JNCIA-SEC: Juniper Networks Certified Associate – Security (2022) — Question 6

Which two security policies are installed by default on SRX 300 Series Firewalls? (Choose two.)

Answer options

• A. a security policy to allow all traffic from the trust zone to the trust zone
• B. a security policy to allow all traffic from the trust zone to the untrust zone
• C. a security policy to allow all traffic from the untrust zone to the trust zone
• D. a security policy to allow all traffic from the management zone to the trust zone

Correct answer: A, C

Explanation

The correct answers are A and C. Policy A allows unrestricted traffic within the trust zone, while Policy C blocks access to the trust zone from the untrust zone, which is also a default behavior. Options B and D are incorrect as they do not reflect the default security policies on the SRX 300 Series Firewalls.