By default, SRX 300 Series Firewalls come with predefined security policies:
Trust-to-Untrust (Option B):A default policy exists to permit all traffic from thetrust zone to the untrust zone.
Trust-to-Trust (Option D):Intra-zone traffic is permitted by default; hence, a trust-to-trust policy is installed automatically.
Untrust-to-Trust (Option A):Not allowed by default, since external traffic must be explicitly permitted by an administrator.
Management-to-Trust (Option C):No such default policy exists.
Correct Policies:Trust-to-Untrust and Trust-to-Trust
[Reference:Juniper Networks –Default Security Policies and Intra-zone Rules, Junos OS Security Fundamentals., ]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit