JNCDS-SEC Changed JN0-1332 Questions

Security Design Specialist (JNCDS-SEC) Questions and Answers

Question 5

You arc asked to proud a design proposal to secure a service provider's network against IP spoofing As part of your design, you must ensure that only traffic sourced from the same subnet is followed on the customer-facing interfaces. Which solution will satisfy this requirement?

Options:

BGP with source of origin community

unicast RPF with strict mode

unicast RPF with loose mode

BGP labeled-unicast using the resolve-vpn option

Question 6

Refer the Exhibit.

You must ensure that return Web traffic is not dropped by the firewall devices

What must be implemented on the link between FW A and FW B?

Options:

VRRP

session sync

asymmetric routing

BFO

Question 7

What are two reasons for using a cSRX instance over a vSRX instance? (Choose two )

Options:

cSRX instances launch faster than vSRX instances

cSRX instances share the host OS unlike vSRX instances.

A cSRX instance uses more memory but uses less disk space than a vSRX instance

A cSRX instance supports more features than a vSRX instance

Question 8

When designing security for the service provider WAN. you are asked to implement unicast reverse path forwarding (uRPF) in this scenario. on which interfaces would you choose to implement loose mode uRPF?

Options:

On interfaces where the best forwarding path fee routes is through the receiving interface

On interfaces that are user access interfaces

On interfaces where all data originates on the same network as that of the router interface

On interfaces that participate in multihomes environments

Pre-Summer Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Security Design Specialist (JNCDS-SEC) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce