VPN establishment
stateful ARP lookups
Dynamic ARP inspection
Network Address Translation
inspection of packets at higher levels (Layer 4 and above)
第1题:
Which statement is true regarding proxy ARP?()
第2题:
Which two statements describe the difference between JUNOS Software for securityplatforms and a traditional router?()
第3题:
You are responsible for increasing the security within the Company LAN. Of the following choices listed below, which is true regarding layer 2 security and mitigation techniques? ()
第4题:
Which three statements are true about DAI?()
第5题:
Which two statements are true regarding proxy ARP?()
第6题:
Which three functions are provided by the Junos OS for security platforms?()(Choose three.)
第7题:
MPLS LSP
ATM tunnel
GRE tunnel
IPSEC tunnel
L2TPv3 session
第8题:
VPN establishment
stateful ARP lookups
Dynamic ARP inspection
Network Address Translation
inspection of packets at higher levels (Layer 4 and above)
第9题:
DAI intercept all ARP packets on untrusted ports
DAI determines the validity of an ARP packet based on the valid MAC address-to-IP address bindings stored in the DHCP Snooping database.
DAI is used to prevent against a DHCP Snooping attack.
DAI forwards all ARP packets received on a trusted interface without any checks.
DAI forwards all ARP packets on untrusted ports.
DAI determines the validity of an ARP packet based on the valid MAC address-to-IP address bindings stored in the CAM table.
第10题:
JUNOS Software for security platforms supports NAT and PAT; a traditional router does not support NAT or PAT.
JUNOS Software for security platforms does not forward traffic by default; a traditional router forwards traffic by default.
JUNOS Software for security platforms uses session-based forwarding; a traditional router uses packet-based forwarding.
JUNOS Software for security platforms performs route lookup for every packet; a traditional router performs route lookup only for the first packet.
第11题:
Proxy ARP is enabled by default on stand-alone JUNOS security devices.
Proxy ARP is enabled by default on chassis clusters.
JUNOS security devices can forward ARP requests to a remote device when proxy ARP is enabled.
JUNOS security devices can reply to ARP requests intended for a remote device when proxy ARP is enabled
第12题:
IDP cannot be used in conjunction with other JUNOS Software security features such as SCREEN options,zones, and security policy.
IDP inspects traffic up to the Application layer.
IDP searches the data stream for specific attack patterns.
IDP inspects traffic up to the Presentation layer.
IDP can drop packets, close sessions, prevent future sessions, and log attacks for review by network administrators when an attack is detected.
第13题:
Which statement is true regarding the Junos OS?()
第14题:
Which three statements are true regarding IDP?()
第15题:
The Company security administrator is concerned with layer 2 network attacks. Which two statements about these attacks are true? ()
第16题:
Which two statements are true regarding IDP?()
第17题:
What are three functions associated with JUNOS software class of service?()
第18题:
VPN establishment
stateful ARP lookups
Dynamic ARP inspection
Network Address Translation
inspection of packets at higher levels (Layer 4 and above)
第19题:
Log incoming traffic.
Classify incoming packets.
Manage outbound bandwidth.
Manage congestion by intelligently dropping traffic.
Classify ATM QoS packets into a equivalent IP CoS environment.
第20题:
firewall filters
data encryption
routing protocol authentication
support for BGP path mtu discovery
automatic discovery for IPSEC neighbors
第21题:
IDP can be used in conjunction with other JUNOS Software security features such as SCREEN options,zones, and security policy.
IDP cannot be used in conjunction with other JUNOS Software security features such as SCREEN options, zones, and security policy.
IDP inspects traffic up to the Presentation layer.
IDP inspects traffic up to the Application layer.
第22题:
NAT
OSPF
SNMP
SCREEN options
第23题:
Proxy ARP is enabled by default.
Proxy ARP is not enabled by default.
JUNOS security devices can forward ARP requests to a remote device when proxy ARP is enabled.
JUNOS security devices can reply to ARP requests intended for a remote device when proxy ARP is enabled
第24题:
Router A is responsible for answering ARP requests sent to the virtual IP address.
If Router A becomes unavailable, Router B will forward packets sent to the virtual MAC address of Router A
If another router were added to this GLBP group, there would be two backup AVGs
Router B is in GLBP listen state.
Router A alternately responds to ARP requests with different virtual MAC addresses.
Router B will transition from blocking state to forwarding state when it becomes the AVG