PrepAway - Latest Free Exam Questions & Answers

Which two (2) methods can be sued to verify that NAT-src translation has occurred?

Which two (2) methods can be sued to verify that NAT-src translation has occurred?

PrepAway - Latest Free Exam Questions & Answers

A.
run the get sa command

B.
run the get policy command

C.
run the get session command

D.
Turn on logging for the policy and then view the event log once the session is complete

E.
Turn on logging for the policy and then view the traffic log once the session is complete

Explanation:
The NetScreen device can monitor and record traffic that it permits or denies based on previously configured
policies. You can enable the logging option for each policy that you configure. When you enable the logging option for a policy that permits traffic, the device records the traffic allowed by that policy. When you enable the logging option for a policy that denies traffic, the device records traffic that attempted to pass through the device, but was dropped because of that policy. A traffic log notes the following elements for each session:
Date and time that the connection started
Source address and port number
Translated source address and port number
Destination address and port number
The duration of the session
The service used in the session
The get policy id <number> command allows you to monitor the amount of traffic that the policy permits.
You can also see if NAT-src is implemented on the policy


Leave a Reply