Security, Associate (JNCIA-SEC) Questions and Answers
Which two statements are correct about NAT and security policy processing? (Choose two.)
You want to verify that your NextGen Web Filtering (NGWF) feature is connected to the Juniper cloud.
Which operational mode command would you use for this task?
What is the purpose of rate-limiting exception traffic in the Junos OS?
What happens if no match is found in both zone-based and global security policies?
Which two statements about functional zones are correct? (Choose two.)
You are not able to ping an interface on an SRX Series Firewall.
Which two actions should you take to solve this issue? (Choose two.)
Click the Exhibit button.

Which two statements are correct about the content filter shown in the exhibit? (Choose two.)
What are two ways that an SRX Series device identifies content? (Choose two.)
Click the Exhibit button.

Which type of policy is shown in the exhibit?
You just made a configuration change to a security policy on your SRX Series Firewall. Your users alert you that an application that uses FTP is no longer working.

Referring to the exhibit, what are two ways to solve this problem? (Choose two.)
Which statement is correct about source NAT?
Which two statements are correct about unified security policies on SRX Series Firewalls? (Choose two.)
The exhibit shows a table representing security policies from the trust zone to the untrust zone.

In this scenario, which two statements are correct? (Choose two.)
Which two statements are correct about unified security policies? (Choose two.)
Which two statements are correct about security zones and functional zones? (Choose two.)
Which zone configuration is required to permit transit traffic?
You are asked to create a security policy that controls traffic allowed to pass between the Internet and private security zones. You must ensure that this policy is evaluated before all other policy types on your SRX Series device.
In this scenario, which type of security policy should you create?
You want to enable NextGen Web Filtering (NGWF) on your SRX Series Firewall.
Which two actions must you perform in this scenario? (Choose two.)
Click the Exhibit button.

Referring to the exhibit, which two statements are correct? (Choose two.)
Referring to the exhibit, which two statements are correct? (Choose two.)

Which two statements are correct about security zones on an SRX Series device? (Choose two.)
Which type of NAT performs port address translation?
Referring to the exhibit, which type of NAT is the SRX Series Firewall performing?

You want to show the effectiveness of your SRX Series Firewall content filter.
Which operational mode command would you use in this scenario?
You are asked to permit users to read Reddit posts but prevent them from posting any new content. Which two actions would you perform to achieve this task? (Choose two.)
You want to confirm that your SRX Series Firewall is connected to the SBL server.
Which operational mode command would you use in this scenario?
Referring to the exhibit, the top table shows the source and destination IP addresses and also the source and destination ports of the incoming packet.

The lower table represents the security policies from the trust zone to the untrust zone.
In this scenario, which two statements are correct? (Choose two.)
A URL is not found in the local allow list, block list, or local cache during the NextGen Web Filtering process. Which action does the SRX Series Firewall take in this scenario?
Which two statements are correct about security zones? (Choose two.)
Which two characteristics of destination NAT and static NAT are correct? (Choose two.)
Which two statements are correct about the Junos OS architecture? (Choose two.)
Which two statements correctly describe static NAT? (Choose two.)
You need to capture control plane traffic on a high-end SRX Series device.
How would you accomplish this task?