Free Cheat-test Samples and Demo Questions Download
Adobe exams Adobe
Apple exams Apple
Avaya exams Avaya
Check Point exams Check Point
Cisco exams Cisco
Citrix exams Citrix
CIW exams CIW
CompTIA exams CompTIA
CWNP exams CWNP
EC-Council exams EC-Council
EMC exams EMC
Exin exams Exin
Fortinet exams Fortinet
GIAC exams GIAC
Hitachi exams Hitachi
HP exams HP
IBM exams IBM
Isaca exams Isaca
ISC exams ISC
ISEB exams ISEB
Juniper exams Juniper
LPI exams LPI
McAfee exams McAfee
Microsoft exams Microsoft
Oracle exams Oracle
PMI exams PMI
Riverbed exams Riverbed
SNIA exams SAP
Sun exams SAS
Symantec exams Symantec
VMware exams VMware
All certification exams

Juniper JN0-520 Exam - Cheat-Test.com

Free JN0-520 Sample Questions:

1. What are two (2) benefits of configuring the NetScreen in transparent mode?
A. There is no need for IP addresses even for remote management
B. There is no need to reconfigure the IP addresses of routers or protected servers
C. There is no need to create Mapped or Virtual IPs for incoming traffic to reach protected servers
D. Policies are easier to create since you do not have to include Source and Destination IP addresses
E. The product can support more VPNs and obtain greater throughput because there is less overhead to manage
Answer: BC

2. When configuring a NetScreen device in transparent mode, what is required to forward traffic?
A. There must be at least one policy configured
B. The VLAN1 interface must have a manage-ip value set
C. The VLAN1 interface must have an ip address configured
D. The NetScreen device must have the transparent option set under admin options
Answer: A

3. Which cannot be enabled when creating an Access Policy entry?
A. Setting the tcp-mss size
B. Applying NAT using DIP pools
C. Logging all connections that match the Access Policy
D. Triggering a traffic alarm if traffic goes above 300 Bytes/Sec
E. Scheduling the policy to take effect between Monday through Friday only
Answer: A

4. Which policy action is needed in order to add Deep Packet inspection to a policy?
A. IDP
B. Deny
C. Reject
D. Permit
E. Detect
Answer: D

5. You have one VIP configured on your device, using public address 191.111.222.5. When you configure the policy, what will you select for the VIP, and where will you select it?
A. VIP::1 in the NAT-dst public field
B. VIP::1 as the destination address
C. VIP(191.111.222.5) in the NAT-dst public field
D. VIP(191.111.222.5) as the destination address
Answer: B

6. Your VPN tunnel does not pass traffic. You run the "get ike cookie" command and discover that there is no cookie. What two (2) options should you check first?
A. Routes
B. Policy configuration
C. Phase 1 configuration options
D. Phase 2 configuration options
Answer: AC

7. By default, from which hardware component is the startup copy of the ScreenOS loaded?
A. ROM
B. NVRAM
C. TFTP server
D. Internal Flash
E. PCMCIA Card
Answer: D

8. Using the CLI, if the startup copy of the ScreenOS on a NS-204 is corrupted, from which two (2) alternate locations can an image be loaded?
A. ROM
B. TFTP server
C. Internal Flash
D. PCMCIA Card
E. Compact Flash Card
Answer: BE

9. Assuming factory default settings, which statement describes the minimum requirements for WebUI management access?
A. Connect a PC addressed on the 192.168.1.0 subnet to any interface, open a browser and access 192.168.1.1
B. Terminate the bootup sequence from the console device, open a browser on the console device and access 192.168.1.1
C. Connect a PC addressed on the 192.168.1.0 subnet to the lowest numbered interface, open a browser and access 192.168.1.1
D. Using the CLI, define an IP address on a physical interface, connect a PC to the interface and open a browser to the interface address
E. Using the CLI, assign an IP address to the VLAN1 interface, connect a PC to any interface and open a browser to the VLAN interface address
Answer: C

10. When configuring the Untrust interface with an IP address and enabling Telnet and WebUI management, which sequence of steps must be performed to make the interface operational at the end of the configuration sequence?
A. Assign the interface to a zone, define the IP address, enable Web and Telnet services
B. Assign the interface to a zone, define the IP address, accept default management services
C. Assign the interface to a virtual router, define the IP address, enable Web and Telnet services
D. Assign the interface to a zone, define the IP address, define a manage IP address, accept default management services
E. Assign the interface to a virtual router, define the IP address, define a manage IP address, enable Web and Telnet services
Answer: A

11. Which statement is correct regarding administrator privileges?
A. Any Administrator can change their privileges on an as-needed basis
B. Administrator privileges can only be established and changed by the Root Administrator
C. Administrator privileges can be established and changed by the Root and All-privilege Administrator
D. Administrator privileges can only be established by the Root and can be changed by the Root and All-privilege Administrator
Answer: B

12. What is the purpose of the 'Permitted IP' address on a NetScreen device?
A. It defines which range of addresses can access devices connected to the NetScreen
B. It defines a list of addresses that are trusted to perform management on the NetScreen
C. It is used in policy rules to determine which user traffic is allowed through the NetScreen
D. It is the address to which an external device connects in order to gain management access to a NetScreen
E. It defines a list of devices whose traffic can pass through the NetScreen without being authenticated
Answer: B

