PrepAway - Latest Free Exam Questions & Answers

Author: seenagape

what is the problem?

Leave a comment

Refer to the Exhibit.

— Exhibit —
CID-0:RT: flow process pak fast ifl 71 in_ifp ge-0/0/5.0
CID-0:RT: ge-0/0/5.0:10.0.0.2/55892->192.168.1.2/80, tcp, flag 2 syn
CID-0:RT: find flow: table 0x5a386c90, hash 50728(0xffff), sa 10.0.0.2, da 192.168.1.2, sp 55892,
dp 80, proto 6, tok 7
CID-0:RT: no session found, start first path. in_tunnel – 0x0, from_cp_flag – 0
CID-0:RT: flow_first_create_session
CID-0:RT: flow_first_in_dst_nat: in <ge-0/0/5.0>, out <N/A> dst_adr 192.168.1.2, sp 55892, dp 80

CID-0:RT: chose interface ge-0/0/5.0 as incoming nat if.
CID-0:RT:flow_first_rule_dst_xlatE. DST no-xlatE. 0.0.0.0(0) to 192.168.1.2(80)
CID-0:RT:flow_first_routinG. vr_id 0, call flow_route_lookup(): src_ip 10.0.0.2, x_dst_ip
192.168.1.2, in ifp ge-0/0/5.0, out ifp N/A sp 55892, dp 80, ip_proto 6, tos 10
CID-0:RT:Doing DESTINATION addr route-lookup
CID-0:RT: routed (x_dst_ip 192.168.1.2) from LAN (ge-0/0/5.0 in 0) to ge-0/0/1.0, Next-hop:
172.16.32.1
CID-0:RT:flow_first_policy_searcH. policy search from zone LAN-> zone WAN
(0x0,0xda540050,0x50)
CID-0:RT:Policy lkup: vsys 0 zone(7:LAN) -> zone(6:WAN) scope:0
CID-0:RT: 10.0.0.2/55892 -> 192.168.1.2/80 proto 6
CID-0:RT:Policy lkup: vsys 0 zone(5:Unknown) -> zone(5:Unknown) scope:0
CID-0:RT: 10.0.0.2/55892 -> 192.168.1.2/80 proto 6
CID-0:RT: app 6, timeout 1800s, curr ageout 20s
CID-0:RT: packet dropped, denied by policy
CID-0:RT: denied by policy default-policy-00(2), dropping pkt
CID-0:RT: packet dropped, policy deny.
CID-0:RT: flow find session returns error.
CID-0:RT: —– flow_process_pkt rc 0x7 (fp rc -1)
CID-0:RT:jsf sess close notify
CID-0:RT:flow_ipv4_del_flow: sess , in hash 32

— Exhibit —
A host is not able to communicate with a Web server.
Based on the logs shown in the exhibit, what is the problem?

which two statements are true?

Leave a comment

Refer to the Exhibit.

— Exhibit —
user@srx> show security flow session
Session ID. 7724, Policy namE. default-permit/4, Timeout: 2
In: 1.1.70.6/17 –> 100.0.0.1/2326;icmp, IF. ge-0/0/3
Out: 10.1.10.5/2326 –> 1.1.70.6/17;icmp, IF. ge-0/0/2
Session ID. 18408, Policy namE. default-permit/4, Timeout: 2
In: 10.1.10.5/64513 –> 1.1.70.6/512;icmp, IF. ge-0/0/2.0
Out: 1.1.70.6/512 –> 100.0.0.1/64513;icmp, IF. ge-0/0/3.10

— Exhibit —
A user has reported a traffic drop issue between a host with the 10.1.10.5 internal IP address and
a host with the 1.1.70.6 IP address. The traffic transits an SRX240 acting as a NAT translator. You
are investigating the issue on the SRX240 using the output shown in the exhibit.
Regarding this scenario, which two statements are true? (Choose two.)

Which firewall filter must you apply to the necessary interface to collect data for the packet capture?

Leave a comment

Refer to the Exhibit.

— Exhibit —
[edit forwarding-options]
user@srx240# show

packet-capture {
file filename my-packet-capture;
maximum-capture-size 1500;
}

— Exhibit —
Referring to the exhibit, you are attempting to perform a packet capture on an SRX240 to
troubleshoot an SSH issue in your network. However, no information appears in the packet
capture file.
Which firewall filter must you apply to the necessary interface to collect data for the packet
capture?


Page 860 of 1,293« First...102030...858859860861862...870880890...Last »