JNCIA-SEC: Juniper Networks Certified Associate – Security — Question 25
Which two statements are true about security policies in the factory-default configuration of an SRX340? (Choose two.)
Answer options
- A. All traffic from the trust zone to the untrust zone is allowed.
- B. All interzone traffic is denied.
- C. All interzone traffic is allowed.
- D. All traffic from the untrust zone to the trust zone is denied.
Correct answer: A, D
Explanation
The correct answers are A and D because, in the factory-default configuration, traffic from the trust zone to the untrust zone is indeed allowed, and traffic from the untrust zone to the trust zone is denied. Option B is incorrect as not all interzone traffic is denied, and option C is also wrong because not all interzone traffic is allowed.