13. Which three (3) statements are correct regarding tasks that can be performed only by the Root administrator?
A. reset command
B. unset all command
C. activate/deactivate asset recovery features
D. replace configs from remote devices to flash
E. On-line asset recovery
Answer: BCD

14. What is the purpose of the 'Manage-IP' address on a NetScreen device?
A. It defines which range of addresses can access devices connected to the NetScreen
B. It defines a list of addresses that are trusted to perform management on the NetScreen
C. It is used in policy rules to determine which device is allowed to manage the NetScreen
D. It is the address to which an external device connects in order to gain management access to a NetScreen
E. It defines a list of device addresses that can manage the NetScreen without being authenticated prior to session establishment
Answer: D

15. When managing a NetScreen device via the WebUI and performing an image upgrade, from which hardware component can the the ScreenOS image be loaded?
A. TFTP server
B. PC local disk
C. Internal Flash
D. PCMCIA Card
E. Compact Flash Card
Answer: B

16. When managing a NetScreen device via the CLI and performing an image upgrade, from which hardware components can the the ScreenOS image NOT be loaded?
A. TFTP server
B. PC local disk
C. Internal Flash
D. PCMCIA Card
E. Compact Flash Card
Answer: B

17. In the command "save config from tftp 1.1.7.250 abcd.cfg merge", what function does the 'merge' parameter specify?
A. The config file from the TFTP server will replace the configuration in RAM
B. The config file from the TFTP server will replace the startup configuration file in Flash
C. The 'merge' parameter is not valid for TFTP files; it is only valid for configuration files stored in Compact Flash
D. The config file from the TFTP server will be combined with the configuration file in RAM and the combined result will be saved to Flash
E. The config file from the TFTP server will be combined with the configuration file in RAM and the startup configuration file will remain unchanged
Answer: D

18. Which statement best describes the 'config rollback' feature?
A. Config rollback must be enabled by an administrator. Once enabled, it allows the administrator to re-apply a previously saved configuration file from Flash.
B. Config rollback is enabled by default; it allows the administrator to re-apply a previously saved configuration file from Flash without rebooting.
C. Config rollback is enabled by default; it allows the administrator to re-apply a previously saved configuration file from Flash by rebooting and loading a "last known good" configuration.
D. Config rollback allows the administrator to revert to the prior ScreenOS image in the event an upgrade operation aborts.
E. Config rollback allows the administrator to revert to the prior ScreenOS image or configuration file in the event an upgrade operation aborts.
Answer: C

19. By default, where are changes stored when a "save" command is issued from the CLI during a management session?
A. NVRAM
B. Internal Flash
C. PCMCIA Card
D. Compact Flash Card
Answer: B

20. When changes are made to the running config during a WebUI management session, to what external hardware component can the changes be saved?
A. FTP server
B. LDAP server
C. TFTP server
D. PC local disk
E. Compact Flash Card
Answer: D

21. What is the purpose of the VLAN1 interface?
A. It provides policy-based NAT for 802.1Q VLANs
B. It provides an interface that can be used with all 802.1q VLANs in transparent mode
C. It provides the NetScreen with a routable IP address while operating in route mode
D. It provides an interface that can be used to remotely manage the NetScreen while operating in transparent mode
Answer: D

22. Which three (3) statements are true in regards to a NetScreen device in transparent mode?
A. All interfaces belong to VLAN1 zone for management
B. VPNs can terminate to the VLAN1 interface IP address
C. Static routes must be configured if multiple virtual routers are going to be used
D. It can be installed in a network without the requirement to reconfigure ip addressing schemes
E. You must use the console port to manage the device as you cannot manage the device via an ethernet port.
Answer: ABD

23. When a device is in transparent mode, which fields will be modified as the traffic transverses the firewall?
A. None of the above
B. The source port only
C. The source and destination IP
D. The source IP but not the destination IP
E. The destination IP but not the source IP
Answer: A

24. What must be configured to remotely manage a NetScreen device operating in transparent mode?
A. An IP address must be configured for VLAN1
B. The telnet management service must be enabled on the VLAN1 interface only
C. An IP address must be configured for the VLAN zone
D. The V1-Trust interface needs to have management services enabled
E. The public SNMP community string must be configured
Answer: A

25. In transparent mode, you can create policies between which zones?
A. V1-Trust and Untrust
B. Private and L2-Public
C. V1-Global and V1-Global
D. V1-Trust and Private (L2)
E. V1-Untrust and L2-Private
Answer: E

26. You are configuring a NetScreen device in transparent mode and want to provide additional administrative security. Which two (2) options would you set?
A. set int vlan1 ident-reset
B. set int vlan1 broadcast arp
C. set int vlan1 broadcast flood
D. set admin manage-ip <a.b.c.d>
E. set int vlan1 ip manage-ip <a.b.c.d>
Answer: BE


© 2014 Cheat-Test.com, All Rights Reserved