JNCIA-SEC: Juniper Networks Certified Associate – Security — Question 15

What is the correct order of processing when configuring NAT rules and security policies?

Answer options

• A. destination NAT > policy lookup > source NAT > static NAT
• B. policy lookup > source NAT > static NAT > destination NAT
• C. source NAT > static NAT > destination NAT > policy lookup
• D. static NAT > destination NAT > policy lookup > source NAT

Correct answer: D

Explanation

The correct sequence is D because static NAT must be processed first to ensure proper mapping of IP addresses, followed by destination NAT to handle incoming traffic, then policy lookup to apply the relevant security policies, and finally source NAT for outbound traffic. The other options do not follow this logical order, which can lead to misconfiguration and connectivity issues.