Juniper Firewall Terms Flashcards
1
Q
__________ is a web-based graphical user interface (GUI) provided by Juniper Networks for managing and configuring Juniper SRX Series Firewalls. It allows network administrators to perform various tasks, such as setting up security policies, managing interfaces, monitoring network traffic, and generating reports, using a web browser instead of the command-line interface (CLI).
A
J-Web
2
Q
The __________ are Juniper Network’s line of security devices that provide robust and scalable security solutions for enterprises, data centers, and service providers. These firewalls offer a wide range of features, including firewalling, routing, VPN (Virtual Private Network), IPS (Intrusion Prevention System), UTM (Unified Threat Management), application visibility and control, and advanced threat protection.
A
SRX Series Firewalls
3
Q
The __________ is the starting point for accessing the J-Web GUI. It provides a simplified and organized dashboard with quick links to commonly used features and sections within the J-Web interface.
A
J-Web Launch Pad
4
Q
The __________ is the upper section of the J-Web interface. It typically contains the main menu, which includes various tabs or options for navigating to different configuration and monitoring sections.
A
J-Web Top Pane
5
Q
The __________ is a vertical panel usually located on the left or right side of the J-Web interface. It offers quick access to different categories or groups of configuration options, making it easier for administrators to find specific settings.
A
J-Web Side Pane
6
Q
The__________ is the central area of the J-Web interface. It displays the content related to the selected configuration or monitoring task. Administrators can configure settings or view information in this section.
A
J-Web Main Pane
7
Q
__________ are interactive step-by-step guides available in the J-Web interface. They assist administrators in performing complex configuration tasks by breaking them down into manageable steps and guiding them through the process.
A
J-Web Workflow Wizards
8
Q
The __________ is a customizable overview page that provides real-time monitoring information and system status. It may include widgets, charts, and graphs representing key performance indicators (KPIs) and system health metrics.
A
J-Web Dashboard
9
Q
This section in J-Web allows administrators to monitor the status and statistics of network interfaces, including traffic throughput, errors, and link status.
A
Monitor Interfaces
10
Q
This section allows administrators to monitor and view the DHCP server bindings, showing the IP addresses assigned to clients dynamically.
A
Monitor DHCP Server Bindings
11
Q
In this section, administrators can monitor the status and statistics of IPsec VPN tunnels, such as active connections and data transfer rates.
A
Monitor IPsec VPN
12
Q
The Monitor Session feature enables administrators to monitor the sessions passing through the firewall, providing information about source and destination IP addresses, protocols, and session duration.
A
Monitor Session
12
Q
The __________ feature enables administrators to monitor the sessions passing through the firewall, providing information about source and destination IP addresses, protocols, and session duration.
A
Monitor Session
13
Q
This section provides information about detected threats and attacks, including intrusion attempts, malware activity, and other security events.
A
Monitor Threats
14
Q
In this section, administrators can monitor the web filtering activity on the firewall, tracking user access to various websites and web categories.
A
Monitor Web Filtering
15
Q
ATP monitoring allows administrators to track and analyze advanced security threats, such as zero-day exploits and targeted attacks.
A
Monitor ATP (Advanced Threat Protection)
16
Q
This section provides an overview of the VPN (Virtual Private Network) connections and status, including site-to-site VPNs and remote access VPNs
A
Monitor VPN
17
Q
In this section, administrators can view a comprehensive list of all events and activities logged by the firewall, including security alerts, system events, and user activities.
A
Monitor All Events
18
Q
The Monitor System section allows administrators to monitor the overall health and performance of the SRX Series Firewall, including CPU usage, memory utilization, and system status.
A
Monitor System
19
Q
This section provides information about alarms and events generated by the firewall, allowing administrators to quickly identify and troubleshoot issues.
A
Monitor Alarms
20
Q
The __________ feature allows administrators to create graphical representations of network data and statistics, such as traffic maps and threat maps.
A
Maps and Charts
21
Q
This feature displays a graphical representation of network traffic flows, helping administrators visualize data traffic patterns.
A
Monitor Traffic Map
22
Q
The __________ provides a visual representation of detected threats and attack sources, helping administrators identify potential security risks.
A
Monitor Threats Map
23
Q
A
Monitor Threats Map
24
Monitor Application
25
Monitor Application
26
Monitor Users
27
This section provides information about the effectiveness of threat prevention mechanisms, such as IPS and antivirus, in blocking malicious activities.
Monitor Threat Prevention
28
The Monitor Users feature allows administrators to track and manage user activities on the network, including login/logout times and data usage.
Monitor Users
29
In this section, administrators can monitor and manage application traffic and usage on the network.
