You are designing a data center security architecture. The design requires automated scaling of security services according to real-time traffic flows.

Which two design components will accomplish this task? (Choose two.)

A. telemetry with an SDN controller

B. JFlow traffic monitoring with event scripts

C. VNF security devices deployed on x86 servers

D. VRF segmentation on high-capacity physical security appliances

Which solution centralizes the management of security devices in your data center?

A. Juniper Networks Secure Analytics

B. J-Web

C. Junos Space Security Director

D. Junos CLI

You are designing a data center security solution for a customer. The customer asks that you provide a DDoS solution. Several IPsec tunnels will be terminated at the data center gateway.

Which type of security is your customer asking you to implement?

A. segmentation

B. intra-data center policy enforcement

C. perimeter protection

D. compliance

You have multiple SRX chassis clusters on a single broadcast domain. Why must you assign different cluster IDs in this scenario?

A. to avoid MAC address conflicts

B. to avoid control link conflicts

C. to avoid node numbering conflicts

D. to avoid redundancy group conflicts

You are asked to virtualize numerous stateful firewalls in your customer's data center. The customer wants the solution to use the existing Kubernetes-orchestrated architecture.

Which Juniper Networks product would satisfy this requirement?

A. vMX

B. vSRX

C. cSRX

D. CTP Series

A hosting company is migrating to cloud-based solutions. Their customers share a physical firewall cluster, subdivided into individual logical firewalls for each customer. Projection data shows that the cloud service will soon deplete all the resources within the physical firewall. As a consultant, you must propose a scalable solution that continues to protect all the cloud customers while still securing the existing physical network.

In this scenario, which solution would you propose?

A. Deploy a vSRX cluster in front of each customer's servers while keeping the physical firewall cluster

B. Deploy a software-defined networking solution

C. Remove the physical firewall cluster and deploy vSRX clusters dedicated to each customer's servers

D. Replace the physical firewall cluster with a higher-performance firewall

You are working on a network design that will use EX Series devices as Layer 2 access switches in a campus environment. You must include Junos Space in your design. You want to take advantage of security features supported on the devices.

Which two security features would satisfy this requirement? (Choose two.)

A. SDSN

B. Stateful Firewall

C. Access Control

D. ALG

You are responding to an RFP for securing a large enterprise. The RFP requires an onsite security solution which can use logs from third-party sources to prevent threats. The solution should also have the capability to detect and stop zero- day attacks.

Which Juniper Networks solution satisfies this requirement?

A. IDP

B. Sky ATP

C. JSA

D. JATP

You are using SRX Series devices to secure your network and you require sandboxing for malicious file detonation. However, per company policy, you cannot send potentially malicious files outside your network for sandboxing.

Which feature should you use in this situation?

A. Sky ATP

B. UTM antivirus

C. IPS

D. JATP

Which solution provides a certificate based on user identity for network access?

A. network access control

B. user firewall

C. IP filtering

D. MAC filtering