EMT Practice Test

1. Question Content...


Question List

Question1: You are building a VPN tunnel between two SRX Series devices. You want the tunnel to always be established, even if there is no traffic to send. Which action would be used to achieve this goal?

Question2: What are two valid JIMS event log sources? (Choose two.)

Question3: Which two are negotiated during Phase 2 of an IPsec VPN tunnel establishment? (Choose two.)

Question4: In an Active/Active chassis cluster deployment, which chassis cluster component is responsible for RG0 traffic?

Question5: You want to deploy a virtualized SRX in your environment. In this scenario, why would you use a vSRX instead of a cSRX? (Choose two.)

Question6: Which security log message format reduces the consumption of CPU and storage?

Question7: You have implemented SSL proxy client protection. After implementing this feature, your users are complaining about the warning message shown in the exhibit.

Which action must you perform to eliminate the warning message?

Question8: You need to implement Junos Screen options to protect traffic coming through the ge-0/0/0 and ge-0/0/1 interfaces which are located in the trust and DMZ zones, respectively. Where would you enable the Junos Screen options?

Question9: When a security policy is deleted, which statement is correct about the default behavior of active sessions allowed by that policy?

Question10: You have deployed JSA and you need to view events and network activity that match rule criteria.
You must view this data using a single interface.
Which JSA feature should you use in this scenario?

Question11: You want to permit access to an application but block application sub-features that enable users to upload content.
Which two security policy features provide this capability? (Choose two.)

Question12: What is the default session timeout value for ICMP and UDP traffic?

Question13: Which method does the loT Security feature use to identify traffic sourced from IoT devices?

Question14: Which two statements describe SSL proxy on SRX Series devices? (Choose two.)

Question15: You are asked to establish an IPsec VPN between two sites. You are also required to establish an OSPFv2 adjacency across this VPN.

Question16: Which three statements about SRX Series device chassis clusters are true? (Choose three.)

Question17: The output shown in the exhibit is displayed in which format?

Question18: Which two solutions provide a sandboxing feature for finding zero-day malware threats? (Choose two.)

Question19: Which two statements are true about the vSRX? (Choose two.)

Question20: You are asked to implement IPS on your SRX Series device. In this scenario, which two tasks must be completed before a configuration will work? (Choose two.)

Question21: You are asked to block malicious applications regardless of the port number being used. In this scenario, which two application security features should be used? (Choose two.)

Question22: You are troubleshooting unexpected issues on your JIMS server due to out of order event log timestamps.
Which action should you take to solve this issue?

Question23: Click the Exhibit button. You are asked to create a security policy that will automatically add infected hosts to the infected hosts feed and block further communication through the SRX Series device.
What needs to be added to this configuration to complete this task?

Question24: While working on an SRX firewall, you execute the show security policies policy-name <name> detail command.
Which function does this command accomplish?

Question25: Your network uses a single JSA host and you want to implement a cluster. In this scenario, which two statements are correct? (Choose two.)

Question26: You want to set up JSA to collect network traffic flows from network devices on your network.
Which two statements are correct when performing this task? (Choose two.)

Question27: You are asked to create an IPS-exempt rule base to eliminate false positives from happening.
Which two configuration parameters are available to exclude traffic from being examined?
(Choose two.)

Question28: Referring to the exhibit, what will the SRX Series device do in this configuration?

Question29: Click the Exhibit button.

You have configured the scheduler shown in the exhibit to prevent users from accessing certain websites from 1:00 PM to 3:00 PM Monday through Friday. This policy will remain in place until further notice. When testing the policy, you determine that the websites are still accessible during the restricted times.
In this scenario, which two actions should you perform to solve the problem? (Choose two.)

Question30: The AppQoE module of AppSecure provides which function?

Question31: Referring to the exhibit, which two statements describe the type of proxy used? (Choose two.)

