The SRX Series device is configured for source NAT. The source IP address will be translated to 1.1.1.1. A packet with a source address of 21.21.21.21 and destination address of 31.1.1.1 arrives at the SRX Series device.

Which policy will this packet match?

You are notified that a particular application passing through a SRX3600 is not working properly. A request has been made to provide a packet capture of the application traffic as it egresses the SRX device.

What is required to capture the transit application traffic on the egress interface?

What are two implementations of NAT? (Choose two.)

Given the session shown below:

user@srx> show security flow session

Session ID: 3729, Policy name: nat-example-security-policy/6, Timeout: 2 In: 10.1.0.13/52939 –> 207.17.137.229/80;tcp, If: ge-0/0/5.0 Out: 207.17.137.229/80 –> 172.19.101.42/2132;tcp, If:
ge-0/0/0

Which statement is true?

You configured all the required parameters to allow IPv6 address book entries. You successfully committed the configuration. You noticed that IPv4 traffic is still working as expected, but IPv6 traffic is being dropped.

What is the solution to the problem?

You want to verify how many security policies will match FTP traffic from source address 1.1.1.1 port 55000. to destination address 2.2.2.2 port 21.
Which operational mode command should you use?

Your corporate network consists of a central office and four branch offices. You are responsible for coming up with an effective solution to provide secure connectivity between the sites.

Which solution meets the requirements?

Which two configuration tasks should you use to implement filter-based forwarding? (Choose two.)

In a group VPN the members rekey with the server using the Unicast PUSH method. This rekey mechanism is protected by which secure channel?

You have been asked to configure a signature to block an attack released by a security vulnerability reporting agency. Which two characteristics of the attack must you understand to configure the attack object? (Choose two )