JNCIP-SEC: Juniper Networks Certified Professional – Security (2024) — Question 35
You need to set up source NAT so that external hosts can initiate connections to an internal device but only if a connection to the device was first initiated by the internal device.
Which type of NAT solution provides this functionality?
Answer options
- A. persistent NAT with any remote host
- B. static NAT
- C. persistent NAT with target host
- D. address persistent
Correct answer: C
Explanation
The correct answer, C, persistent NAT with target host, allows for external hosts to connect back to an internal device only after the internal device has initiated a connection. Options A and D do not provide the necessary connection tracking for this requirement, and option B, static NAT, does not accommodate the dynamic nature of connections initiated internally.