NEW QUESTION 1
As part of a design requirement you are asked to allow users in a specific department to authenticate only on their laptops and no other devices on the same network port. Which mode of 802 .1X authentication will you use to satisfy this requirement?

• A. multiple
• B. single-secure
• C. single
• D. MAC RADIUS

Answer: A

NEW QUESTION 2
Which solution would you deploy to accomplish this task?

• A. Junes Space Log Director
• B. Juniper Networks Central insights
• C. Junos Space Security Director
• D. Juniper Networks Secure Analytics

Answer: A

NEW QUESTION 3
You are designing a central management solution Your customer wants a togging solution that will support the collection of up to 10.000 events per second from many SRX Series devices that will be deployed m their network. In this scenario. which solution should you include in your design proposal?

• A. Log Oi rector
• B. Network Director
• C. Contrail Insights
• D. Contrail Server Orchestration

Answer: A

NEW QUESTION 4
A customer wants to understand why Poky Enforcer is included as a part of your network design proposal.
In this situation, which statement is correct

• A. Policy Enforcer submits files to Juniper ATP Cloud for malware scanning
• B. Policy Enforcer can provide client security based on software installed on the client machine
• C. Policy Enforcer provides 2ero trust security to ail devices connecting to the network
• D. Policy Enforcer can collect events and news from a wide range of network devices

Answer: A

NEW QUESTION 5
You are designing Enterprise WAN attachments and want to follows Jumper recommended security practices In 0*s scenario. which two statements are correct? (Choose two.)

• A. Authentication authorization and accounting should be implemented on network resources
• B. The branch CPE should be configured to all outbound Ml:
• C. Printer traffic should be segmented from data traffic.
• D. Network management traffic should be segmented from data traffic

Answer: AD

NEW QUESTION 6
You are designing an IP camera solution for your warehouse You must block command and control servers from communicating with the cameras. In this scenario. which two products would you need to include in your design? (Choose two)

• A. SRX Series device
• B. Security Director
• C. Juniper ATP Cloud
• D. IPS

Answer: CD

NEW QUESTION 7
Which type of SDN implementation docs Contrail use?

• A. SDN using API
• B. Overlay SDN
• C. OpenFlow
• D. open SDN

Answer: D

NEW QUESTION 8
You are asked to deploy multiple kiosk locations around the country. Their locations will change frequently and will need to access services in the corporate data center as well as other kiosk locations You need a central key location In this scenario, which solution would you deploy?

• A. Mesh VPN
• B. Group VPN
• C. Juniper Secure Connect
• D. Auto VPN

Answer: D

NEW QUESTION 9
Which three statements about Group VPNs #e true? (Choose three.)

• A. The IP pay load is encrypted
• B. Data can flow directly between sites without transiting a central hub
• C. Group VPNs use a client/server architecture
• D. All data transits through a central hub
• E. The IP headers are encrypted

Answer: ACD

NEW QUESTION 10
You are asked to provide a network design proposal for a service provider As part of this design you must provide a solution that allows the service provider to mitigate DDoS attacks on their customers Which two features will satisfy this requirement? (Choose two)

• A. 8GP traffic engineering
• B. 8GP FlowSpec
• C. remote triggered Hack hole (RTBH)
• D. Storm control

Answer: C

NEW QUESTION 11
What are two considerations when performing a risk assessment for assets in a data center? (Choose two.)

• A. Insurance is a viable mitigation strategy when performing risk assessment calculations
• B. Exposure of assets could have larger economic impact man loss of assets
• C. Migration of a data center to a cloud prouder increases economic impact of asset loss
• D. Migration of a data center to a cloud provider reduces the economic impact of asset exposure

Answer: C

NEW QUESTION 12
Your company just purchased another company that uses the same IP address space as your company. You are asked to design a solution that allows both company’s to use each other's IT resources. Which two actions would you use to accomplish this task? (Choose two.)

• A. Implement double NAT
• B. Implement two non-overlapping equal-size address blocks
• C. Implement three non-overlapping equal-size address blocks.
• D. Implement persisted mat

Answer: C

NEW QUESTION 13
What are two reasons for using a cSRX instance over a vSRX instance? (Choose two )

• A. cSRX instances launch faster than vSRX instances
• B. cSRX instances share the host OS unlike vSRX instances.
• C. A cSRX instance uses more memory but uses less disk space than a vSRX instance
• D. A cSRX instance supports more features than a vSRX instance

Answer: C

NEW QUESTION 14
When two security services process a packet whether it is being processed in the first-packet path or the fast path? (Choose two.)

• A. screen options
• B. ALG
• C. route lookup
• D. policy lookup

Answer: CD

NEW QUESTION 15
Which statement about Junos firewall filters is correct?

• A. Firewall filters can be applied as a security policy action
• B. Firewall filters do not operate on stateful flows and they serve no purpose in a next-generation firewall
• C. Firewall filters can be applied as the packet enters the security device, and they are stateless.
• D. Firewall filters are applied to TCP packets onl
• E. and they do not block UDP pockets

Answer: B

NEW QUESTION 16
......