Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

JN0-533 by Juniper - Page 1 | ExamCademy

Mode Selection

Sort:

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 5 • Questions 1-25 of 107

1 2 3 4 5

→

Know a question that should be here? Contribute to this exam

Which ScreenOS security feature helps protect against port scans and denial of service attacks?

A session-based stateful firewall
B IPsec VPNs
C security policies
D Screen options

What is the function of NAT?

A It performs Layer 3 routing.
B It evaluates and redirects matching traffic into secure tunnels.
C It provides translation between IP addresses.
D It performs Layer 2 switching.

On a ScreenOS device, which word appears at the beginning of configuration commands?

A set
B configure
C enable
D commit

Which action does a ScreenOS device perform first when processing a packet?

A It checks for an existing session.
B It checks for attacks in the payload.
C It performs a route lookup.
D It performs a policy lookup.

On a ScreenOS device, which three processes does the task CPU handle? (Choose three.)

A policy evaluation
B traffic logging
C session table clean-up
D management services
E broadcast packet processing

A ScreenOS device evaluates five primary elements when performing a security policy check on a new session. Which five elements are evaluated?

A source IP address, destination IP address, source route, source port, and destination port
B source IP address, destination IP address, source port, destination port, and protocol
C source IP address, destination IP address, source port, destination port, and payload
D destination IP address, source port, destination port, protocol, and payload

You want to enable IPv6 on your ScreenOS device.
Which command should you use to accomplish this goal?

A set envar ipv6=enable
B set ipv6 enable
C set envar ipv6=yes
D set ipv6 yes

Your ScreenOS device does not have a static IP address. You want to be able to access it using its FQDN. How would you implement this task?

A Configure a domain in DNS.
B Configure syslog.
C Configure SNMP.
D Configure DDNS.

You have just installed a new ScreenOS device in your network and you want only a select range of IP addresses to have administrative access to the device.
Which choice will allow you to accomplish this?

A Configure a manager IP.
B Configure the management interface.
C Configure a management IP on the trust interface.
D Configure new system administrators.

You have two interfaces in ZoneA and traffic is passing without any policy configured. You want to control the traffic between the two interfaces.
Which two actions will allow this to happen? (Choose two.)

A Configure interzone blocking on ZoneA and create a policy in that zone to control the traffic.
B Configure intrazone blocking on ZoneA and create a policy in that zone to control the traffic.
C Move one of the interfaces to a different zone and create an interzone policy to control the traffic.
D Move one of the interfaces to a different zone and create an intrazone policy to control the traffic.

What is an aggregate interface?

A An aggregate interface binds two physical interfaces together to create a redundant interface.
B An aggregate interface binds two or more physical interfaces that share the traffic load.
C An aggregate interface is the management interface.
D An aggregate interface is used for VPN tunnels.

Which two statements are true about redundant interfaces? (Choose two.)

A You can bind two physical interfaces together to create one redundant interface.
B Redundant interfaces bind to a security zone; one physical interface acts as the primary interface, and the other physical interface acts as the secondary interface.
C A redundant interface is the accumulation of two or more physical interfaces that share the same traffic load.
D A redundant interface is the management interface for bridge mode.

Which two actions are performed by a read/write vsys administrator? (Choose two.)

A View the security associations for all virtual systems.
B Configure a vsys address book entry.
C Modify the vsys administrator login name.
D Modify the vsys read/write administrator password.

When you create a new virtual system, which zone is automatically created within the vsys-specific VR?

A trust zone
B untrust zone
C shared zone
D null zone

What is the purpose of a virtual system profile?

A to limit virtual system access
B to limit virtual system resources
C to limit the number of virtual system interfaces
D to limit the number of VPNs

What is required to route traffic from one virtual system to another virtual system?

A Configure the same dynamic routing protocol in each virtual system.
B Configure a virtual system profile with a shared forwarding table.
C Configure a private virtual router in each virtual system.
D Configure a shared root-level virtual router.

Policy-based routing (PBR) policies can be bound to which three ScreenOS objects? (Choose three.)

A virtual routers
B interfaces
C zones
D security policies
E virtual system

Policy-based routing consists of which three ScreenOS objects? (Choose three.)

A extended access lists
B match groups
C action groups
D address books
E security policy

What are two routing tables contained in a virtual router? (Choose two.)

A destination-based
B NHTB
C source-based
D zone-based

Which dynamic routing protocol does IPv6 use?

A RIP
B RIPng
C OSPFv2
D NHRP

A routing table contains an IBGP route, a RIP route, an OSPF external Type 2 route, and an EBGP route for 192.168.0.0/16. When the router receives traffic destined for, which route will the router use by default?

A the EBGP route
B the IBGP route
C the OSPF route
D the RIP route

A routing table contains an IBGP route for 192.168.0.0/24, a RIP route for 192.168.0.0/23, an OSPF route for 192.168.0.0/22, and a static route for 192.168.0.0/16.
When the router receives traffic destined for 192.168.0.1, which route will the router use?

A the IBGP route
B the OSPF route
C the RIP route
D the static route