Online Access Free JN0-696 Practice Test

-- Exhibit -

-- Exhibit -Click the Exhibit button. You have created a new VPN tunnel to your partner's site but IKE Phase 1 is not coming up. You
check the trace log and find the following log message: Jun [IKED 2] iked_pm_id_validate id NOT matched. Considering the topology and the SRX Series device's configuration shown in the exhibit, which modification is needed under [edit security gateway Partner]?

• A.rename address 20.1.1.1 to address 192.168.1.1
• B.set local-identity inet 50.1.1.1
• C.set remote-identity inet 192.168.1.1
• D.set local-identity inet 20.1.1.1

You are asked to troubleshoot a user communication problem. Users connected to the Trust zone cannot communicate with other devices connected to the same zone. These users are able to communicate with other devices in all other zones.
How should you resolve this problem?

• A.You must enable the all parameter for host inbound traffic for the zone.
• B.You must configure a security policy to allow intrazone communication.
• C.You must enable the allow-internal parameter under the Trust security zone.
• D.You must put each device in a separate subzone to allow internal communication.

-- Exhibit -
user@host> request services application-identification application copy junos:AIM-HTTP-API
error: Can not commit to junos configure DB.
could not lock modified database
mgd xcommit failed
Copy application junos:AIM-HTTP-API failed.
-- Exhibit -
Click the Exhibit button.
You want to make a custom copy of the junos: AIM-HTTP-API application signature. However, when you attempt to copy the application signature, you receive the error shown in the exhibit.
What is causing the problem?

• A.The candidate configuration is different from the active configuration.
• B.You cannot copy nested applications.
• C.The my:AIM-HTTP-API application signature already exists in the active configuration.
• D.The AppID signature database is corrupt.

You are having problems establishing an IPsec tunnel between two SRX Series devices.
What are two explanations for this problem? (Choose two.)

• A.antivirus configuration
• B.preshared key mismatch
• C.proposal mismatch
• D.TCP MSS clamping is disabled

Users at a branch office report that they cannot reach an internal Web server. The users connect through a single SRX Series device to reach the Web server. A security policy has been configured on the device that allows traffic to flow between interfaces in the Trust zone.
What is causing this problem?

• A.The IPsec VPN connection between the users and the Web server is down.
• B.The interface on the device that connects to the Web server is not in the Trust zone.
• C.There is a host inbound traffic configuration problem.
• D.There is an antispam configuration problem.