Monitor Application
30
These sections provide detailed information about the phase I and phase II negotiations of VPN connections, including encryption parameters and authentication details.
Monitor VPN Phase I and Monitor VPN Phase I
31
The DNS Security section monitors DNS-related activities, such as DNS queries, responses, and potential security threats.
Monitor DNS Security
32
This feature provides insights and statistics on encrypted traffic passing through the firewall, helping administrators detect potential threats hidden within encrypted connections.
Monitor Encrypted Traffic Insights
33
The Reports - Overview section provides a summary of various network and security reports available on the firewall.
Reports - Overview
34
__________ offer detailed analysis and insights into security threats and vulnerabilities present in the network.
Threat Assessment Reports
35
This report provides information about application usage and user activities on the network.
Application and User Usage
36
__________ reports highlight the top network devices consuming the most bandwidth on the network.
Top Talkers
37
This report provides an overview of the current threat environment and the activities blocked by the IPS (Intrusion Prevention System).
IPS Threat Environment
38
This report lists the viruses and malware that have been successfully blocked by the firewall's security measures.
Viruses Blocked
39
__________ show the URLs accessed by users and the categories to which they belong.
URL Reports
39
URL Reports show the URLs accessed by users and the categories to which they belong.
URL Reports
40
Virus: Top Blocked
This report displays the top viruses and malware blocked by the firewall.
41
This report displays the top viruses and malware blocked by the firewall.
42
Virus: Top Blocked
Virus: Top Blocked
43
This report displays the top viruses and malware blocked by the firewall.
Virus: Top Blocked
44
Top Firewall Events report provides details about the most significant firewall events and activities.
Top Firewall Events
45
This report highlights the destinations that have been denied the most by the firewall's policies.
Top Firewall Deny Destinations
46
__________ report provides information on the most frequent denied connections and attempts.
Top Firewall Denies
47
This report presents the most significant intrusion prevention events and activities.
Top IPS Events
48
__________ report lists the most common spam and junk email messages detected and blocked.
Top Anti-spam Detected
49
This report identifies the top sources of network attacks and threats.
Top Screen Attackers
50
__________ report shows the devices or hosts most frequently targeted by attacks.
Top Screen Victims
51
This report provides details about the most frequent ScreenOS attacks.
Top Screen Hits
52
__________ report displays the firewall rules with the most activity or matches.
Top Firewall Rules
53
This report shows the top sources that have been denied by the firewall's policies.
Top Firewall Deny Sources
54
This report lists the top sources of detected intrusion attempts and attacks.
Top IPS Attack Sources
55
__________ report shows the most targeted destinations of intrusion attempts and attacks.
Top IPS Attack Destinations
56
This report highlights the intrusion prevention rules with the most triggered actions.
Top IPS Rules
57
This report displays the web applications that are most frequently accessed by users.
Top Web Apps
58
__________ report shows the applications that have been blocked the most.
Top Applications Blocked
59
This report presents the URLs accessed by individual users or devices.
Top URLs by User
60
This report highlights the zones generating the highest amount of traffic.
Top Source Zone by Volume
61
__________ report displays the applications used by individual users.
Top Applications by User
62
Top Applications by User report displays the applications used by individual users.
Top Applications by User
63
This report lists the top botnet threats and their sources detected through IDP (Intrusion Detection and Prevention) logs.
Top Botnet Threats by Source Address via IDP Logs
64
This report shows the top destinations targeted by botnet threats detected through IDP logs.
Top Botnet Threats by Destination Address via IDP Logs
65
This report categorizes botnet threats based on their severity as detected through IDP logs.
Top Botnet Threats by Threat Severity via IDP Logs
66
This report categorizes botnet threats based on their severity as detected through IDP logs.
Top Botnet Threats by Threat Severity via IDP Logs
67
This report lists the top malware threats and their sources detected through IDP logs.
Top Malware Threats by Source Address via IDP Logs
68
This report shows the top destinations targeted by malware threats detected through IDP logs.
Top Malware Threats by Destination Address via IDP Logs
69
This report categorizes malware threats based on their severity as detected through IDP logs.
Top Malware Threats by Threat Severity via IDP Logs
70
This report displays the applications that have been blocked the most by the web filtering feature.
Top Blocked Applications via Webfilter Logs
71
This report lists the permitted application subcategories based on traffic volume through web filtering logs.
Top Permitted Application Subcategories by Volume via Webfilter Logs
72
This report shows the permitted application subcategories based on the number of allowed connections through web filtering logs.
Top Permitted Application Subcategories by Count via Webfilter Logs
73
Cluster (High Availability) Setup refers to the configuration of multiple SRX Series Firewalls in a high availability cluster to provide redundancy and failover capabilities.
