You recently installed a new webserver which resides in the DMZ zone of an SRX Series device. However, the server is not accessible from any host in the Untrust zone. Which two statements are true? (Choose two.)
A.
A security policy must be configured to allow traffic from the Untrust zone destined to the DMZ zone.
B.
The webserver and the SRX Series device must be configured to use the same NTP server.
C.
The webserver's IP address must be represented in an address book entry on the SRX Series device.
D.
The SRX Series device must be configured to allow SSH as host-inbound-traffic.
Suggested Answer:AC🗳️
C: Example: set security zones security-zone dmz address-book address webserver 172.16.1.250/24 - Creates an address book entry for the webserver References: http://www.juniper.net/documentation/en_US/junos12.1x47/topics/example/security-srx-device-nat-configuring.html http://www.juniper.net/us/en/local/pdf/app-notes/3500153-en.pdf
Currently there are no comments in this discussion, be the first to comment!
This section is not available anymore. Please use the main Exam Page.JN0-696 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Comments