JNCIA-SEC: Juniper Networks Certified Associate – Security (2021) — Question 29

You are creating Ipsec connections.
In this scenario, which two statements are correct about proxy IDs? (Choose two.)

Answer options

• A. Proxy IDs are used to configure traffic selectors.
• B. Proxy IDs are optional for Phase 2 session establishment.
• C. Proxy IDs must match for Phase 2 session establishment.
• D. Proxy IDs default to 0.0.0.0/0 for policy-based VPNs.

Correct answer: C, D

Explanation

Option C is correct because Proxy IDs need to match to successfully establish a Phase 2 session. Option D is also correct as the default setting for Proxy IDs in policy-based VPNs is indeed 0.0.0.0/0. Options A and B are incorrect; while Proxy IDs do configure traffic selectors, they are not optional for Phase 2 session establishment.