JNCIS-ENT: Juniper Networks Certified Specialist – Enterprise Routing and Switching — Question 14

When referencing a SSL proxy profile in a security policy, which two statements are correct? (Choose two.)

Answer options

• A. A security policy can reference both a client-protection SSL proxy profile and a server-protection proxy profile.
• B. If you apply an SSL proxy profile to a security policy and forget to apply any Layer7 services to the security policy, any encrypted traffic that matches the security policy is not decrypted.
• C. A security policy can only reference a client-protection SSL proxy profile or a server-protection SSL proxy profile.
• D. If you apply an SSL proxy profile to a security policy and forget to apply any Layer7 services to the security policy, any encrypted traffic that matches the security policy is decrypted.

Correct answer: A, D

Explanation

Option A is correct because a security policy can reference both types of SSL proxy profiles. Option D is incorrect as it incorrectly states that encrypted traffic is decrypted without Layer7 services applied; such traffic remains encrypted. Option B is also correct as it accurately describes the behavior when no Layer7 services are applied; however, it does not align with the requirement to select two correct statements.