An update to your organization's network security requirements document requires management traffic to be isolated in a non-default routing-instance. You want to implement this requirement on your Junos-based devices.
Which two commands enable this behavior? (Choose two.)
To meet the requirement of isolating management traffic in a non-default routing instance on Junos-based devices, you need to place the specific interface into a dedicated management routing instance and enable the management-instance configuration. The command 'set routing-instances mgmt_junos interface ge-0/0/0' assigns the specified interface to the mgmt_junos routing instance, ensuring it operates within this isolated environment. Additionally, 'set system management-instance' activates the management instance configuration, making it effective for the required management traffic isolation.
C,D are correct
Enable a dedicated management virtual routing and forwarding (VRF) instance. The name of the dedicated management instance is reserved and hardcoded as mgmt_junos; you cannot configure any other routing instance by the name mgmt_junos. The management Ethernet interface (usually named fxp0 or em0) provides the out-of-band management network for the router. There is no clear separation between either out-of-band management traffic and in-band protocol control traffic, or user traffic at the routing-instance or routing table level. The management-instance configuration statement confines the management interface in the dedicated management instance mgmt_junos, and it enables an administrative routing table dedicated to management tasks for the network device.