JNCIS-ENT: Juniper Networks Certified Specialist – Enterprise Routing and Switching (2021) — Question 48
A client has attempted communication with a known command-and-control server and it has reached the configured threat level threshold.
Which feed will the client's IP address be automatically added in this situation?
Answer options
- A. the command-and-control cloud feed
- B. the allowlist and blocklist feed
- C. the custom cloud feed
- D. the infected host cloud feed
Correct answer: D
Explanation
The correct answer is D, as an IP address that has engaged with a command-and-control server and has crossed the threat threshold is classified as infected, thus it is added to the infected host cloud feed. Options A, B, and C do not represent the appropriate response for this scenario, as they refer to different types of feeds that do not specifically address the infection status of the host.