EMT Practice Test

1. Question Content...


Question List

Question1: Referring to the exhibit.

You have configured antispam to allow e-mail from example.com, however the logs you see that
[email protected] is blocked What are two ways to solve this problem?

Question2: You want to automatically generate the encryption and authentication keys during IPsec VPN establishment.
What would be used to accomplish this task?

Question3: You want to deploy, manage, and configure multiple SRX series devices without an on-premises software solution which solution would satisfy this requirement?

Question4: Users in your network are downloading files with file extensions that you consider to be unsafe for your network. You must prevent files with specific file extensions from entering your network.
Which UTM feature should be enable on an SRX Series device to accomplish this task?

Question5: You have created a zones-based security policy that permits traffic to a specific webserver for the marketing team. Other groups in the company are not permitted to access the webserver. When marketing users attempt to access the server they are unable to do so.
What are two reasons for this access failure? (Choose two.)

Question6: Your company uses SRX Series devices to secure the edge of the network. You are asked protect the company from ransom ware attacks.
Which solution will satisfy this requirement?

Question7: Which statements about NAT are correct? (Choose two.)

Question8: What is the definition of zone on an SRX series devices?

Question9: Which two private cloud solution support vSRX devices? (Choose two.)

Question10: Which two elements are needed on an SRX Series device to set up a remote syslog server? (Choose two.)

Question11: Referring to the exhibit.

Host-inbound-traffic is configured on the DMZ zone and the ge-0/0/9.0 interface attached to that zone.
Which to types of management traffic would be performed on the SRX Series device? (Choose two.)

Question12: BY default, revenue interface are placed into which system-defined security zone on an SRX series device?

Question13: Which statement about IPsec is correct?

Question14: Which method do VPNs use to prevent outside parties from viewing packet in clear text?

Question15: You verify that the SSH service is configured correctly on your SRX Series device, yet administrators attempting to connect through a revenue port are not able to connect.
In this scenario, what must be configured to solve this problem?

Question16: You configure and applied several global policies and some of the policies have overlapping match criteria.

Question17: You want to generate reports from the l-Web on an SRX Series device.
Which logging mode would you use in this scenario?

Question18: Which statements describes stateless firewalls on SRX series devices?

Question19: What are the valid actions for a source NAT rule in J-Web? (choose three.)

Question20: Which two feature on the SRX Series device are common across all Junos devices? (Choose two.)

Question21: Which security object defines a source or destination IP address that is used for an employee Workstation?

Question22: What is a type of security feed that Sky ATP provides to a vSRX series device by default?

Question23: Which two segments describes IPsec VPNs? (Choose two.)

Question24: Which source NAT rule set would be used when a packet matches the conditions in multiple rule sets?

Question25: Which zone is considered a functional zone?

Question26: Which actions would be applied for the pre-ID default policy unified policies?