Cluster (HA) Setup
74
A __________ is a collection of interfaces or services that are grouped together for redundancy purposes in a high availability cluster.
Redundancy Group
75
__________ management involves creating and managing user accounts and assigning different roles to control their level of access and permissions within the J-Web interface.
User & Roles
76
A __________ represents an individual or administrator who can access and interact with the J-Web GUI.
User
77
A __________ defines a set of permissions and access rights granted to a user. Different roles can have different levels of access to various configuration and monitoring features.
Role
78
__________ is a feature that allows the SRX Series Firewall to be logically divided into multiple independent virtual firewalls or security domains, each serving a separate customer or department while sharing the same physical hardware.
Multi-Tenancy
79
A __________ is a configuration that defines the resource limits and quotas for each tenant in a multi-tenancy environment.
Resource Profile
80
__________ are physical interfaces used for communication between nodes in a high availability cluster.
Interconnect Ports
81
__________ are virtual interfaces used for tunneling and encapsulating traffic between sites.
LT Logical Tunnel (LT) Interfaces
82
__________ enable the creation of multiple isolated routing and security instances on a single physical firewall, allowing different tenants or customers to have their own dedicated virtual firewalls.
Logical Systems
83
__________ represent individual customers, departments, or organizations in a multi-tenancy environment, each with its own isolated network and security policies.
Tenants
84
__________ are digital files used for secure authentication, encryption, and communication in a network.
Certificates
85
A __________ is a digital certificate used for authenticating and securing communication with the SRX Series Firewall.
Device Certificate
86
A Device Certificate is a digital certificate used for authenticating and securing communication with the SRX Series Firewall.
Device Certificate
87
Let's Encrypt is a certificate authority that provides free SSL/TLS certificates. A Device Certificate obtained from Let's Encrypt can be used for secure communication.
Device Certificate (Let's Encrypt)
88
A Local Self-Signed Device Certificate is a certificate generated by the SRX Series Firewall itself for internal use.
Device Certificate (Local Self-Signed)
89
Simple Certificate Enrollment Protocol (SCEP) allows the SRX Series Firewall to obtain a certificate from a certificate authority automatically.
Device Certificate (SCEP)
90
ACME (Automated Certificate Management Environment) is a protocol used to automate the process of obtaining and managing SSL/TLS certificates.
Device Certificate (ACME)
91
__________ is used for certificate enrollment and management.
Device Certificate (CMPv2) / Certificate Management Protocol version 2 (CMPv2)
92
__________ is a message sent to a certificate authority to request a digital certificate.
Device Certificate (CSR) / Certificate Signing Request (CSR)
93
An __________ is a certificate generated by a third-party certificate authority and imported into the SRX Series Firewall.
Device Certificate (Externally Generated)
94
A __________ is a trusted entity that issues and manages digital certificates.
Certificate Authority (CA)
95
The __________ is a list of certificates installed on the SRX Series Firewall, including device certificates and CA certificates.
Certificates Table
96
The Certificates Table is a list of certificates installed on the SRX Series Firewall, including device certificates and CA certificates.
Certificates Table
97
A CA Certificate is a certificate issued by a Certificate Authority, used to verify the authenticity of other certificates.
CA Certificate
98
A Certificate Authority Group is a collection of CA certificates used for certificate verification.
Certificate Authority Group
99
CA Group is an abbreviation for Certificate Authority Group
CA Group
100
A Trusted CA Group is a subset of the Certificate Authority Group, consisting of CA certificates that are explicitly trusted for certificate verification.
Trusted CA Group
101
A Trusted CA Group is a subset of the Certificate Authority Group, consisting of CA certificates that are explicitly trusted for certificate verification.
Trusted CA Group
102
The __________ is a list of CA Groups configured on the SRX Series Firewall.
Certificate Authority Group Table
103
__________ involves managing the software licenses for different features and functionalities on the SRX Series Firewall.
License Management
104
__________ are unique codes used to activate specific features or software licenses on the SRX Series Firewall.
License Keys
105
__________ refer to the licenses that have been activated and are currently in use on the SRX Series Firewall.
Installed Licenses
105
Installed Licenses refer to the licenses that have been activated and are currently in use on the SRX Series Firewall.
Installed Licenses
106
Software Feature Licenses are licenses that enable specific functionalities or features on the SRX Series Firewall.
Software Feature Licenses
107
Trial Licenses allow users to evaluate certain features or functionalities for a limited time before making a purchase decision.
Trial Licenses
108
Security Package Management involves managing and updating security-related components, such as IPS signatures, application signatures, URL categories, and antivirus profiles.
Security Package Management
109
The IPS Signatures Package contains a collection of intrusion prevention signatures used to detect and prevent known attacks and threats.
