1|Page
Voucher Assessment Security, Associate ||VERIFIED
EXAM!!(JNCIA-SEC) Test , ACTUAL EXAM
QUESTIONS AND CORRECT DETAILED ANSWERS
LATEST UPDATE THIS YEAR.pdf||NEWEST EXAM!!!
Which two items are true of J-Web? (Choose two.) -
Answer-configuration commits are required
real-time monitoring
What are two requirements of a functional zone? (Choose
two.) - Answer-It must be named management.
It cannot pass transit traffic.
Which statement is true about a Junos security device? -
Answer-By default, a Junos security device does not allow
traffic destined to itself.
Which zone is a system defined zone? - Answer-junos-
host
Which security component would help identify application
type of all allowed traffic traversing port 80? - Answer-
application firewall
,2|Page
Security policy components require which three of the
following? (Choose three.) - Answer-match criteria
action
a user-defined name
What is the default policy's action for any traffic not
matching a configured zone security policy or global
policy? - Answer-silent discard
Which two statements are correct regarding Sky ATP file
inspection profiles? (Choose two.) - Answer-
+INCORRECT; Selected Answer
-They are used to determine the maximum size of files to
scan.
-They are used to determine which action to take for
malicious files found in HTTP traffic.
+INCORRECT; TRIAL TWO: Selected Answer,
-They are used to determine which action to take for
malicious files found in SMTP traffic.
-They are used to determine which file types to scan.
, 3|Page
If you are using the free version of Sky ATP, which file type
can you scan? - Answer-EXE files
What is the next step after creating a threat prevention
policy? - Answer-Reference the threat prevention policy in
a security policy.
When is the default action of an advanced anti-malware
policy applied to a file? - Answer-INCORRECT; Selected
Answers (2 Trials)
-When the traffic doesn't match a threat prevention policy.
-When Sky ATP is unable to scan the file.
What does a Junos OS security device do to existing
sessions upon commit, when a change is made to a NAT
rule pool that is currently in use? - Answer-It destroys the
existing session and creates a new session for matched
traffic.
You have enabled a NAT pool on an SRX Series device;
however, you are not receiving any return traffic. What
configuration item will solve this? - Answer-enabling proxy
ARP
Voucher Assessment Security, Associate ||VERIFIED
EXAM!!(JNCIA-SEC) Test , ACTUAL EXAM
QUESTIONS AND CORRECT DETAILED ANSWERS
LATEST UPDATE THIS YEAR.pdf||NEWEST EXAM!!!
Which two items are true of J-Web? (Choose two.) -
Answer-configuration commits are required
real-time monitoring
What are two requirements of a functional zone? (Choose
two.) - Answer-It must be named management.
It cannot pass transit traffic.
Which statement is true about a Junos security device? -
Answer-By default, a Junos security device does not allow
traffic destined to itself.
Which zone is a system defined zone? - Answer-junos-
host
Which security component would help identify application
type of all allowed traffic traversing port 80? - Answer-
application firewall
,2|Page
Security policy components require which three of the
following? (Choose three.) - Answer-match criteria
action
a user-defined name
What is the default policy's action for any traffic not
matching a configured zone security policy or global
policy? - Answer-silent discard
Which two statements are correct regarding Sky ATP file
inspection profiles? (Choose two.) - Answer-
+INCORRECT; Selected Answer
-They are used to determine the maximum size of files to
scan.
-They are used to determine which action to take for
malicious files found in HTTP traffic.
+INCORRECT; TRIAL TWO: Selected Answer,
-They are used to determine which action to take for
malicious files found in SMTP traffic.
-They are used to determine which file types to scan.
, 3|Page
If you are using the free version of Sky ATP, which file type
can you scan? - Answer-EXE files
What is the next step after creating a threat prevention
policy? - Answer-Reference the threat prevention policy in
a security policy.
When is the default action of an advanced anti-malware
policy applied to a file? - Answer-INCORRECT; Selected
Answers (2 Trials)
-When the traffic doesn't match a threat prevention policy.
-When Sky ATP is unable to scan the file.
What does a Junos OS security device do to existing
sessions upon commit, when a change is made to a NAT
rule pool that is currently in use? - Answer-It destroys the
existing session and creates a new session for matched
traffic.
You have enabled a NAT pool on an SRX Series device;
however, you are not receiving any return traffic. What
configuration item will solve this? - Answer-enabling proxy
ARP
