Exam Details
Exam questions are derived from the recommended training and the exam resources listed above. Pass/fail status is available immediately after taking the exam. The exam is only provided in English.
Exam Code : JN0-231
Prerequisite Certification : None
Exam Length : 90 minutes
Exam Type : 65 multiple-choice questions
Software Versions : Junos OS 21.2
Examkingdom Juniper JN0-231 Exam pdf, Certkingdom Juniper JN0-231 Exam PDF
Best Juniper JN0-231 Certification, Juniper JN0-231 PDF Training at Certkingdom.com
Exam Objective
Description
SRX Series Devices
Identify concepts or general features of SRX Series devices
Interfaces
Hardware
Initial configuration
Traffic flow/security processing
vSRX
Junos Security Objects
Identify concepts or general functionality of security zone, screen, address, or services objects
Zones
Screens
Addresses/address books
Security policies
Describe the concepts, benefits, or operation of security policies
Zone-based policies
Global policies
Application firewall
Unified security policies
IPS/IDP
Integrated user firewall
Juniper Advanced Threat Protection
Identify the concepts, benefits, or operation of Juniper ATP Cloud
General operation
Blocking mechanisms
Network Address Translation
Describe the concepts, benefits, or operation of NAT
Source NAT
Destination NAT
Static NAT
IPsec
Identify the concepts, benefits, or operation of IPsec VPNs
IPsec tunnel establishment
IPsec traffic processing
IPsec site-to-site VPNs
Juniper Secure Connect
Unified Threat Management
Identify the concepts, benefits, or operation of UTM
Content filtering
Web filtering
Antivirus
Antispam
Monitoring/Reporting and Troubleshooting
Describe methods for monitoring, reporting, or logging for Juniper security solutions
J-Web
Sky Enterprise
Junos Space Security Director
Who this course is for:
For students preparing for the JNCIA-SEC JN0-231 certification exam
For students who want to demonstrate solid understanding of Juniper security concepts
For network engineers and IT professionals who want to test their Juniper knowledge for their upcoming job interview
QUESTION 1
Which of these about security zones is true?
A. Logical interfaces can only be added to user-defined security zones
B. A security zone must contain at least one interface
C. An interface can belong to multiple security zones
D. A security zone can only contain one interface
Answer: A
QUESTION 2
Which of these cloud providers support vSRX? (Choose two)
A. Contrail Cloud
B. VMware Cloud
C. Microsoft Azure
D. Amazon Web Services
Answer: C,D
QUESTION 3
SSH service has been correctly configured on an SRX device. However, administrators are unable to connect using SSH on the revenue ports.
Which of these can be configured to solve this problem?
A. Allow SSH traffic as host inbound traffic on the incoming security zone
B. Configure an IDP policy to allow SSH traffic
C. Configure a global policy to allow SSH traffic
D. Configure a security policy to allow SSH traffic
Answer: A