IPS Signatures Package
110
IPS Signatures are specific patterns or rules used to identify and block known intrusion attempts and malicious activities.
IPS Signatures
111
The Application Signatures Package includes a set of signatures used to identify and control various applications on the network.
Application Signatures Package
112
The Application Signatures Package includes a set of signatures used to identify and control various applications on the network.
Application Signatures Package
113
The __________ contains a database of web categories used for web filtering and control.
URL Category Package
114
__________ are classifications of websites based on their content and purpose.
URL Category
115
__________ is a cloud-based threat intelligence service that provides advanced security analytics and insights to detect and prevent cyber threats.
Juniper ATP Cloud
116
The __________ allows administrators to schedule the reboot of the SRX Series Firewall at specific times for maintenance or updates.
Reboot Schedule
117
__________ are backups or images of the SRX Series Firewall's configuration and system state, which can be used for recovery and restoration.
System Snapshots
118
__________ refer to the firmware images used to update or upgrade the operating system and features on the SRX Series Firewall.
Software Packages
119
__________ involves managing and maintaining the firewall's configuration, including backups, rollbacks, and rescue configurations.
Configuration Management
120
The __________ is a backup configuration that can be used to recover the SRX Series Firewall in case of a critical configuration issue.
Rescue Configuration
121
__________ involves handling and responding to system alarms and events generated by the SRX Series Firewall.
Alarm Management
122
This section allows administrators to monitor and manage alarms related to the overall health and status of the firewall's chassis.
Monitor Chassis Alarm
123
A __________ is an event or condition that triggers an alarm related to the physical components and health of the firewall.
Chassis Alarm
124
A __________ is a pre-defined rule or condition that triggers a specific alarm when met.
Chassis Alarm Definition
125
A __________ is an event or condition that triggers an alarm related to the system's operation and functionality.
System Alarm
126
This section allows administrators to monitor and manage alarms generated by the SRX Series Firewall's system and services.
Monitor System Alarm
127
This section allows administrators to monitor and manage alarms generated by the SRX Series Firewall's system and services.
Monitor System Alarm
128
RPM stands for Real-time Performance Monitoring. It is a feature that allows administrators to monitor and measure the performance of network devices and links in real-time.
RPM
129
MPLS (Multiprotocol Label Switching) is a protocol used for efficient packet forwarding in high-performance networks. It is commonly used in service provider networks to deliver MPLS-based services.
MPLS
130
Control Plane Packet Capture is a feature that allows administrators to capture and analyze packets traversing the control plane of the firewall, helping in troubleshooting and debugging.
Control Plane Packet Capture
131
Data Plane Packet Capture is a feature that allows administrators to capture and analyze packets traversing the data plane of the firewall, helping in network traffic analysis and troubleshooting.
Data Plane Packet Capture
132
CLI stands for Command-Line Interface. It is a text-based interface used to configure and manage the SRX Series Firewall by entering commands.
CLI
133
Point and Click CLI is a feature in J-Web that allows administrators to interact with the CLI through a graphical interface, making it easier to use for those familiar with the J-Web environment.
Point and Click CLI
134
The __________ feature allows administrators to reset the SRX Series Firewall to its default configuration settings.
Reset Configuration
135
__________ are virtual interfaces used to handle network traffic and connect to various networks and security zones.
Logical Interfaces
136
__________ is a logical network composed of devices from multiple physical LAN segments, allowing devices to communicate as if they were on the same physical LAN.
VLAN (Virtual LAN)
137
__________ is a technique that combines multiple physical interfaces into a single logical interface for increased bandwidth and redundancy.
Link Aggregation (Link Aggregation Group) - LAG
138
__________ are the logical interfaces resulting from link aggregation, providing higher throughput and fault tolerance.
Aggregated Interfaces
139
__________ refer to the configuration options and parameters for link aggregation.
Link Aggregation Global Settings
140
__________ is a protocol used to establish and manage PPP sessions over Ethernet networks, commonly used in DSL and broadband connections.
PPPoE (Point-to-Point Protocol over Ethernet)
141
An __________ is a device that provides wireless connectivity to client devices in a wireless LAN (WLAN).
Access Point
142
A__________ refers to the wireless radio interface on an Access Point, supporting specific wireless standards (e.g., 802.11a/b/g/n/ac).
Access Point Radio
143
The D__________ allows administrators to view information about DHCP clients, including leased IP addresses and lease times.
DHCP Client Page
144
The __________ provides details about a specific DHCP client, including its MAC address, IP address, and lease information.
DHCP Client Information
145
A__________ is a network service that dynamically assigns IP addresses and other configuration parameters to DHCP clients.
DHCP Server
146
A__________ is a range of IP addresses from which the DHCP server assigns addresses to DHCP clients.
