Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Juniper Exam JN0-335 Topic 5 Question 24 Discussion

Actual exam question for Juniper's JN0-335 exam
Question #: 24
Topic #: 5
[All JN0-335 Questions]

You are asked to block malicious applications regardless of the port number being used.

In this scenario, which two application security features should be used? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: A, D

Juniper ATP Cloud is a cloud-based service that provides advanced threat prevention and detection for your network. It integrates with SRX Series firewalls and MX Series routers to analyze files and network traffic for signs of malicious activity. Two functions that Juniper ATP Cloud performs to reduce delays in the inspection of files are:

Juniper ATP Cloud allows the creation of allowlists: Allowlists are lists of trusted files or file hashes that are excluded from scanning by Juniper ATP Cloud. You can create allowlists based on file name, file type, file size, file hash, or sender domain. By using allowlists, you can reduce the number of files that need to be uploaded to Juniper ATP Cloud for analysis and improve the performance and efficiency of your network.

Juniper ATP Cloud performs a cache lookup on files: Cache lookup is a process that checks if a file has been previously scanned by Juniper ATP Cloud and if there is a cached verdict for it. If there is a cached verdict, Juniper ATP Cloud returns it immediately without scanning the file again. If there is no cached verdict, Juniper ATP Cloud uploads the file for analysis. By using cache lookup, you can reduce the time and bandwidth required for scanning files by Juniper ATP Cloud.


by Candra at Apr 19, 2024, 08:47 AM

Limited Time Offer

25%

Off

Get Premium JN0-335 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Soledad
11 days ago
AppFW and APPID are the clear winners here. I'm just hoping the exam doesn't ask us to identify the 'App-solutely' correct answer.
upvoted 0 times
...
Azalee
21 days ago
Definitely AppFW and APPID. I mean, why would anyone choose AppQoE or AppTrack? Those are like trying to fight a bear with a toothpick.
upvoted 0 times
Roselle
6 days ago
I agree, AppFW and APPID are the way to go for blocking malicious applications.
upvoted 0 times
...
...
Daron
22 days ago
I'm not sure about AppQoE, but AppTrack could be useful for tracking the malicious apps. Still, AppFW and APPID are the way to go in this scenario.
upvoted 0 times
...
Deja
23 days ago
AppFW and APPID seem like the logical choices here. AppFW can block malicious apps, and APPID can identify the apps based on their signatures.
upvoted 0 times
...
Daren
1 months ago
I'm not sure about AppFW, but I think AppTrack could also be useful in this scenario.
upvoted 0 times
...
Justine
1 months ago
I agree with Val, AppFW is a good choice. I also think we should use APPID for application identification.
upvoted 0 times
...
Val
1 months ago
I think we should use AppFW to block malicious applications.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77