Which two items must the NAT policy contain to allow users in the Untrust-L3 zone to access the web server?

A company hosts a publicly accessible web server behind a Palo Alta Networks next-generation firewall with the following configuration information:
*Users outside the company are in the "Untrust-L3" zone.
*The web server physically resides in the "Trust-L3" zone.
*Web server public IP address: 23.54.6.10.
*Web server private IP address: 192.168.1.10.
Which two items must the NAT policy contain to allow users in the Untrust-L3 zone to access the web server? (Choose two.)
A. Untrust-L3 for both Source and Destination Zone
B. Destination IP of 192.168.1.10
C. Untrust-L3 for Source Zone and Trust-L3 for Destination Zone
D. Destination IP of 23.54.6.10

Posted in: PCNSE7

One thought on “Which two items must the NAT policy contain to allow users in the Untrust-L3 zone to access the web server?

Leave a Reply

Your email address will not be published. Required fields are marked *

9 − 7 =