JNCIP-SEC: Juniper Networks Certified Professional – Security (2021) — Question 3
After using Security Director to add a new firewall policy rule on an SRX Series device, you notice that the hit count on the policy is not increasing. Upon further investigation, you find that the devices listed in the new rule are able to communicate as expected. Your firewall policy consists of hundreds of rules.
Using only Security Director, how do you find the rule that is allowing the communication to occur in this scenario?
Answer options
- A. Generate a Top Firewall Rules report.
- B. Generate a Policy Analysis report.
- C. Generate a Top Source IPs report.
- D. Generate a Top Firewall Events report.
Correct answer: D
Explanation
The correct answer is D, as generating a Top Firewall Events report will help you identify which rules are being hit and may indicate the active rule allowing communication. Options A and B do not specifically focus on monitoring active communications, while option C targets source IPs rather than rules, making them less relevant for this scenario.