EMT Practice Test

1. Question Content...


Question List

Question1: Exhibit

You have recently configured Adaptive Threat Profiling and notice 20 IP address entries in the monitoring section of the Juniper ATP Cloud portal that do not match the number of entries locally on the SRX Series device, as shown in the exhibit.
What is the correct action to solve this problem on the SRX device?

Question2: You want to use selective stateless packet-based forwarding based on the source address.
In this scenario, which command will allow traffic to bypass the SRX Series device flow daemon?

Question3: Exhibit

You are trying to configure an IPsec tunnel between SRX Series devices in the corporate office and branch1.
You have committed the configuration shown in the exhibit, but the IPsec tunnel is not establishing.
In this scenario, what would solve this problem.

Question4: Exhibit

Which two statements are correct about the output shown in the exhibit? (Choose two.)

Question5: Exhibit

Which statement is true about the output shown in the exhibit?

Question6: Exhibit

You configure Source NAT using a pool of addresses that are in the same subnet range as the external ge-0/0/0 interface on your vSRX device. Traffic that is exiting the internal network can reach external destinations, but the return traffic is being dropped by the service provider router.
Referring to the exhibit, what must be enabled on the vSRX device to solve this problem?

Question7: Exhibit

You are using traceoptions to verity NAT session information on your SRX Series device Referring to the exhibit, which two statements are correct? (Choose two.)

Question8: Exhibit

You configure a traceoptions file called radius on your returns the output shown in the exhibit What is the source of the problem?

Question9: You want to identify potential threats within SSL-encrypted sessions without requiring SSL proxy to decrypt the session contents. Which security feature achieves this objective?

Question10: Exhibit

Referring to the exhibit, which three statements are true? (Choose three.)

Question11: Exhibit

You are validating bidirectional traffic flows through your IPsec tunnel. The 4546 session represents traffic being sourced from the remote end of the IPsec tunnel. The 4547 session represents traffic that is sourced from the local network destined to the remote network.
Which statement is correct regarding the output shown in the exhibit?

Question12: You have noticed a high number of TCP-based attacks directed toward your primary edge device. You are asked to configure the IDP feature on your SRX Series device to block this attack.
Which two IDP attack objects would you configure to solve this problem? (Choose two.)

Question13: Exhibit

Referring to the exhibit, which type of NAT is being performed?

Question14: You are asked to download and install the IPS signature database to a device operating in chassis cluster mode. Which statement is correct in this scenario?

Question15: Exhibit

The highlighted incident (arrow) shown in the exhibit shows a progression level of "Download" in the kill chain.
What are two appropriate mitigation actions for the selected incident? (Choose two.)

Question16: Your organization has multiple Active Directory domain to control user access. You must ensure that security polices are passing traffic based upon the user's access rights.
What would you use to assist your SRX series devices to accomplish this task?

Question17: Exhibit

Which two statements are correct about the output shown in the exhibit? (Choose two.)

Question18: To analyze and detect malware, Juniper ATP Cloud performs which two functions? (Choose two.)

Question19: Exhibit

You are using traceoptions to verify NAT session information on your SRX Series device. Referring to the exhibit, which two statements are correct? (Choose two.)

Question20: Regarding IPsec CoS-based VPNs, what is the number of IPsec SAs associated with a peer based upon?

Question21: Exhibit

Referring to the exhibit, which three statements are true? (Choose three.)

Question22: You are not able to activate the SSH honeypot on the all-in-one Juniper ATP appliance.
What would be a cause of this problem?

Question23: Exhibit

You have configured the SRX Series device to switch packets for multiple directly connected hosts that are within the same broadcast domain However, the traffic between two hosts in the same broadcast domain are not matching any security policies Referring to the exhibit, what should you do to solve this problem?

Question24: Exhibit

Referring to the exhibit, which two statements are true? (Choose two.)

Question25: Exhibit

The exhibit shows a snippet of a security flow trace.
In this scenario, which two statements are correct? (Choose two.)

Question26: Exhibit

You have configured the SRX Series device to switch packets for multiple directly connected hosts that are within the same broadcast domain However, the traffic between two hosts in the same broadcast domain are not matching any security policies Referring to the exhibit, what should you do to solve this problem?

Question27: All interfaces involved in transparent mode are configured with which protocol family?

Question28: You issue the command shown in the exhibit.
Which policy will be active for the identified traffic?

Question29: What is the purpose of the Switch Microservice of Policy Enforcer?

Question30: You are asked to download and install the IPS signature database to a device operating in chassis cluster mode.
Which statement is correct in this scenario?

Question31: Exhibit

Referring to the exhibit, which two statements are true about the CAK status for the CAK named "FFFP"?
(Choose two.)

Question32: You are required to deploy a security policy on an SRX Series device that blocks all known Tor network IP addresses. Which two steps will fulfill this requirement? (Choose two.)

Question33: You opened a support ticket with JTAC for your Juniper ATP appliance. JTAC asks you to set up access to the device using the reverse SSH connection.Which three setting must be configured to satisfy this request? (Choose three.)

Question34: Exhibit

Referring to the exhibit, an internal host is sending traffic to an Internet host using the 203.0.113.1 reflexive address with source port 54311.
Which statement is correct in this situation?

Question35: You are configuring transparent mode on an SRX Series device. You must permit IP-based traffic only, and BPDUs must be restricted to the VLANs from which they originate.
Which configuration accomplishes these objectives?
A)

B)

C)

D)

Question36: Exhibit

The exhibit shows a snippet of a security flow trace.
In this scenario, which two statements are correct? (Choose two.)

Question37: You are asked to look at a configuration that is designed to take all traffic with a specific source ip address and forward the traffic to a traffic analysis server for further evaluation. The configuration is no longer working as intended.
Referring to the exhibit which change must be made to correct the configuration?

Question38: You want to enroll an SRX Series device with Juniper ATP Appliance. There is a firewall device in the path between the devices. In this scenario, which port should be opened in the firewall device?

Question39: Exhibit

Which two statements are correct about the output shown in the exhibit. (Choose two.)

Question40: You are asked to allocate security profile resources to the interconnect logical system for it to work properly.
In this scenario, which statement is correct?

Question41: Exhibit

Referring to the exhibit, which two statements are true? (Choose two.)

Question42: You are connecting two remote sites to your corporate headquarters site. You must ensure that all traffic is secured and sent directly between sites In this scenario, which VPN should be used?

Question43: Exhibit

Referring to the exhibit, which statement is true?

Question44: Which two features would be used for DNS doctoring on an SRX Series firewall? (Choose two.)