You are asked to merge to corporate network with the network from a recently acquired company. Both networks use the same private IPv4 address space (172.25.126.0/24). An SRX Series device servers as the gateway for each network.

Which solution allows you to merge the two networks without modifying the current address assignments?

A. persistent NAT

B. NAT46

C. source NAT

D. double NAT

Click the Exhibit button.

Referring to the exhibit, which two statements are true? (Choose two.)

A. Data is transmitted across the link in plaintext

B. The link is not protected against man-in-the-middle attacks

C. The link is protected against man-in-the-middle attacks

D. Data is transmitted across the link in cyphertext

Click the Exhibit button.

A user is trying to reach a company's website, but the connection errors out. The security policies are configured correctly.

Referring to the exhibit, what is the problem?

A. Persistent NAT must be enabled

B. The action for rule 1 must change to static-nat inet

C. DNS ALG must be disabled

D. Static NAT is missing a rule for DNS server

Click the Exhibit button.

Your company has purchased a competitor and now must connect the new network to the existing one. The competitor's gateway device is receiving its ISP address using DHCP. Communication between the two sites must be secured; however, obtaining a static public IP address for the new site gateway is not an option at this time. The company has several requirements for this solution:

A site-to-site IPsec VPN must be used to secure traffic between the two sites; The IKE identity on the new site gateway device must use the hostname option; and Internet traffic from each site should exit through

its local Internet connection.

The configuration shown in the exhibit has been applied to the new site's SRX, but the secure tunnel is not

working.

In this scenario, what configuration change is needed for the tunnel to come up?

A. Remove the quotes around the hostname

B. Bind interface st0 to the gateway

C. Change the IKE policy mode to aggressive

D. Apply a static address to ge-0/0/2

Click the Exhibit button.

Referring to the exhibit, you are attempting to enable IPsec power mode to improve IPsec VPN performance. However, you are unable to use IPsec power mode.

What is the problem?

A. IPsec power mode cannot be used with IPsec performance acceleration

B. IPsec power mode cannot be used with high IPsec maximum segment size values

C. IPsec power mode cannot be used with advanced services

D. IPsec power mode requires that you configure a policy-based VPN

How does secure wire mode differ from transparent mode?

A. In secure wire mode, no switching lookup takes place to forward traffic

B. In secure wire mode, traffic can be modified using source NAT

C. In secure wire mode, IRB interfaces can be configured to route inter-VLAN traffic

D. In secure wire mode, security policies cannot be used to secure intra-VLAN traffic

Click the Exhibit button.

You have two hosts on the same subnet connecting to an SRX340 on interfaces ge-0/0/4 and ge-0/0/5. However, the two hosts cannot communicate with each other.

Referring to the exhibit, what are two actions that would solve this problem? (Choose two.)

A. Set the SRX340 to Ethernet switching mode and reboot

B. Add an IRB interface to the VLAN

C. Put the ge-0/0/4 and ge-0/0/5 interfaces in different VLANs

D. Remove the ge-0/0/4 and ge-0/0/5 interfaces from the L2 security zone

Which two modes are supported on Juniper Sky ATP? (Choose two.)

A. private mode

B. global mode

C. tap mode

D. secure wire mode

According to the log shown in the exhibit, you notice the IPsec session is not establishing. What is the reason for this behavior?

A. Mismatched proxy ID

B. Mismatched peer ID

C. Mismatched preshared key

D. Incorrect peer address.

Exhibit.

Referring to the exhibit, which two statements are true? (Choose two.)

A. The configured solution allows IPv6 to IPv4 translation.

B. The configured solution allows IPv4 to IPv6 translation.

C. The IPv6 address is invalid.

D. External hosts cannot initiate contact.