You have configured persistent NAT in your NAT rule base. You create a security policy in the direction of external to internal.
Which persistent NAT parameter should you configure?
A.
all-remote-host
B.
target-host
C.
any-remote-host
D.
target-host-port
I think the correct answer is : B,C.
there is no all-remote-option selection.
It should be C,
the policy only allows traffic from external to internal which means no traffic can be initiated from internal, thus you will need to configure any-remote-host to allow initial traffic from external to the reflexive IP address
Correct answers are B, C and D
http://www.juniper.net/techpubs/software/junos-security/junos-security10.0/junos-security-swconfig-security/understand-persistent-nat-section.html
I choose AD