FWV, Specialist (JNCIS-FWV) 試験
Question No : 1
Which two statements are true about the exhibit? (Choose two.)
Question No : 2
The exhibit displays output from the event log of a ScreenOS device.Given the information shown in the exhibit, which two statements are correct? (Choose two.)
Question No : 3
What is shown in the exhibit?
Explanation: The "Tunnel" action is specific to policy-based VPN
Question No : 4
Referring to the exhibit, what is the appropriate VPN monitor status?
Explanation: "A/-" shows the VPN active, but monitor is unavailable (likely because the other end is not a screenOS device)
Question No : 5
Referring to the exhibit, what does the log show?
Explanation: The source IP of the outgoing packets is not the same as the destination IP of the incoming responses.
Question No : 6
Referring to the output shown in the exhibit, which NAT configuration is being used?
Question No : 7
In the exhibit, eth3/1 is in the client-vr virtual router and eth3/2 is in the server-vr virtual router.Your policies permit all traffic between all zones.You want to ensure Client1 can contact Server1.In this scenario, which two statements are true? (Choose two.)
Question No : 8
You are the administrator of a NetScreen 5GT.For troubleshooting purposes, you must be able to ping untrusted interfaces.Referring to the exhibit, how do you enable ping for interface eth2?
ns5gt-> get int eth2 Interface ethernet2: description ethernet2 number 8, if_info 704, if_index 0, mode route link up, phy-link up/full-duplex status change:7, last change:09/26/2012 23:08:22 vsys Root, zone Untrust, vr trust-vr dhcp client disabled PPPoE disabled admin mtu 0, operating mtu 1500, default mtu 1500 *ip 18.104.22.168/30 mac 0014.f693.edc8
*manage ip 22.214.171.124, mac 0014.f693.edc8 route-deny disable pmtu-v4 disabled ping disabled, telnet enabled, SSH disabled, SNMP disabled web enabled, ident-reset disabled, SSL disabled DNS Proxy disabled, webauth disabled, g-arp enabled, webauth-ip 0.0.0.0 OSPF disabled BGP disabled RIP disabled RIPng disabled mtrace disabled PIM: not configured IGMP not configured MLD not configured NHRP disabled bandwidth: physical 100000kbps, configured egress [gbw 0kbps mbw 0kbps] configured ingress mbw 0kbps, current bw 0kbps total allocated gbw 0kbps DHCP-Relay disabled at interface level DHCP-server disabled
Question No : 9
User1 wants to create the policy in the ScreenOS device, but is not successful.Referring to the exhibit, what is the problem?
set admin name "admin" set admin password "nOsYMqrbAs/McFsJrs6HwcIt3AF6yn" set admin user "User1" password "nLZwKErINPPCcphC6sFMXrJ" privilege "read-only" set admin port 8080 set admin access attempts 5 set admin access lock-on-failure 5 set admin auth web timeout 10 set admin auth server "Local"
Question No : 10
You are the administrator of a NetScreen 5GT.The system administrator cannot use SSH to log in to the NetScreen 5GT.Referring to the exhibit, what is the problem?
SSH V2 is active ns5gt-> get int et1 Interface ethernet1: description ethernet1 number 2, if_info 176, if_index 0, mode nat link up, phy-link up/full-duplex status change:1, last change:02/06/1997 18:02:32 vsys Root, zone Trust, vr trust-vr dhcp client disabled PPPoE disabled admin mtu 0, operating mtu 1500, default mtu 1500 *ip 192.168.1.1/24 *manage ip 192.168.1.1, route-deny disable pmtu-v4 disabled ping enabled, telnet enabled, SSH enabled, SNMP enabled web enabled, ident-reset disabled, SSL enabled SSH is enabled SSH is ready for connections Maximum sessions: 3 Active sessions: 3
Question No : 11
You have lost the admin user password for your NetScreen device.No other user accounts are configured on the device.How would you access the CLI?
Question No : 12
You want to centralize the logging for all your ScreenOS devices and you must be able to synchronize the log.Which two actions would you perform to accomplish this? (Choose two.)
Question No : 13
You manage a ScreenOS device.A user complains that the FTP download speed is slow.You suspect a cable or an interface might be the problem.Which command provides interface error information?
Question No : 14
You want to know the username and IP address of users who logged in to the WebUI.In which log would you find this information?
Question No : 15
You want to ensure that the ScreenOS device sends alert data to notify the security operation center.Which three log destinations would you set to accomplish your objective? (Choose three.)