[edit]useu@host# run show log debugFeb 3 22:04:32 22:04:31.983991:CID-0:RT: ge-0/0/1.0:5.0.0.25/59028->25.0.0.25/23, tcp, flag 18Feb 3 22:04:32 22:04:31.983997:CID-0:RT: find flow: table 0x582738c0, hash53561(0xffff), sa 5.0.0.25, da 5.0.0.25, sp 59028, dp 23, proto 6, tok 20489Feb 3 22:04:32 22:04:31.984004:CID-0:RT:Found: session id 0x14f98. sess tok20489Feb 3 22:04:32 22:04:31.984005:CID-0:RT: flow got session.Feb 3 22:04:32 22:04:31.984006:CID-0:RT: flow session id 85912Feb 3 22:04:32 22:04:31.984009:CID-0:RT: vector bits 0x2 vector 0x53a949e8Feb 3 22:04:32 22:04:31.984012:CID-0:RT: tcp sec check.Feb 3 22:04:32 22:04:31.984015:CID-0:RT:mbuf 0x4a82cd80, exit nh 0xa0010Which two statements are true regarding the output shown in the exhibit? (Choose two.)
user@host> show interfaces routing-instance all ge* terseInterface Admin Link Proto Local Instance ge-0/0/0.0 up up inet 172.16.12.205/24 default ge-0/0/1.0 up up inet 5.0.0.5/24 iso A ge-0/0/2.0 up up inet 25.0.0.5/24 iso B user@host> show security flow sessionSession ID: 82274, Policy name: default-policy-00/2, Timeout: 1770, ValidIn: 5.0.0.25/61935 --> 25.0.0.25/23;tcp, If: ge-0/0/1.0, Pkts: 31, Bytes: 1781Out: 25.0.0.25/23 --> 5.0.0.25/61935;tcp, If: ge-0/0/2.0, Pkts: 23, Bytes: 1452Total sessions: 3 -user@host> show routeinet.0: 4 destinations, 4 routes (4 active, 0 holddown, 0 hidden)+ = Active Route, - = Last Active, + = Both0.0.0.0/0 *[Static/5] 04:08:52> to 172.16.12.1 via ge-0/0/0.0172.16.12.0/24 *[Direct/0] 04:08:52via ge-0/0/0.0172.16.12.205/32 *[Local/0] 4w4d 23:04:29Loca1 via ge-0/0/0.0 -224.0.0.5/32 *[OSPF/10] 14:37:35, metric 1MultiRecv -A.inet.0: 4 destinations, 4 routes {4 active, 0 holddown, 0 hidden)+ = Active Route, - = Last Active, * = Both5.0.0.0/24 5 *[Direct/0] 00:05:04> via ge-0/0/1.05.0.0.5/32 *[Local/0] 00:05:04Local via ge-0/0/1.0 -25.0.0.0/24 *[Direct/0] 00:02:37> via ge-0/0/2.0B.inet.0: 3 destinations, 3 routes (3 active, 0 holddown, 0 hidden)+ = Active Route, - = Last Active, * = Both5.0.0.25/32 *[Static/5] 00:02:38to table A.inet.025.0.0.0/24 *[Direct/0] 00:02:37> via ge-0/0/2.025.0.0.5/32 *[Local/0] 00:02:37Local via ge-0/0/2.0 -
Click the Exhibit button.Traffic is flowing between the Host-1 and Host-2 devices through a hub-and-spoke IPsec VPN. All devices are SRX Series devices.Referring to the exhibit, which two statements are correct? (Choose two.)
What is a secure key management protocol used by IPsec?
Your manager asks you to show which attacks have been detected on your SRX Series device using the IPS feature.Which command would you use to accomplish this task?
A local user complains that they cannot connect to an FTP server on the DMZ network. You investigate and confirm that the security policy allows FTP traffic from the trust zone to the DMZ zone.What are two reasons for this problem? (Choose two.)
