Free Practice Questions for Juniper JN0-335 Exam

You are deploying a new SRX Series device and you need to log denied traffic.In this scenario, which two policy parameters are required to accomplish this task? (Choose two.)

• session-init
• session-close
• deny
• count

Which two types of SSL proxy are available on SRX Series devices? (Choose two.)

• Web proxy
• client-protection
• server-protection
• DNS proxy

What are two benefits of using a vSRX in a software-defined network? (Choose two.)

• scalability
• no required software license
• granular security
• infinite number of interfaces

You are asked to block malicious applications regardless of the port number being used. In this scenario, which two application security features should be used? (Choose two.)

• AppFW
• AppQoE
• APPID
• AppTrack

Which two statements are true about mixing traditional and unified security policies? (Choose two.)

• When a packet matches a unified security policy, the evaluation process terminates
• Traditional security policies must come before unified security policies
• Unified security policies must come before traditional security policies
• When a packet matches a traditional security policy, the evaluation process terminates

Which two devices would you use for DDoS protection with Policy Enforcer? (Choose two.)

• vQFX
• MX
• vMX
• QFX

Which solution enables you to create security policies that include user and group information?

• JIMS
• ATP Appliance
• Network Director
• NETCONF

A client has attempted communication with a known command-and-control server and it has reached the configured threat level threshold.Which feed will the clients IP address be automatically added to in this situation?

• the command-and-control cloud feed
• the allowlist and blocklist feed
• the custom cloud feed
• the infected host cloud feed

You want to deploy a virtualized SRX in your environment.In this scenario, why would you use a vSRX instead of a cSRX? (Choose two.)

• The vSRX supports Layer 2 and Layer 3 configurations.
• Only the vSRX provides clustering.
• The vSRX has faster boot times.
• Only the vSRX provides NAT, IPS, and UTM services

Which two statements about SRX chassis clustering are correct? (Choose two.)

• SRX chassis clustering supports active/passive and active/active for the data plane.
• SRX chassis clustering only supports active/passive for the data plane.
• SRX chassis clustering supports active/passive for the control plane.
• SRX chassis clustering supports active/active for the control plane.