JNCIP-SEC: Juniper Networks Certified Professional – Security (2022) — Question 7

An administrator wants to implement persistent NAT for an internal resource so that external hosts are able to initiate communications to the resource, with the internal resource having previously sent packets to the external hosts.
Which configuration setting is used to accomplish this goal?

Answer options

• A. persistent-nat permit any-remote-host
• B. persistent-nat permit target-host-port
• C. address-persistent
• D. persistent-nat permit target-host

Correct answer: A

Explanation

The correct answer is A, as 'persistent-nat permit any-remote-host' allows for external hosts to initiate communication after the internal resource has sent packets. Options B and D are incorrect as they do not provide the same level of access for any remote host. Option C is not relevant to the specific requirement of enabling external initiation of communication.