown below.
All traffic must pass inspection by a security device.
A center-positioned segmentation gateway must provide deep inspection of each packet using 10 Gbps interfaces.
Policy enforcement must be centrally managed.
Which security model should you choose for your network design?

Question17: Which solution provides a certificate based on user identity for network access?

Question18: Which statement is correct about service chaining?

Question19: You are creating a security design proposal for an enterprise customer. As part of the design, you are implementing 802.1x authentication on your EX Series devices.
In this scenario, which two statements are correct? (Choose two.)

Question20: You are designing a new campus Internet access service that implements dynamic NAT for customer IP addressing. The customer requires services that allow peer-to-peer networking and online gaming.
In this scenario, what will accomplish this task?

Question21: You are creating a security design proposal for a customer who is connecting their headquarters to a remote branch site over an unsecured Internet connection. As part of your design, you must recommend a solution to connect these sites together and ensure that the communication is secured and encrypted.
In this scenario, which solution do you recommend?

Question22: You have multiple SRX chassis clusters on a single broadcast domain.
Why must you assign different cluster IDs in this scenario?

Question23: Click the Exhibit button.

Which type of security solution is shown in this exhibit?