Question32: You are asked to convert two standalone SRX Series devices to a chassis cluster deployment.
You must ensure that your IPsec tunnels will be compatibla with the new deployment.
In this scenario, which two interfaces should be used when binding your tunnel endpoints?
(Choose two.)

Question33: Regarding dynamic attack object groups, which two statements are true? (Choose two.)

Question34: When referencing a SSL proxy profile in a security policy, which two statements are correct?
(Choose two.)

Question35: Which two statements describe superflows in Juniper Secure Analytics? (Choose two.)

Question36: You are asked to ensure that if the session table on your SRX Series device gets close to exhausting its resources, that you enforce a more aggress.ve age-out of existing flows. In this scenario, which two statements are correct? (Choose two.)

Question37: Your manager asks you to provide firewall and NAT services in a private cloud. Which two solutions will fulfill the minimum requirements for this deployment? (Choose two.)

Question38: You must deploy AppSecure in your network to block risky applications. In this scenario, which two AppSecure features are required? (Choose two.)

Question39: Which two statements are true about Juniper ATP Cloud? (Choose two.)

Question40: You need to deploy an SRX Series device in your virtual environment.
In this scenario, what are two benefits of using a CSRX? (Choose two.)

Question41: Which two statements are true about application identification? (Choose two.)

Question42: Which two functions are performed by Juniper Identity Management Service (JIMS)? (Choose two.)

Question43: You have deployed an SRX300 Series device and determined that files have stopped being scanned.
In this scenario, what is a reason for this problem?

Question44: Which two statements are correct about the cSRX? (Choose two.)

Question45: Which two statements are correct about a reth LAG? (Choose two.)

Question46: You want to manually failover the primary Routing Engine in an SRX Series high availability cluster pair.
Which step is necessary to accomplish this task?

Question47: Click the Exhibit button.

You have deployed Sky ATP to protect your network from attacks so that users are unable to download malicious files. However, after a user attempts to download a malicious file, they are still able to communicate through the SRX Series device.
Referring to the exhibit, which statement is correct?

Question48: What are two benefits of using a vSRX in a software-defined network? (Choose two.)

Question49: Which two statements are correct about Juniper ATP Cloud? (Choose two.)

Question50: You have just configured source NAT with a pool of addresses within the same subnet as the egress interface. What else must be configured to make the addresses in the pool usable?

Question51: Which three statements are correct about fabric interfaces on the SRX5800? (Choose three.)

Question52: Click the Exhibit button. You are validating the configuration template for device access.
The commands in the exhibit have been entered to secure IP access to an SRX Series device.
Referring to the exhibit, which two statements are true? (Choose two.)

Question53: Which statement describes the AppTrack module in AppSecure?

Question54: Which two statements are correct about the fab interface in a chassis cluster? (Choose two.)

Question55: The output shown in the exhibit is displayed in which format?

Question56: Which sequence does an SRX Series device use when implementing stateful session security policies using Layer 3 routes?

Question57: What are two examples of RTOs? (Choose two.)

Question58: You are preparing a proposal for a new customer who has submitted the following requirements for a vSRX deployment:
-- globally distributed,
-- rapid provisioning,
-- scale based on demand,
-- and low CapEx.
Which solution satisfies these requirements?

Question59: What are two management methods for cSRX? (Choose two.)

Question60: Click the Exhibit button. You have implemented SSL client protection proxy. Employees are receiving the error shown in the exhibit.
How do you solve this problem?

Question61: Which two statements are correct about AppTrack? (Choose two.)

Question62: You are deploying a vSRX into a vSphere environment which applies the configuration from a bootable ISO file containing the juniper.conf file. After the vSRX boots and has the configuration applied, you make additional device specific configuration changes, commit, and reboot the device. Once the device finishes rebooting, you notice the specific changes you made are missing but the original configuration is applied.
In this scenario, what is the problem?

Question63: Which two statements describe how rules are used with Juniper Secure Analytics? (Choose two.)

Question64: Which solution enables you to create security policies that include user and group information?

