Exam Details
Exam questions are derived from the recommended training and the exam resources listed above. Pass/fail status is available immediately after taking the exam. The exam is only provided in English.

Exam Code : JN0-231
Prerequisite Certification : None
Exam Length : 90 minutes
Exam Type : 65 multiple-choice questions
Software Versions : Junos OS 21.2

Examkingdom Juniper JN0-231 Exam pdf, Certkingdom Juniper JN0-231 Exam PDF

Best Juniper JN0-231 Certification, Juniper JN0-231 PDF Training at Certkingdom.com

Exam Objective

Description
SRX Series Devices

Identify concepts or general features of SRX Series devices
Interfaces
Hardware
Initial configuration
Traffic flow/security processing
vSRX

Junos Security Objects
Identify concepts or general functionality of security zone, screen, address, or services objects

Zones
Screens
Addresses/address books

Security policies
Describe the concepts, benefits, or operation of security policies

Zone-based policies
Global policies
Application firewall
Unified security policies
IPS/IDP
Integrated user firewall

Juniper Advanced Threat Protection

Identify the concepts, benefits, or operation of Juniper ATP Cloud

General operation
Blocking mechanisms

Network Address Translation

Describe the concepts, benefits, or operation of NAT
Source NAT
Destination NAT
Static NAT

IPsec

Identify the concepts, benefits, or operation of IPsec VPNs
IPsec tunnel establishment
IPsec traffic processing
IPsec site-to-site VPNs
Juniper Secure Connect

Unified Threat Management

Identify the concepts, benefits, or operation of UTM
Content filtering
Web filtering
Antivirus
Antispam

Monitoring/Reporting and Troubleshooting

Describe methods for monitoring, reporting, or logging for Juniper security solutions
J-Web
Sky Enterprise
Junos Space Security Director

Who this course is for:

For students preparing for the JNCIA-SEC JN0-231 certification exam
For students who want to demonstrate solid understanding of Juniper security concepts
For network engineers and IT professionals who want to test their Juniper knowledge for their upcoming job interview

QUESTION 1
Which of these about security zones is true?

A. Logical interfaces can only be added to user-defined security zones
B. A security zone must contain at least one interface
C. An interface can belong to multiple security zones
D. A security zone can only contain one interface

Answer: A

QUESTION 2
Which of these cloud providers support vSRX? (Choose two)

A. Contrail Cloud
B. VMware Cloud
C. Microsoft Azure
D. Amazon Web Services

Answer: C,D

QUESTION 3
SSH service has been correctly configured on an SRX device. However, administrators are unable to connect using SSH on the revenue ports.
Which of these can be configured to solve this problem?

A. Allow SSH traffic as host inbound traffic on the incoming security zone
B. Configure an IDP policy to allow SSH traffic
C. Configure a global policy to allow SSH traffic
D. Configure a security policy to allow SSH traffic

Answer: A