DHCP Pool
147
__________ refer to the configuration options and parameters for DHCP groups.
DHCP Groups Global Settings
148
__________ are used to control and filter traffic based on specific criteria, allowing or denying packets based on various conditions.
Firewall Filters
149
__________ control how IP addresses are translated between private and public IP spaces.
NAT (Network Address Translation) Policies
150
__________ is a form of NAT where the source IP address of outgoing packets is translated to a different IP address.
Source NAT (SNAT)
151
__________ are groups of IP addresses used for NAT translation.
NAT Pools
152
__________ refer to the configuration settings for NAT pools that are applied globally.
Global Options - NAT Pools
153
__________ is a form of NAT where the destination IP address of incoming packets is translated to a different IP address.
Destination NAT (DNAT) Pool
154
The __________ refers to the destination IP address or network used in various firewall policies and NAT configurations.
Destination
155
__________ are used to define the translation rules for Destination NAT.
Destination Rule Settings
156
__________ is a type of NAT where a fixed mapping between private and public IP addresses is defined.
Static NAT
157
A __________ is a set of static NAT rules that define the translation between private and public IP addresses.
Static Rule Set
158
__________ are techniques used by a router to respond on behalf of other devices on the network.
Proxy ARP/ND - Proxy ARP (Address Resolution Protocol) and Proxy ND (Neighbor Discovery)
159
__________ is a technique where a router responds to ARP requests on behalf of another device, effectively acting as a proxy.
Proxy ARP
160
__________ is similar to Proxy ARP but used in IPv6 networks for Neighbor Discovery messages.
Proxy ND
161
__________ involves manually configuring static routes in the routing table to direct traffic to specific destinations.
Static Routing
162
A __________ is a manually configured route that specifies a fixed path for traffic to a specific destination.
Static Route
163
__________ is a dynamic routing protocol that uses hop count as a metric to determine the best path for routing traffic.
RIP (Routing Information Protocol)
164
__________ is an abbreviation for Routing Information Protocol.
RIP
165
A __________ is a separate RIP routing process with its own configuration
RIP Instance
166
__________ refer to the configuration options and parameters for the RIP routing protocol.
RIP Global Settings
167
__________ is a link-state routing protocol used for dynamic routing in IP networks.
OSPF (Open Shortest Path First) Routing
168
__________ is an exterior gateway protocol used for routing traffic between autonomous systems on the Internet.
BGP (Border Gateway Protocol) Routing
169
A__________ is a collection of BGP peers that share common configuration settings
BGP Group
170
__________ are virtual routing contexts that isolate and separate routing tables and protocols, allowing different routing configurations to coexist.
Routing Instances
171
__________ are used to manipulate and control the selection and redistribution of routes in the network.
Routing - Policies
172
__________ refer to the configuration settings for routing policies applied globally.
Routing - Policies - Global Options
173
A __________ is a set of rules or conditions that determine how traffic is processed or forwarded.
Policy
174
__________ determines how packets are forwarded based on the configured routing tables and policies.
Routing Forwarding Mode
175
__________ allow administrators to define custom names for specific CoS values or priority levels.
CoS (Class of Service) - Value Aliases
176
__________ are used to define custom names for specific DiffServ (Differentiated Services) code points.
Code Point Aliases
177
__________ define different levels of priority and treatment for network traffic.
CoS - Forwarding Classes
178
A __________ is a specific CoS classification assigned to packets to determine their treatment and priority.
Forwarding Class
179
__________ are used to categorize and match packets based on specific criteria for CoS processing.
CoS Classifiers
180
__________ define how CoS values are rewritten or modified for specific traffic flows.
CoS - Rewrite Rules
181
__________ define the rate and priority at which traffic is forwarded from queues to the physical interfaces.
CoS - Schedulers
182
__________ associate forwarding classes with specific scheduling parameters, shaping rates, and priorities.
CoS - Scheduler Maps
183
A __________ specifies how excess traffic is dropped when a queue or interface is congested.
CoS - Drop Profile
184
__________ are used to manage the CoS configuration for aggregated interfaces (LAGs).
CoS - Virtual Channel Groups
185
__________ allows administrators to bind CoS settings to specific physical or logical interfaces.
CoS - Assign To Interface
186
__________ is a virtual interface that is bound to a physical interface and used to handle network traffic.
Logical Interface
187
__________ involves configuring QoS settings for specific applications or traffic types.
Application QoS (Quality of Service)
188
A __________ defines the rate at which specific traffic flows are allowed to transmit data.
Rate Limiter Profile
189
__________ is a secure tunneling protocol used to establish encrypted connections over the Internet or untrusted networks.
IPsec (Internet Protocol Security) VPN
190
__________ refer to the configuration options and parameters for IPsec VPNs applied globally.
IPsec VPN Global Settings
191
A __________ is a VPN connection established between two or more locations or networks.
Site-to-Site VPN
192
__________ is a remote access VPN solution provided by Juniper Networks.
Remote Access VPN - Juniper Secure Connect
193
__________ is a remote access VPN client used for secure connectivity to the SRX Series Firewall.
Remote Access VPN - NCP Exclusive Client
194
__________ is a method of configuring VPN connections manually without using a VPN tunneling protocol.
Manual Key VPN
195
__________ allows remote users to access the network securely through a VPN tunnel.
Dynamic VPN
196
__________ refer to the configuration options and parameters for Dynamic VPN connections.
Dynamic VPN - Global Settings
197
An __________ is a pre-configured set of parameters and settings used as a template for creating IPsec VPN connections.
IPsec Template
198
__________ refers to the adherence of the SRX Series Firewall's configuration to regulatory or industry-specific security standards.
Compliance
199
__________ involves checking and verifying the compliance status of a device before granting it network access.
Pre-Logon Compliance
200
__________ involve configuring security rules and objects to control network traffic and enforce security policies.
Security Policies and Objects
201
__________ are rules that determine how network traffic is allowed or denied based on various criteria, such as source, destination, application, and user.
Security Policies
202
A __________ refers to a specific rule within the security policies that defines the traffic handling and security actions.
Security Policies Rule
203
A __________ is a web page that requires users to authenticate or agree to terms before gaining access to the network.
Captive Portal
204
__________ involves authenticating users accessing the network through a web portal or captive portal.
Web Authentication
205
__________ involves authenticating users for firewall management and access control.
Firewall User Authentication
206
This workflow guides administrators through the configuration of a __________.
Configure Captive Portal for Web Authentication and Firewall User Authentication Workflow
207
__________ defines how metadata is streamed and exported from the SRX Series Firewall.
Metadata Streaming Policy
208
__________ refer to the security zones and security screens used to enforce security policies on the firewall.
Zones/Screens
209
A __________ is a logical grouping of network interfaces with the same security requirements.
Zone
210
A __________ is a security profile that enforces specific security rules and policies on the traffic passing through the firewall.
Screen
211
__________ are IP address ranges associated with specific security zones.
Zone Addresses
212
__________ are IP address ranges used in various security policies and NAT configurations.
Global Addresses
213
The __________ is a collection of named IP addresses or address ranges used in firewall policies and configurations.
Address Book
214
__________ refer to the specific protocols or port numbers used in firewall policies for allowing or denying traffic.
Services
215
A__________ allows administrators to define custom protocols or applications for use in security policies.
Custom Application
216
An __________ is a collection of multiple applications or protocols grouped together for ease of policy management.
Application Group
217
__________ are automatically detected applications that are not explicitly defined in the application list.
Dynamic Applications
218
__________ refer to configuration options that apply globally to the firewall or specific features.
Global Settings
219
__________ are patterns or characteristics used to identify specific applications or protocols in the network traffic.
Application Signatures
220
An __________ is a collection of application signatures that are used together in a security policy.
Application Signatures Group
221
The __________ is a list of all application signatures configured on the SRX Series Firewall.
Applications Signatures Table
222
__________ involves monitoring and tracking the applications used on the network.
Application Tracking
223
__________ are time-based configurations that define when specific security policies are active.
Schedules
224
__________ are used to configure and manage various proxy-related functionalities, such as web filtering and URL filtering.
Proxy Profiles
225
__________ involve configuring and managing various security features, such as antivirus, antispam, and content filtering.
Security Services
226
The__________ is a pre-configured security policy for content filtering, antivirus, and antispam
Content Security Default Configuration
227
__________ are used to configure antivirus scanning settings for incoming and outgoing traffic.
Content Security Antivirus Profiles
228
__________ allows administrators to manage and configure antivirus settings through the J-Web interface.
J-Web Content Security Antivirus
229
__________ involves scanning and blocking malware and viruses from entering the network.
Content Security Antivirus
230
The __________ include protecting the network from malware, viruses, and other security threats.
Benefits of Content Security Antivirus
231
__________ provides a step-by-step guide for configuring antivirus settings and policies.
Antivirus Workflow
232
____________________ are used to configure web filtering settings to control access to specific websites or web categories.
Content Security Web Filtering Profiles
233
__________ allows administrators to manage and configure web filtering settings through the J-Web interface.
J-Web Integrated Content Security Web Filtering
234
__________ involves blocking access to specific URLs or websites based on predefined categories.
Content Security URL Filtering
235
The __________ include controlling web access and preventing users from accessing malicious or inappropriate content.
Benefits of Content Security Web Filtering
236
__________ refers to the process of controlling and filtering web access based on specific policies and categories.
Web Filtering
237
__________ are used to configure settings for blocking and filtering spam emails.
Content Security Antispam Profiles
238
__________ are used to configure content filtering settings for email communications.
Content Security Content Filtering Profiles
239
__________ are user-defined objects used in content filtering rules and policies.
Content Security Custom Objects
240
__________ defines MIME (Multipurpose Internet Mail Extensions) types used in email content filtering.
MIME Pattern List
241
__________ defines specific file extensions used in email content filtering.
File Extension List
242
__________ defines protocol commands used in email content filtering.
Protocol Command List
243
__________ defines specific URLs or patterns used in email content filtering.
URL Pattern List
244
__________ defines predefined URL categories used in web filtering.
URL Category List
245
__________ defines custom messages used in email content filtering.
Custom Message List
246
__________ are user-defined objects used in security policies and configurations.
Custom Objects
247
__________ refers to the overall configuration and settings for content filtering, web filtering, and antivirus.
Content Security Policy
248
__________ are used to configure and manage intrusion prevention rules and settings.
IPS (Intrusion Prevention System) Policies
249
__________ are a set of pre-configured IPS rules and settings for common security scenarios.
IPS Predefined Policies
250
An __________ defines how traffic is inspected and protected by the IPS engine.
IPS Policy Rule
251
__________ are specific patterns or rules used to identify and block known intrusion attempts and malicious activities.
IPS Signatures
252
__________ are a type of IPS signatures used to detect various network attacks and threats.
Snort Rules
253
A __________ allows administrators to define custom intrusion prevention signatures.
Custom IPS Signature
254
__________ allow administrators to group multiple IPS signatures for ease of management.
IPS Signature Static Groups
255
__________ are created based on detected threats and automatically updated with matching IPS signatures.
IPS Signature Dynamic Group
256
An__________ refers to a specific intrusion prevention rule used to detect and prevent known threats.
IPS Signature
257
An __________ is a logical entity used to monitor and analyze network traffic for potential intrusions and threats.
IPS Sensor
258
__________ is a feature that allows the firewall to inspect and modify application layer data in certain protocols for better compatibility and security.
ALG (Application Layer Gateway)
259
A __________ is used to configure and manage the exporting of metadata from the firewall for security analytics.
Metadata Streaming Profile
260
__________ involves inspecting and controlling DNS queries to block access to malicious or inappropriate domains.
DNS Filtering
261
__________ involves using advanced techniques to detect and block sophisticated malware and threats.
ATP (Advanced Threat Protection) Anti-malware
262
__________ provides threat intelligence and security information to enhance threat detection and prevention.
ATP SecIntel (Security Intelligence)
263
A __________ is a technique used to redirect malicious DNS requests to a controlled server for further analysis and blocking.
DNS Sinkhole
264
A __________ is used to identify and block communications between malware-infected hosts and their command and control servers.
Command and Control Profile
265
A __________ allows administrators to define DNS-related settings and policies.
DNS Profile
266
An __________ is used to detect and quarantine infected hosts on the network.
Infected Hosts Profile
267
__________ are collections of security intelligence profiles used for enhanced threat detection and prevention.
ATP SecIntel Profile Groups
268
__________ define the SSL/TLS initiation process for client and server-side connections.
SSL Initiation Profiles
269
__________ are used to configure SSL/TLS decryption and inspection for security purposes.
SSL Proxy Profiles
270
__________ involves decrypting and inspecting SSL/TLS-encrypted traffic for security analysis and protection.
SSL Proxy
271
A __________ defines the access policies for users authenticating to the firewall.
Firewall Authentication - Access Profile
272
An __________ specifies the authentication and authorization settings for firewall access.
Access Profile
273
__________ are used to assign IP addresses to authenticated users.
Firewall Authentication - Address Pools
274
__________ involves authenticating users to gain access to the firewall and its resources.
Firewall Authentication
275
__________ define the user authentication and access control settings.
Firewall Authentication UAC (User Access Control) Settings
276
__________ involves integrating the firewall with an Active Directory server for user authentication.
Firewall Authentication Active Directory
277
__________ allows local user accounts to authenticate with the firewall.
Firewall Authentication Local Authentication
278
__________ defines the order in which authentication methods are used.
Firewall Authentication Authentication Priority
279
__________ is a service that provides user identity and access management.
Juniper Identity Management Service (JIMS)
280
__________ is used to redirect web traffic to an ICAP server for content inspection and adaptation.
ICAP (Internet Content Adaptation Protocol) Redirect
281
These sections provide detailed information about the phase I and phase II negotiations of VPN connections, including encryption parameters and authentication details.
