JNCIE-SP: Juniper Networks Certified Expert – Service Provider (2021) — Question 18

You want to use the Intrusion Prevention System features of a vSRX virtual firewall to protect systems from attacks embedded in traffic. In this scenario, which three technologies would be used? (Choose three.)

Answer options

• A. protocol decodes
• B. zero-day protection
• C. traffic normalization
• D. application firewall
• E. application tracking

Correct answer: B, C, D

Explanation

The correct technologies for protecting systems in this context are zero-day protection, traffic normalization, and application firewall. Zero-day protection defends against unknown vulnerabilities, traffic normalization ensures consistent traffic handling, and the application firewall specifically targets application-layer threats. Protocol decodes and application tracking, while useful, do not directly contribute to the core protective capabilities described.