Question65: You want to control when cluster failovers occur.
In this scenario, which two specific parameters would you configure on an SRX Series device?
(Choose two.)

Question66: Which two statements are correct about a policy scheduler? (Choose two.)

Question67: You are configuring logging for a security policy.
In this scenario, in which two situations would log entries be generated? (Choose two.)

Question68: Which two statements describe the output shown in the exhibit? (Choose two.)

Question69: After JSA receives external events and flows, which two steps occur? (Choose two.)

Question70: Which feature is used when you want to permit traffic on an SRX Series device only at specific times?

Question71: Which two statements describe application-layer gateways (ALGs)? (Choose two.)

Question72: Which two statements are true about the fab interface in a chassis cluster? (Choose two.)

Question73: Which two statements describe IPS? (Choose two.)

Question74: What is the default timeout period for a TCP session in the session table of a Junos security device?

Question75: What are two requirements for enabling AppQoE? (Choose two.)

Question76: Which two statements are correct about chassis clustering? (Choose two.)

Question77: Your company is using the Juniper ATP Cloud free model. The current inspection profile is set at
10 MB You are asked to configure ATP Cloud so that executable files up to 30 MB can be scanned while at the same time minimizing the change in scan time for other file types.
Which configuration should you use in this scenario?

Question78: You must fine tune an IPS security policy to eliminate false positives. You want to create exemptions to the normal traffic examination for specific traffic.
Which two parameters are required to accomplish this task? (Choose two.)

Question79: You are asked to find systems running applications that increase the risks on your network. You must ensure these systems are processed through IPS and Juniper ATP Cloud for malware and virus protection.
Which Juniper Networks solution will accomplish this task?

Question80: You must configure JSA to accept events from an unsupported third-party log source.
In this scenario, what should you do?

Question81: You are experiencing excessive packet loss on one of your two WAN links, each link coming from a different provider. You want to automatically route traffic from the degraded link to the working link.
Which AppSecure component would you use to accomplish this task?

Question82: You must block the lateral spread of Remote Administration Tools (RATs) that use SMB to propagate within the network, using the JATP solution.
Which action would accomplish this task?

Question83: Which two statements are correct about the Junos IPS feature? (Choose two.)

Question84: A client has attempted communication with a known command-and-control server and it has reached the configured threat level threshold.
Which feed will the clients IP address be automatically added to in this situation?

Question85: Which two statements are correct about SSL proxy server protection? (Choose two.)

Question86: Which two statements are true about the vSRX? (Choose two.)

Question87: Click the Exhibit button.

Referring to the exhibit, which two values in the JIMS SRX client configuration must match the values configured on the SRX client? (Choose two.)

Question88: Which statement regarding Juniper Identity Management Service (JIMS) domain PC probes is true?

Question89: Which statement about the control link in a chassis cluster is correct?

Question90: What are two elements of a custom IDP/IPS attack object? (Choose two.)

Question91: Which two statements apply to policy scheduling? (Choose two.)

Question92: You are asked to ensure that servers running the Ubuntu OS will not be able to update automatically by blocking their access at the SRX firewall. You have configured a unified security policy named BlockUbuntu, but it is not blocking the updates to the OS.
Referring to the exhibit, which statement will block the Ubuntu OS updates?

Question93: Click the Exhibit button. Which two statements describe the output shown in the exhibit? (Choose two.)

Question94: Referring to the configuration shown in the exhibit, which two statements are true? (Choose two.)

Question95: Which two session parameters would be used to manage space on the session table? (Choose two.)

Question96: What are two types of collectors for the JATP core engine? (Choose two.)

Question97: Referring to the SRX Series flow module diagram shown in the exhibit, where is IDP/IPS processed?

Question98: Which two protocols are supported for Sky ATP advanced anti-malware scanning? (Choose two.)

Question99: You want to use IPS signatures to monitor traffic.
Which module in the AppSecure suite will help in this task?