Monitor VPN Phase 1 and Monitor VPN Phase 2
282
__________ refer to a type of cybersecurity threat where a network of compromised computers, known as "bots" or "zombies," is controlled by a central command and control server. Cybercriminals use botnets to carry out various malicious activities, such as launching distributed denial-of-service (DDoS) attacks, spreading malware and spam, stealing sensitive information, and conducting other cyberattacks.
Botnet Threats
283
Botnets are often used for large-scale, coordinated attacks, and the infected machines may be unaware of their participation in the malicious activities.
Botnets
284
__________ involves monitoring and managing the first phase of establishing an IPsec VPN connection, also known as the IKE (Internet Key Exchange) phase. During this phase, the devices negotiate and establish a secure tunnel between them by exchanging encryption algorithms, authentication methods, and other security parameters.
Monitor VPN Phase 1
285
__________ helps to ensure that the VPN tunnel is correctly established and that the security associations (SAs) are working as expected.
Monitor VPN Phase 1
286
__________ involves monitoring and managing the second phase of establishing an IPsec VPN connection. During this phase, the devices negotiate the actual encryption and tunnel parameters used for protecting data traffic passing through the VPN tunnel.
Monitor VPN Phase 2
287
Monitoring VPN Phase 2 ensures that the data traffic is correctly encrypted and decrypted, and it helps to identify any issues that may affect the performance or security of the VPN connection.
Monitor VPN Phase 2
288
In this section, administrators can __________ activity on the firewall, tracking user access to various websites and web categories.
Monitor Web Filtering
289
__________ allows administrators to track and analyze advanced security threats, such as zero-day exploits and targeted attacks.
Monitor ATP (Advanced Threat Protection)
290
The __________ section allows administrators to monitor the overall health and performance of the SRX Series Firewall, including CPU usage, memory utilization, and system status.
Monitor System
291
The __________ feature allows administrators to track and manage user activities on the network, including login/logout times and data usage.
Monitor Users
292
In this section, administrators can __________ traffic and usage on the network.
Monitor Application/ monitor and manage application
293
The __________ section monitors DNS-related activities, such as DNS queries, responses, and potential security threats.
Monitor DNS Security
294
The __________ section provides a summary of various network and security reports available on the firewall.
Reports - Overview
295
__________ report provides details about the most significant firewall events and activities.
Top Firewall Events
296
Let's Encrypt is a certificate authority that provides free SSL/TLS certificates. A __________ obtained from Let's Encrypt can be used for secure communication.
Device Certificate (Let's Encrypt)
297
A Local __________ is a certificate generated by the SRX Series Firewall itself for internal use.
Device Certificate (Local Self-Signed)
298
A __________ is a certificate issued by a Certificate Authority, used to verify the authenticity of other certificates.
CA Certificate
299
A __________ is a collection of CA certificates used for certificate verification.
Certificate Authority Group
300
__________ is an abbreviation for Certificate Authority Group
CA Group
301
A __________ is a subset of the Certificate Authority Group, consisting of CA certificates that are explicitly trusted for certificate verification.
Trusted CA Group
302
__________ are licenses that enable specific functionalities or features on the SRX Series Firewall.
Software Feature Licenses
303
__________ allow users to evaluate certain features or functionalities for a limited time before making a purchase decision.
Trial Licenses
304
__________ involves managing and updating security-related components, such as IPS signatures, application signatures, URL categories, and antivirus profiles.
Security Package Management
305
The __________ contains a collection of intrusion prevention signatures used to detect and prevent known attacks and threats.
IPS Signatures Package
306
__________ are specific patterns or rules used to identify and block known intrusion attempts and malicious activities.
IPS Signatures
307
The __________ includes a set of signatures used to identify and control various applications on the network.
Application Signatures Package
308
It is a feature that allows administrators to monitor and measure the performance of network devices and links in real-time.
RPM
309
__________ is a protocol used for efficient packet forwarding in high-performance networks. It is commonly used in service provider networks to deliver MPLS-based services.
MPLS (Multiprotocol Label Switching)
310
__________ is a feature that allows administrators to capture and analyze packets traversing the control plane of the firewall, helping in troubleshooting and debugging.
Control Plane Packet Capture
311
__________ is a feature that allows administrators to capture and analyze packets traversing the data plane of the firewall, helping in network traffic analysis and troubleshooting.
Data Plane Packet Capture
312
It is a text-based interface used to configure and manage the SRX Series Firewall by entering commands.
CLI
313
__________ is a feature in J-Web that allows administrators to interact with the CLI through a graphical interface, making it easier to use for those familiar with the J-Web environment.
Point and Click CLI
