You want to verify the peer before IPsec tunnel establishment.
What would be used as a final check in this scenario?
A . traffic selector
B. perfect forward secrecy
C. st0 interfaces
D. proxy ID
Answer: D
Explanation:
The proxy ID is used as a final check to verify the peer before IPsec tunnel establishment. The proxy ID is a combination of local and remote subnet and protocol, and it is used to match the traffic that is to be encrypted. If the proxy IDs match between the two IPsec peers, the IPsec tunnel is established, and the traffic is encrypted.
Reference:
Juniper Networks SRX Series Services Gateway IPsec Configuration Guide:
https://www.juniper.net/documentation/en_US/release-independent/junos/topics/topic-map/security-ipsec-vpn-configuring.html
Latest JN0-231 Dumps Valid Version with 82 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund