You need to control SSH, HTTP, and Telnet access to an MX240 router through any interface. You have decided to use a firewall filter. How should you apply the firewall filter?()
第1题:
You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI).To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()
A. CLI
B. WebUI
C. NSM
D. Junos Pulse Access Control Service
第2题:
A. All packets set to be forwarded out interface ge-3/0/0 will be dropped by the firewall filter fire1.
B. All packets set to be forwarded out interface ge-3/0/0 will NOT dropped by the firewall filter fire1.
C. All packets entering the router on interface ge-3/0/0.0 will be dropped by the firewall filter fire1.
D. All packets set to be forwarded out interface ge-3/0/0, except those sourced locally by the Routing Engine, will be dropped by the firewall filter fire1.
第3题:
A. as an outbound filter on interface fxp0
B. as an outbound filter on interface lo0
C. as an inbound filter on interface fxp0
D. as an inbound filter on interface lo0
第4题:
You need to control SSH, HTTP, and Telnet access to an MX240 router through any interface.You have decided to use a firewall filter. How should you apply the firewall filter?()
第5题:
A. inbound traffic transiting the router
B. outbound traffic transiting the router
C. traffic destined to the Routing Engine
D. traffic destined to the interface address on which the filter is applied
第6题:
You have a firewall filter applied in an inbound direction on a customer interface. You would like this filter to protect your network from a spoofed denial of service attack. Which action should be configured to accomplish your goal?()
A. then reject
B. then discard
C. then next filter
D. then silent-drop
第7题:
You have a firewall filter containing two terms applied in an inbound direction on a customer interface.You would like this filter to protect your network from a spoofed denial of service attack. Which match criterion should be configured ito identify unwanted packets?()
A. from source-port
B. from source-address
C. from destination-address
D. from destination-port
第8题:
A.
B.
C.
D.
第9题:
You have a firewall filter containing two terms applied in an inbound direction on a customer interface.You would like this filter to protect your network from a spoofed denial of service attack. Which match criterion should be configured ito identify unwanted packets?()
第10题:
You need to control SSH, HTTP, and Telnet access to an MX240 router through any interface.You have decided to use a firewall filter.How should you apply the firewall filter?()