which two statements are correct?

Click the Exhibit button. Referring to the exhibit, which two statements are correct? (Choose
two.)

A.
Source NAT is being used.

B.
This traffic matches an existing flow.

C.
The packet being inspected is a UDP packet.

D.
The incoming interface is fe-0/0/7.

Leave a Reply 6

ac89live

I think its A and D !
B not correct, its not matching an existing flow . see line 13 .
and see also : https://www.safaribooksonline.com/library/view/junos-security/9781449381721/ch04s08.html

Lucas

A and D

ahmed

A & D are correct. Check this KB it has typical example with explanation:

We can see in the output the ip protocol 6

So, it’s not option C
6 TCP Transmission Control
17 UDP User Datagram
http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml

## Create new session

CID-0:RT: flow_first_create_session

## The destination should be NAT’d from 1.1.1.30 to 192.168.224.30

CID-0:RT:flow_first_rule_dst_xlate: packet 1.1.1.100->1.1.1.30 nsp2 0.0.0.0->192.168.224.30.

## Here the output shows the SRX NAT pool for source translation is used.

CID-0:RT:flow_first_src_xlate: src nat 0.0.0.0(51303) to 192.168.224.30(3389) returns status 1, rule/pool id 1/2.

## This packet arrived on port fe-0/0/7.0
CID-0:RT: fe-0/0/7.0:1.1.1.100/57650->1.1.1.30/3389, tcp, flag 2 syn

Hassan

Just to add something, there is a fatal error on Line 8:
, top, flag 2 syn…it should be , tcp. That means choice C is out.

Amir

A and D