New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Juniper Exam JN0-636 Topic 9 Question 37 Discussion

Actual exam question for Juniper's JN0-636 exam
Question #: 37
Topic #: 9
[All JN0-636 Questions]

You are required to secure a network against malware. You must ensure that in the event that a

compromised host is identified within the network. In this scenario after a threat has been

identified, which two components are responsible for enforcing MAC-level infected host ?

Show Suggested Answer Hide Answer
Suggested Answer: C, D

You are required to secure a network against malware. You must ensure that in the event that a compromised host is identified within the network, the host is isolated from the rest of the network. In this scenario, after a threat has been identified, the two components that are responsible for enforcing MAC-level infected host are:

C) Policy Enforcer. Policy Enforcer is a software solution that integrates with Juniper ATP Cloud and Juniper ATP Appliance to provide automated threat remediation across the network. Policy Enforcer can receive threat intelligence feeds from Juniper ATP Cloud or Juniper ATP Appliance and apply them to the security policies on the SRX Series devices and the EX Series devices. Policy Enforcer can also enforce MAC-level infected host, which is a feature that allows you to quarantine a compromised host by blocking its MAC address on the switch port.Policy Enforcer can communicate with the EX Series devices and instruct them to apply the MAC-level infected host policy to the infected host1.

D) EX Series device. EX Series devices are Ethernet switches that can provide Layer 2 and Layer 3 switching capabilities and security features. EX Series devices can integrate with Policy Enforcer and Juniper ATP Cloud or Juniper ATP Appliance to provide automated threat remediation across the network. EX Series devices can support MAC-level infected host, which is a feature that allows them to quarantine a compromised host by blocking its MAC address on the switch port.EX Series devices can receive instructions from Policy Enforcer and apply the MAC-level infected host policy to the infected host2.

The other options are incorrect because:

A) SRX Series device. SRX Series devices are high-performance firewalls that can provide Layer 3 and Layer 4 security features and integrate with Juniper ATP Cloud or Juniper ATP Appliance to provide advanced threat prevention. SRX Series devices can receive threat intelligence feeds from Juniper ATP Cloud or Juniper ATP Appliance and apply them to the security policies.However, SRX Series devices cannot enforce MAC-level infected host, which is a feature that requires Layer 2 switching capabilities and is supported by EX Series devices3.

B) Juniper ATP Appliance. Juniper ATP Appliance is a hardware solution that provides advanced threat prevention by detecting and blocking malware, ransomware, and other cyberattacks. Juniper ATP Appliance can analyze the network traffic and identify the compromised hosts based on their behavior and communication patterns. Juniper ATP Appliance can also send threat intelligence feeds to Policy Enforcer and SRX Series devices to enable automated threat remediation across the network. However, Juniper ATP Appliance cannot enforce MAC-level infected host, which is a feature that requires Layer 2 switching capabilities and is supported by EX Series devices.


Policy Enforcer Overview

EX Series Switches Overview

SRX Series Services Gateways Overview

[Juniper ATP Appliance Overview]

Contribute your Thoughts:

Alverta
4 months ago
I'm just going to guess C) Policy Enforcer and D) EX Series device. Why? Because I like to keep the exam committee on their toes. Keeps them on their toes, you know?
upvoted 0 times
...
Luis
4 months ago
This is a tough one, but I reckon the answer is C) Policy Enforcer and B) Juniper ATP Appliance. Gotta love those Juniper products, they're the bees' knees when it comes to network security!
upvoted 0 times
Rosio
3 months ago
Definitely, having the right components like Policy Enforcer and Juniper ATP Appliance is crucial for securing the network against malware.
upvoted 0 times
...
Bettyann
4 months ago
Juniper products are top-notch for network security, I agree. They really help in keeping the network safe.
upvoted 0 times
...
Kristin
4 months ago
I think you're right, C) Policy Enforcer and B) Juniper ATP Appliance are the ones responsible for enforcing MAC-level infected host.
upvoted 0 times
...
...
Derick
5 months ago
Hmm, I'm not too sure about this one. I'm leaning towards C) Policy Enforcer and D) EX Series device, but I could be wrong. Better double-check the documentation.
upvoted 0 times
...
Aileen
5 months ago
I'm pretty sure the SRX Series device is involved in this as well. I'd go with A) SRX Series device, C) Policy Enforcer, and B) Juniper ATP Appliance.
upvoted 0 times
Catina
3 months ago
D) EX Series device is not mentioned as a component for this scenario.
upvoted 0 times
...
Kaitlyn
4 months ago
I would also choose B) Juniper ATP Appliance for added security.
upvoted 0 times
...
Carissa
4 months ago
I agree, C) Policy Enforcer is also crucial for enforcing MAC-level infected host.
upvoted 0 times
...
Lai
4 months ago
I think A) SRX Series device is definitely one of the components.
upvoted 0 times
...
...
Rosendo
5 months ago
I believe the Policy Enforcer also plays a role in enforcing MAC-level infected host.
upvoted 0 times
...
Maia
5 months ago
I agree with Rossana, the Juniper ATP Appliance is a crucial component in securing the network against malware.
upvoted 0 times
...
Marge
5 months ago
I think the correct answer is C) Policy Enforcer and B) Juniper ATP Appliance. They work together to enforce MAC-level security measures against infected hosts.
upvoted 0 times
Lelia
3 months ago
That's good to know. It's important to have multiple components in place to secure the network against malware.
upvoted 0 times
...
Providencia
4 months ago
Yes, you are right. Policy Enforcer and Juniper ATP Appliance work together to enforce MAC-level security measures.
upvoted 0 times
...
Quiana
4 months ago
I believe the correct answer is C) Policy Enforcer and B) Juniper ATP Appliance.
upvoted 0 times
...
...
Rossana
5 months ago
I think the Juniper ATP Appliance is responsible for enforcing MAC-level infected host.
upvoted 0 times
...

Save Cancel