EMT Practice Test

1. Question Content...


Question List

Question1: On an SRX Series device, how should you configure your IKE gateway if the remote endpoint is a branch office-using a dynamic IP address?

Question2: You have configured antispam to allow e-mail from example.com, however the logs you see that [email protected] is blocked Referring to the exhibit.

What are two ways to solve this problem?

Question3: Which statement is correct about IKE?

Question4: What must you do first to use the Monitor/Events workspace in the j-Web interface?

Question5: Which statement about IPsec is correct?

Question6: What is the correct order of processing when configuring NAT rules and security policies?

Question7: You configure and applied several global policies and some of the policies have overlapping match criteria.

Question8: You want to generate reports from the l-Web on an SRX Series device.
Which logging mode would you use in this scenario?

Question9: Which two private cloud solution support vSRX devices? (Choose two.)

Question10: What are two characteristic of static NAT SRX Series devices? (Choose two.)

Question11: Which two statements are correct about functional zones? (Choose two.)

Question12: BY default, revenue interface are placed into which system-defined security zone on an SRX series device?

Question13: Which management software supports metadata-based security policies that are ideal for cloud deployments?

Question14: You are concerned that unauthorized traffic is using non-standardized ports on your network.
In this scenario, which type of security feature should you implement?

Question15: Which statements is correct about global security policies?

Question16: You are designing a new security policy on an SRX Series device. You must block an application and log all occurrence of the application access attempts.
In this scenario, which two actions must be enabled in the security policy? (Choose two.)

Question17: Which three actions would be performed on traffic traversing an IPsec VPAN? (Choose three.)

Question18: Which type of security policy protect restricted services from running onnon-standard ports?

Question19: Which two statements are true about UTM on an SRX340? (Choose two.)

Question20: A new SRX Series device has been delivered to your location. The device has the factory-default configuration loaded. You have powered on the device and connected to the console port.
What would you use to log into the device to begin the initial configuration?

Question21: Which two elements are needed on an SRX Series device to set up a remotesyslogserver? (Choose two.)

Question22: Users should not have access to Facebook, however, a recent examination of the logs security show that users are accessing Facebook.
Referring to the exhibit,

what should you do to solve this problem?

Question23: Which two actions are performed on an incoming packet matching an existing session? (Choose two.)

Question24: On an SRX device, you want to regulate traffic base on network segments.
In this scenario, what do you configure to accomplish this task?

Question25: Which method do VPNs use to prevent outside parties from viewing packet in clear text?

Question26: Which two feature on the SRX Series device are common across all Junos devices? (Choose two.)

Question27: Which UTM feature should you use to protect users from visiting certain blacklisted websites?

Question28: Which two statements are true about the null zone? (Choose two.)

Question29: What are configuring the antispam UTM feature on an SRX Series device.
Which two actions would be performed by the SRX Series device for e-mail that is identified as spam?
(Choose two.)

Question30: Firewall filters define which type of security?

Question31: Which two match conditions would be used in both static NAT and destination NAT rule sets? (Choose two.)

Question32: Which security object defines a source or destination IP address that is used for an employee Workstation?

Question33: What should you configure if you want to translate private source IP address to a single public IP address?

Question34: What are the valid actions for a source NAT rule in J-Web? (choose three.)

Question35: Which two statements are correct about using global-based policies over zone-based policies? (Choose two.)