Global security policies extend the flexibility of policy enforcement across the SRX. They are not tied to specific source and destination zones:
From-zone and to-zone contexts are not required(Option A). Global policies apply across all zones unless restricted by match conditions.
Global security policies do not require specific zone contexts(Option B is incorrect).
Global policies areprocessed after zone-based policies, not before. This means that zone-based security policies take precedence (Option C is incorrect).
Administrators can configure bothzone-based security policies and global security policies at the same timeon the same device (Option D is correct).
This allows flexible designs where specific policies can be enforced by zone, while general policies can be applied globally without duplicating rules across multiple zones.
[Reference:Juniper Networks –Junos OS Security Fundamentals, Global Security Policies., , , ]
Submit