Hi all,
I'd like to configure a dynamic VPN on SRX while using NCP client (https://kb.juniper.net/InfoCenter/index?page=content&id=KB32418) but reading through the example in the link I read this:
set security policies from-zone untrust to-zone trust policy test match source-address any
set security policies from-zone untrust to-zone trust policy test match destination-address any
set security policies from-zone untrust to-zone trust policy test match application any
set security policies from-zone untrust to-zone trust policy test then permit
Doesn't this "test" policy allow
all connections from the untrust/Internet zone to the trust zone? Isn't this dangerous?
Thank you in advance.
Best regards