Exam JN0-637 topic 1 question 87 discussion

Actual exam question from Juniper's JN0-637

Question #: 87
Topic #: 1

Click the Exhibit button.

You implement persistent NAT to allow any device on the external side of the firewall to initiate traffic once the initial translation has been established. Communication is not working according to the design requirements.

Referring to the exhibit, which statement is correct?

A. The any-remote-host parameter does not support interface-based NAT and needs an IP pool to work.
B. The target-host parameter should be used instead of the any-remote-host parameter.
C. The target-host-port parameter should be used instead of the any-remote-host parameter.
D. The port-overloading parameter needs to be turned off in the NAT source interface configuration.

Show Suggested Answer

Suggested Answer: A 🗳️

by chris_2_a at June 25, 2025, 8:53 a.m.

Comments

Submit Cancel

chris_2_a

1 month ago

Selected Answer: D

Any remote host—All requests from a specific internal IP address and port are mapped to the same reflexive transport address. Any external host can send a packet to the internal host by sending the packet to the reflexive transport address. Port overloading is used in Junos OS only for normal interface NAT traffic. Persistent NAT does not support port overloading, and you must explicitly disable port overloading with one of the following options at the [edit security nat source] hierarchy level: port-overloading off https://www.juniper.net/documentation/us/en/software/junos/nat/topics/topic-map/security-persistent-nat-and-nat64.html

upvoted 2 times

...