After JSA receives external events and flows, which two steps occur? (Choose two.)
Correct Answer: A,C
Explanation After JSA receives external events and flows, the data goes through the following steps in the event and flow pipeline 1: Event and flow collection: JSA accepts event logs and flow records from various sources by using different protocols and methods. The data is parsed and normalized into a JSA-usable format. Event and flow processing: JSA applies rules, custom properties, and anomaly detection to the data. The data is also coalesced, filtered, and forwarded as needed. The data is stored in an asset database and an Ariel database for further analysis and reporting. Event and flow correlation: JSA analyzes the data for patterns that indicate malicious activity or policy violations. JSA generates offenses, alerts, and notifications based on the correlation rules and building blocks. Event and flow response: JSA responds to the offenses and alerts by taking active measures such as blocking IP addresses, quarantining hosts, or updating reference data. JSA also provides investigation and remediation tools for analysts to handle the incidents. References: 1: JSA Events and Flows | Junos OS | Juniper Networks
Question 42
At which step in the packet flow are Junos Screen checks applied?
Correct Answer: A
Question 43
How many nodes are configurable in a chassis cluster using SRX Series devices?
Correct Answer: C
Question 44
What are two types of attack objects used by IPS on SRX Series devices? (Choose two.)
Correct Answer: A,D
Question 45
You are building a VPN tunnel between two SRX Series devices. You want the tunnel to always be established, even if there is no traffic to send. Which action would be used to achieve this goal?
