Which statement describes a security zone?
A.
A security zone can contain one or more interfaces.
B.
A security zone can contain interfaces in multiple routing instances.
C.
A security zone must contain two or more interfaces.
D.
A security zone must contain bridge groups.
Correct answer is
A security zone can contain one or more interfaces.
may be ,i not sure,what about you ?
You can assign one or more logical interfaces to a zone. You can also assign one or more logical interfaces to a
routing instance. You cannot assign a logical interface to multiple zones or multiple routing instances. You must also
ensure that all of a zone’s logical interfaces are in a single routing instance. (from JNCIS-Sec Guide Pg 2-2 “Zone”)
“A security Zone Can contain one or more interface”
+1 to Aintechno
The answer marked above (D) is INCORRECT
The answer which is CORRECT (A)
For the reasons described above.
http://www.juniper.net/techpubs/software/junos-security/junos-security95/junos-security-swconfig-security/id-29204.html
Security zones are the building blocks for policies; they are logical entities to which one or more interfaces are bound. Security zones provide a means of distinguishing groups of hosts (user systems and other hosts, such as servers) and their resources from one another in order to apply different security measures to them.
[edit security]
zones {
security-zone trust {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
interfaces {
vlan.0 {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
}
}
}
security-zone untrust {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
interfaces {
ge-0/0/0.0 {
host-inbound-traffic {
system-services {
all;
}
protocols {
all;
}
}
}
ge-0/0/1.0;
}
}
}
I agree with the answer.