which two statements about traffic from host_a in the HR zone to host_b in the trust zone are true?

Click the Exhibit button.

Assume the default-policy has not been configured. Given the configuration shown in the exhibit,
which two statements about traffic from host_a in the HR zone to host_b in the trust zone are true?
(Choose two.)

Click the Exhibit button.

Assume the default-policy has not been configured. Given the configuration shown in the exhibit,
which two statements about traffic from host_a in the HR zone to host_b in the trust zone are true?
(Choose two.)

A.
DNS traffic is denied.

B.
HTTP traffic is denied.

C.
FTP traffic is permitted.

D.
SMTP traffic is permitted.

Show Hint

Leave a Reply 4

Your email address will not be published. Required fields are marked *

sagitarius

sagitarius

can anyone please explain this question?

Reply

Bob Bundred

Bob Bundred

“Assume the default-policy has not been configured”
This means that a catch all policy has not been configured. Therefore, by default, Junos will drop traffic that does not match a policy.

The first policy shows that traffic matching HTTP and FTP is permitted.
The second policy (which is more specific) shows that traffic matching HTTP and SMTP is dropped.

Therefore:
DNS does not match any policy and will be dropped by default.
HTTP will be allowed by the first policy.
FTP will be allowed by the first policy.
SMTP will be dropped by the second policy.

Correct answers are A and C

Reply

Khurram Aziz

Khurram Aziz

Wont HTTP traffic be denied? as its specifically mentioned in policy two

Reply

grillotron

grillotron

I was the same dude…
Probed – HTTP traffic pass by the first policy.

Correct answers are A and C

Reply